Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: HY/49JuhpLm1fFIEIgo82foNN+/HUzJXjjo0BlDCwLA=
Subject key identifier: 9E:59:0B:A1:0C:D3:36:51:68:8D:4B:80:82:D0:29:13:4C:D4:8F:1A
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019748C371CE1EF9EC2AD81BAFFD241951AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 05:00:57 +0000
Manifest this update: Sat 07 Jun 2025 05:00:57 +0000
Manifest next update: Sun 08 Jun 2025 05:00:57 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: ieVh1azFU+JA5gQQ2FiyL8rfkw1CLvAMkDOpGZOFVeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:71:ce:1e:f9:ec:2a:d8:1b:af:fd:24:19:51:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jun 7 05:00:57 2025 GMT
Not After : Jun 8 05:00:57 2025 GMT
Subject: CN=9e590ba10cd33651688d4b8082d029134cd48f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:16:52:d4:2a:bf:93:d6:75:40:f7:b6:30:06:
ee:9d:9b:b2:9c:85:35:d0:38:15:a1:ba:d1:ed:e3:
9a:64:81:f7:f5:43:59:83:16:69:22:09:cf:39:c8:
9d:b4:78:0e:e4:30:2e:87:f1:d9:59:4e:64:ff:4e:
d7:98:1d:dc:da:86:5c:fe:a3:69:be:a3:d8:e7:63:
1a:14:6c:38:50:62:4c:f8:e3:79:9e:a4:ae:34:56:
4b:d5:05:16:ae:7c:4d:5f:69:79:8c:dd:a1:77:62:
36:fa:c6:fb:f6:b8:dd:c7:3c:b1:55:69:62:48:ac:
2b:2c:ca:68:a5:06:db:23:17:62:2f:38:b4:8b:27:
fb:34:ce:b6:86:15:de:aa:24:54:e7:b3:e8:ea:72:
9a:e3:08:b8:0b:24:25:92:57:df:08:56:bb:8b:d9:
38:82:60:c2:20:01:45:4f:74:fc:5e:2d:05:b5:f0:
d5:f3:37:a2:48:49:61:e1:a0:ff:6b:75:db:f9:61:
d4:b9:0a:ef:6b:0b:33:0f:a2:a1:c6:c9:63:d2:cc:
9a:ec:c3:8a:cb:13:de:c1:66:e6:e5:43:e6:1f:ac:
b3:89:35:c7:1c:b6:8d:c7:cb:01:fa:ce:09:83:3d:
35:ce:11:cb:67:e1:6f:63:4c:3f:0d:b9:fd:cf:56:
7d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:59:0B:A1:0C:D3:36:51:68:8D:4B:80:82:D0:29:13:4C:D4:8F:1A
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:eb:1c:66:dd:89:7c:0f:b6:e8:c8:f4:74:6c:31:bf:4e:f5:
1c:16:91:28:bd:fc:ce:1f:c1:6d:b5:86:4b:46:b7:c6:2a:86:
1d:0a:21:ed:ec:0f:38:cf:7e:2f:54:47:5d:03:f6:05:19:cf:
8f:2c:bf:8d:b5:8a:01:be:43:d1:58:80:cb:52:4b:55:17:00:
9a:6a:e1:43:b5:c6:fc:50:bd:2c:2c:a6:b8:d9:b8:15:a9:ac:
11:78:c3:43:09:15:a9:e0:8b:ef:56:9a:3e:9d:fb:f9:b4:63:
e4:46:d3:f5:f8:85:3a:83:db:96:3b:11:e9:3c:66:2b:c5:93:
e2:42:2b:39:3b:54:ca:fc:d5:c8:2e:22:d4:96:fb:70:08:90:
c0:44:ec:1f:7e:b8:ee:bd:a7:35:59:10:27:3c:92:92:45:a8:
92:79:1e:4f:10:60:97:44:ca:b9:74:72:a2:51:e5:d6:cb:a8:
a5:2e:83:a9:1c:fc:1f:e2:34:57:cc:30:20:76:7d:e7:a4:84:
34:08:13:72:c8:9e:4e:55:12:5b:87:2b:3f:f7:30:cf:1f:8e:
50:8b:6b:b1:26:1c:37:95:8f:f0:f5:6f:04:d9:4b:d0:e6:10:
be:51:5d:df:41:c8:c3:9d:5a:ce:1d:ca:0a:ec:e7:b5:db:f6:
df:8a:35:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:01:29 2025 by rpki-client