Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: z5arXeMSxN8Jlv5HNBDS7jKQtOyAPutTm0q+LfxViaw=
Subject key identifier: BA:7B:DC:3F:E1:E4:FA:12:5B:7D:EE:EC:A1:4C:7C:13:CB:45:A6:9B
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 01974DB2ABF59CEADC602B1B01657CD9F70F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 14DC
Signing time: Sun 08 Jun 2025 04:00:44 +0000
Manifest this update: Sun 08 Jun 2025 04:00:44 +0000
Manifest next update: Mon 09 Jun 2025 04:00:44 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: 1MHdCwaqlXpy3gX9wtXkCCQwMcB+bM0Kqbwb9ryzaXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:ab:f5:9c:ea:dc:60:2b:1b:01:65:7c:d9:f7:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Jun 8 04:00:44 2025 GMT
Not After : Jun 9 04:00:44 2025 GMT
Subject: CN=ba7bdc3fe1e4fa125b7deeeca14c7c13cb45a69b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:70:85:d5:6c:a3:6e:e0:0d:11:08:8b:19:
2d:99:3d:2e:0c:27:91:7b:45:02:60:96:42:ad:24:
9b:5b:c6:e0:a2:3e:d5:d2:db:ac:1e:64:d2:20:cc:
f5:5a:92:eb:9f:ff:8e:69:6b:56:2b:83:a2:6a:d1:
e3:c7:b6:a6:28:66:4e:bf:dc:03:8c:ca:02:2c:58:
d4:f1:76:fa:17:be:0a:ea:f5:e8:b2:d1:09:e3:e1:
ab:d0:9d:db:af:d1:6a:8e:df:54:4c:a7:ef:a9:6f:
fc:be:cb:e2:ad:e4:c1:26:26:e4:05:94:aa:d8:43:
21:7b:33:2f:f6:79:7a:f4:38:02:8e:97:6d:0d:6e:
b9:c9:35:f2:d2:5e:75:97:32:ec:8f:ea:22:0a:f7:
d6:19:ce:ef:65:f6:9e:3c:75:e6:6d:17:84:90:f5:
be:15:db:ad:01:e9:9e:91:34:c3:ae:0c:1c:2b:11:
76:27:0c:1c:6a:98:35:db:db:c2:73:49:b6:7a:da:
07:c6:4d:50:52:38:27:7c:f3:e4:b2:20:c3:ea:81:
90:16:b0:69:47:82:e7:b3:45:be:13:2f:21:86:1b:
ee:c3:d4:8a:90:75:54:41:02:34:a4:92:e4:74:85:
c2:d7:db:01:26:df:bf:93:36:14:99:a2:08:9e:b6:
2f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7B:DC:3F:E1:E4:FA:12:5B:7D:EE:EC:A1:4C:7C:13:CB:45:A6:9B
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:59:72:ca:db:87:02:a7:17:6b:e3:df:4f:ec:46:c8:54:ab:
2c:17:51:94:64:69:32:c4:4a:93:ec:e4:91:8a:45:d0:d0:ff:
ff:b9:8d:cc:75:a3:8c:c1:1b:b6:c1:38:c1:b6:16:2f:3f:81:
6c:f5:aa:e4:f2:32:ae:c6:34:6e:08:78:db:ab:3e:e0:6f:48:
8e:0c:19:b8:53:87:a8:8c:88:d5:a0:77:95:75:43:fc:40:79:
54:76:3d:4d:38:5a:1d:1b:4d:e9:3d:5b:75:0a:ae:69:ae:55:
e8:51:53:0f:f3:9e:2e:48:32:ef:87:2b:90:26:1b:17:66:de:
ee:44:ad:81:7f:f7:23:65:3b:04:63:70:98:df:82:54:2a:04:
a6:38:b4:b2:1a:76:93:89:81:91:39:41:54:7e:57:3f:14:70:
bc:e8:69:72:1e:6f:da:ea:23:0a:e4:5a:50:b9:ab:0f:b5:d8:
81:59:00:03:da:ba:e7:67:58:fb:dd:94:52:99:77:aa:88:50:
f7:1a:af:19:88:1a:c4:7d:a1:56:23:25:6c:b2:5e:c8:87:3a:
60:4a:21:30:be:7b:6c:d4:ba:81:95:98:0a:9b:e1:18:a6:24:
1b:65:4a:8e:22:be:8d:3e:0e:9d:f5:68:5a:ab:c3:41:fb:5e:
ec:c3:8a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:15:15 2025 by rpki-client