
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier: c+ZXPxHmHEFuYqbufu0UK4oX+lwn93ATGAFTyuv9XDI=
Subject key identifier: 69:F7:28:A8:3B:88:46:0B:F3:1D:AF:AD:9F:1D:34:D8:5B:55:69:DC
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial: 019768BBC68E7D23DE5B0C0B41C09D4A8C17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number: 085A
Signing time: Fri 13 Jun 2025 10:00:25 +0000
Manifest this update: Fri 13 Jun 2025 10:00:25 +0000
Manifest next update: Sat 14 Jun 2025 10:00:25 +0000
Files and hashes: 1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=)
2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: aYUzu3WnPX0pga/HoNutMM+3J9KyuFIpO5gQp2hf6KA=)
3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:c6:8e:7d:23:de:5b:0c:0b:41:c0:9d:4a:8c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Validity
Not Before: Jun 13 10:00:25 2025 GMT
Not After : Jun 14 10:00:25 2025 GMT
Subject: CN=69f728a83b88460bf31dafad9f1d34d85b5569dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:57:28:33:6f:7e:f3:ae:7d:7f:f1:7b:7d:
38:13:70:42:34:07:fb:e2:57:0c:3e:9c:17:30:03:
8d:60:c5:df:4c:f5:62:2d:cd:a7:be:fc:bd:27:e2:
53:a9:8d:29:62:29:e6:6e:48:6b:87:a7:e9:de:1b:
3c:b1:fb:da:ca:e5:cf:14:be:4c:39:df:c5:31:a7:
47:7d:2f:1a:4d:f0:dd:37:84:0f:ca:cb:9c:62:02:
ae:23:24:66:52:44:dd:11:23:0e:fe:4f:5f:ba:20:
aa:b4:1d:d4:8d:e2:f2:bc:69:47:1c:8d:32:1c:b7:
33:fd:35:25:6d:66:06:73:de:3b:34:d0:1e:02:e4:
e7:31:fa:f4:0b:69:65:5a:81:75:d0:bb:20:35:d3:
e0:4f:fa:ac:e8:82:b4:63:6e:a8:66:5e:99:73:e9:
e0:9b:66:f1:80:e2:ca:01:a9:51:5d:d0:c3:c8:97:
38:11:7d:95:c5:7e:ca:51:58:d5:94:59:68:62:cc:
83:7e:11:af:8b:74:2f:c9:fe:ca:ac:8a:7c:2c:1b:
ef:71:7f:89:0b:dd:c0:ef:b4:72:0f:d3:58:ae:9a:
2a:c4:a1:57:02:fe:60:fa:77:d1:65:6d:09:35:a7:
99:82:4d:80:8a:1f:7c:fe:7e:fc:77:ea:df:67:21:
4b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F7:28:A8:3B:88:46:0B:F3:1D:AF:AD:9F:1D:34:D8:5B:55:69:DC
X509v3 Authority Key Identifier:
keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:cc:db:d6:e6:b1:16:ec:ed:36:c8:1e:25:8d:58:43:f7:64:
88:f6:60:42:ad:a8:70:5d:da:b4:51:77:ac:c9:af:78:f7:0e:
7f:15:1d:04:32:c6:94:38:25:ef:32:5f:1a:0c:f1:96:35:0f:
3a:e9:91:b8:56:e4:4e:08:22:f9:dd:0f:52:d1:a5:88:ac:9d:
6b:c3:ea:3f:79:91:8c:35:74:b7:08:a8:c5:9a:a5:4b:cb:06:
bd:ee:35:11:63:06:5d:20:d6:58:cf:2f:0d:cf:be:dc:d8:1b:
e9:9b:8c:14:a9:08:dc:42:e1:b2:ac:f4:b7:ab:4c:e3:ef:e4:
2c:be:16:6d:dd:49:94:95:71:5f:4c:d0:d2:6e:8f:b0:de:30:
26:0e:0e:1b:11:75:47:47:c7:14:fb:a2:7d:0f:c0:e4:f8:e9:
8e:37:44:74:77:6d:3b:9a:75:49:47:a4:54:34:c9:ad:a1:23:
b9:3b:1b:99:e5:94:b7:88:34:93:3a:6e:9c:39:3b:3e:d9:9e:
80:e8:6d:84:f7:ea:ac:23:54:9e:27:15:11:4c:01:2e:92:b7:
80:55:4f:4d:51:86:93:4f:e1:6d:ab:2f:e4:f4:2e:ab:62:52:
96:1a:54:18:b6:db:cc:19:6d:19:f6:3e:f0:3d:34:20:ae:ff:
5a:0d:c3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:09:45 2025 by rpki-client