Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft
File: v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft (raw, json)
Hash identifier: oSMPsWJ5qbxBTG0d3IQKpTx6uK2OktycOPQ1UOeJqiY=
Subject key identifier: CB:E7:2C:99:BA:35:F9:59:6B:57:7D:B9:8F:58:99:0F:DF:E0:6D:BE
Authority key identifier: BF:8D:08:1C:96:FA:7D:0F:C2:A9:D3:2A:ED:D5:0C:23:A6:1C:6F:11
Certificate issuer: /CN=bf8d081c96fa7d0fc2a9d32aedd50c23a61c6f11
Certificate serial: 019749D62F7D2B5157F86A55A512355BDC5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft
Manifest number: 026F
Signing time: Sat 07 Jun 2025 10:01:02 +0000
Manifest this update: Sat 07 Jun 2025 10:01:02 +0000
Manifest next update: Sun 08 Jun 2025 10:01:02 +0000
Files and hashes: 1: cyjfAn3tv8ZWD2QqdZEtx3LldGg.roa (hash: dQNTgxKb8PiIdXk5ccOTcLzQhMEZp5vC8gyDHDhC7Ow=)
2: v40IHJb6fQ_CqdMq7dUMI6YcbxE.crl (hash: oGq5arAAs6vQxa3XZ8yUpgXpHKSEkeT+s1SSzqV3eLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:2f:7d:2b:51:57:f8:6a:55:a5:12:35:5b:dc:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d081c96fa7d0fc2a9d32aedd50c23a61c6f11
Validity
Not Before: Jun 7 10:01:02 2025 GMT
Not After : Jun 8 10:01:02 2025 GMT
Subject: CN=cbe72c99ba35f9596b577db98f58990fdfe06dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2c:06:43:29:5a:c8:95:a4:a1:9b:ca:e7:96:
b0:97:88:ab:5a:82:8e:50:67:3d:c1:66:78:3a:42:
b6:c9:de:42:4f:7a:36:8d:b4:70:93:2a:af:f5:b5:
86:3f:f0:08:be:f1:e2:4a:ac:04:5d:48:9b:7a:92:
07:96:a3:72:41:c3:9e:69:ec:12:d8:86:5e:a1:a1:
0b:5e:8f:e9:97:42:2d:e7:e5:3e:d0:92:da:19:6f:
52:e6:0b:b0:61:20:a6:c5:dd:e5:fa:cc:2f:a0:23:
90:91:f8:06:d5:f8:67:95:8c:69:d7:21:7d:86:58:
c5:88:b7:88:ba:b9:98:2b:3a:68:7f:de:75:9f:24:
a4:27:9a:8d:5e:02:93:0e:4f:b4:41:e6:25:4c:f5:
f1:59:93:3d:25:33:77:8b:b5:93:35:ed:e7:54:d6:
03:45:57:b9:58:1d:84:d2:b9:f2:e5:39:33:80:73:
e8:48:d6:4b:7b:96:58:c2:90:e7:48:fe:60:5c:be:
73:e6:f7:09:42:ab:b5:ca:52:d1:32:59:06:e9:40:
8d:64:f0:8b:a1:cb:a0:5e:9c:b4:df:f1:5d:b8:05:
c3:d6:e2:06:d7:07:d1:eb:7b:2f:11:4e:58:f2:32:
ff:23:15:d5:10:e1:0b:2b:65:93:af:9e:a0:9f:fd:
66:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:E7:2C:99:BA:35:F9:59:6B:57:7D:B9:8F:58:99:0F:DF:E0:6D:BE
X509v3 Authority Key Identifier:
keyid:BF:8D:08:1C:96:FA:7D:0F:C2:A9:D3:2A:ED:D5:0C:23:A6:1C:6F:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:17:ac:fa:cc:fb:4e:4e:cc:95:59:f4:25:98:8d:fe:61:80:
4e:e5:25:69:20:e8:1c:b8:91:94:a8:94:d6:98:a8:fe:63:da:
4f:bd:8b:3c:db:8e:a2:ed:3f:25:31:d7:42:d6:2e:94:ef:2f:
50:84:48:f9:a2:f5:a3:ee:8b:d8:c7:89:e0:6a:51:3a:b4:41:
78:b2:89:71:09:e3:29:a9:ed:c3:f5:ef:7f:bd:e0:18:26:80:
c0:0d:f2:f5:9f:65:74:4d:9b:34:4c:39:7c:27:36:97:e8:ef:
2d:67:12:51:e3:b6:a4:ff:ee:0f:70:bc:09:1d:e1:55:cd:1e:
d3:61:ee:a9:e5:49:97:9b:53:53:fe:57:3b:fb:ba:2f:dd:93:
72:a6:06:b5:ff:c1:eb:c9:f6:2a:72:19:47:59:8a:b7:cf:fa:
91:69:42:95:7a:e7:11:25:c7:66:5a:e3:8b:53:b4:60:30:89:
b0:28:7c:b1:94:f2:fc:0a:a6:46:8d:9b:bf:50:d4:fd:95:d2:
54:ac:87:d2:24:83:a5:13:89:2b:ac:1f:4c:0d:95:41:51:90:
cf:80:c3:38:07:40:8d:7b:31:86:5b:ba:53:de:61:fe:93:1f:
1c:b8:ba:c3:37:3a:f3:b2:12:43:ce:2b:62:06:d8:1c:29:45:
3d:7b:ad:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:13:24 2025 by rpki-client