Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
File: 9zHDObGGFyK__oZyGDFM4SlcPIU.mft (raw, json)
Hash identifier: Vz0Q83Oydoq6sjmwz5I+EUBCFISrpAU5Uy8D7awEc6k=
Subject key identifier: F2:FA:DA:07:17:9C:1B:8D:D1:FF:0D:80:2F:F1:52:0C:51:D3:E5:C5
Authority key identifier: F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
Certificate issuer: /CN=f731c339b1861722bffe867218314ce1295c3c85
Certificate serial: 019748FA71B8E89EC1B244C3254533616A42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 06:01:02 +0000
Manifest this update: Sat 07 Jun 2025 06:01:02 +0000
Manifest next update: Sun 08 Jun 2025 06:01:02 +0000
Files and hashes: 1: 9UQ0_3_mS41_iKwg1qjiuH2k8kg.roa (hash: kiU7QM0C1mwEaOQNcthFFJZevyv4iXHm9WMDBPMiwH8=)
2: 9zHDObGGFyK__oZyGDFM4SlcPIU.crl (hash: e90QS0mV3s58SEj7VGSPp8qmC051Qht6XR+PekvvlIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:71:b8:e8:9e:c1:b2:44:c3:25:45:33:61:6a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f731c339b1861722bffe867218314ce1295c3c85
Validity
Not Before: Jun 7 06:01:02 2025 GMT
Not After : Jun 8 06:01:02 2025 GMT
Subject: CN=f2fada07179c1b8dd1ff0d802ff1520c51d3e5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e9:b8:66:c1:a8:7e:28:5d:e9:34:c1:2f:51:
e1:f6:76:23:29:73:ff:e8:d7:39:8f:68:b5:89:b7:
c6:ff:df:9f:bf:d5:ae:7a:2b:8e:b6:13:a3:1a:5f:
54:27:1e:9e:f9:60:1e:d5:25:9e:2c:14:68:7f:78:
5b:ab:5f:bd:98:5a:8e:30:b4:65:63:3c:0d:69:46:
c4:12:a1:d6:d1:81:fc:6c:b3:8c:36:53:e9:4e:8d:
57:9b:eb:30:65:72:05:6a:29:5d:a8:54:fa:9a:f5:
0a:eb:53:0e:17:e5:75:52:22:33:6d:96:bb:74:f3:
7e:bd:e0:e7:0c:3e:45:23:b8:7b:04:12:d1:d2:c3:
b3:d6:5c:de:ff:e1:2f:a8:4f:b3:1a:e5:b2:3c:ab:
81:cc:2f:c4:b9:71:9b:6f:6a:67:b2:7d:27:97:7b:
23:16:4d:10:18:d3:ad:61:4a:01:e7:2b:f6:6a:62:
db:e9:04:48:c6:11:e1:fc:41:4c:51:49:31:3e:88:
2b:da:a5:bb:6b:8c:5e:6f:41:15:a4:f1:ae:64:55:
58:dd:80:2e:3b:a6:17:b9:8f:7c:6e:d6:b6:a7:54:
40:1d:fa:e7:4e:51:2f:99:ef:8c:d5:a4:b4:58:1c:
bc:8e:aa:f1:68:82:0c:0d:8c:a1:e8:c3:d7:cb:98:
84:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:FA:DA:07:17:9C:1B:8D:D1:FF:0D:80:2F:F1:52:0C:51:D3:E5:C5
X509v3 Authority Key Identifier:
keyid:F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:b8:62:2f:d3:2c:37:16:26:c7:13:e4:b9:c9:ad:d1:8f:0f:
6b:47:26:ca:77:3d:c5:0e:6b:35:68:d9:e7:3b:90:c4:5a:03:
75:07:f4:9f:7f:24:2c:41:19:c6:bf:9d:78:ea:a4:5c:67:88:
6d:e8:c8:26:c0:dc:24:50:4d:7a:8d:92:08:75:d8:be:e3:ac:
00:5a:86:0b:d7:2a:73:8c:be:46:3d:a6:8d:56:af:0c:a3:24:
a9:82:ac:cb:95:33:30:91:b5:57:57:b6:dc:7f:a6:ab:cb:8d:
bb:04:9a:5d:94:79:6c:39:71:a8:57:94:86:21:51:cb:10:3a:
7a:0d:d5:5f:f8:12:04:31:a5:1b:98:e7:81:ce:69:07:aa:ff:
6a:b0:f9:63:0b:77:31:c5:77:40:8c:26:02:1d:f0:08:ef:16:
10:54:43:00:4e:86:33:8c:d9:fe:b2:f0:d3:9c:5e:7f:74:6d:
d7:39:e7:bb:2e:e7:0e:f7:c0:14:66:bc:05:f4:f8:20:01:e2:
21:a9:75:e3:c3:e5:96:c5:51:97:d6:17:1f:07:0e:0c:25:9b:
a6:e6:6e:d8:8c:71:9f:34:1c:e3:ea:47:fb:fe:b4:d1:bf:29:
cf:17:45:5d:13:3f:4a:7a:11:01:e1:f8:9a:f2:e8:49:64:d6:
71:22:63:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:01:22 2025 by rpki-client