Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
File: 9YQK34T7C3WOuopaE1qYA5Pov3M.mft (raw, json)
Hash identifier: rXDA+0UeTQ0/6ZQ9OXY95x3cbGalF6sc9SgF1VG8nO4=
Subject key identifier: A8:6D:F2:EF:91:0E:F5:55:1F:39:92:D4:8D:BD:37:C2:A2:5E:4A:27
Authority key identifier: F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
Certificate issuer: /CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Certificate serial: 01974D447543EB26658F45E0684A4D38CC2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
Manifest number: 0124
Signing time: Sun 08 Jun 2025 02:00:21 +0000
Manifest this update: Sun 08 Jun 2025 02:00:21 +0000
Manifest next update: Mon 09 Jun 2025 02:00:21 +0000
Files and hashes: 1: 9YQK34T7C3WOuopaE1qYA5Pov3M.crl (hash: 09aolmHmcedxEf0Jt2I265s8OWeeihh6cxohUwsOKxs=)
2: n8NfpgAijMpzCpX65rpklB3Tlmg.roa (hash: tLj+vrFwuOUlrlwjfJTF2xymSSPYF1wq3UkCF0leCFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:75:43:eb:26:65:8f:45:e0:68:4a:4d:38:cc:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Validity
Not Before: Jun 8 02:00:21 2025 GMT
Not After : Jun 9 02:00:21 2025 GMT
Subject: CN=a86df2ef910ef5551f3992d48dbd37c2a25e4a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:71:82:6c:f0:b8:94:e9:da:12:85:2a:e7:65:
40:9f:db:26:6e:87:28:11:7b:25:0e:e4:e5:a7:88:
50:3a:88:ae:9b:46:e0:d6:05:2c:e7:03:a6:f6:e8:
0b:fd:14:89:74:24:f1:db:92:77:6f:f1:71:9d:10:
51:99:ed:a2:1b:4f:47:76:e7:5d:b4:2c:bb:5f:14:
33:52:bd:1c:ba:58:5a:22:ab:c2:f1:65:b9:e0:db:
1e:f1:d8:24:d2:75:49:11:84:0f:42:29:af:10:07:
43:2a:8d:36:eb:84:ae:8a:01:b5:e9:d4:58:3e:e8:
82:69:26:53:a5:1e:38:48:7e:ed:ba:be:01:42:25:
ee:fa:f5:12:e1:18:ee:cd:f4:ec:db:d4:71:49:20:
1d:54:37:5a:d7:ab:9a:a4:3d:48:1e:ae:3c:90:d2:
cd:75:92:95:4b:2b:c1:53:e7:d2:a5:ce:90:ec:b9:
54:88:7f:32:0b:5f:e9:d8:ee:ad:fa:ad:ee:57:e1:
5a:f6:2d:55:74:75:66:95:ff:fe:8b:9a:8f:fc:10:
1d:a1:3c:00:eb:00:72:5f:e9:5f:c7:e4:9c:93:ad:
32:33:6e:0a:31:9c:1e:b8:9c:b4:f2:e4:a9:45:90:
3f:8e:36:28:ef:53:76:57:4b:14:aa:a5:a3:b9:c0:
9f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6D:F2:EF:91:0E:F5:55:1F:39:92:D4:8D:BD:37:C2:A2:5E:4A:27
X509v3 Authority Key Identifier:
keyid:F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:16:83:7a:41:ad:5f:db:ad:e5:be:65:69:c8:85:c1:19:05:
bc:d5:41:32:95:2b:c5:7d:0e:a3:5c:4d:63:bb:76:18:34:23:
f0:50:86:f4:79:2d:08:ff:1c:7a:99:da:da:c0:52:4c:a3:80:
50:08:af:d6:e5:5d:45:b4:cb:d8:fd:07:b9:6b:e1:01:88:77:
7e:6a:61:a2:9d:4f:ec:0a:94:4c:5c:59:fc:11:2b:1b:3f:47:
34:82:58:94:77:7b:01:fa:bd:7c:2c:68:f9:1c:a9:4e:d6:92:
d1:a8:d5:9e:13:fe:40:a6:b9:54:19:e6:a7:bd:f4:ef:c1:ab:
c2:bd:9d:18:b1:b6:fc:3f:6b:6d:91:c6:5c:f5:54:6d:d9:20:
4b:6f:53:cd:ea:ba:71:01:14:db:3e:b3:ca:a2:24:46:84:0c:
59:d3:a4:85:2c:66:0c:c0:8e:12:d2:7d:b9:12:5e:57:f1:b3:
ca:20:02:b3:88:1b:46:c7:fc:09:0e:a6:1b:16:12:bf:fc:4b:
1f:36:df:d8:9f:a7:4c:29:00:74:ef:f3:69:65:6e:30:3a:89:
93:a0:04:e2:3e:4a:88:99:eb:e8:62:cc:9d:04:1c:b5:6e:69:
b7:d8:f2:07:5c:b7:2c:39:94:53:b4:65:33:95:2a:f9:33:67:
48:62:6b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:22:03 2025 by rpki-client