Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
File: l72bhlMeVEr6AwnYvip7ppFj-a0.mft (raw, json)
Hash identifier: xComcC2ZtykuE8UVT/ajlkWHe5z2J9WLj1WLWvmFVv0=
Subject key identifier: 6F:11:BE:04:98:A6:41:4A:27:49:38:C2:4C:50:E9:E4:50:7A:88:38
Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Certificate serial: 01974931717823C29E83C9F0983CF23D2787
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
Manifest number: 1331
Signing time: Sat 07 Jun 2025 07:01:06 +0000
Manifest this update: Sat 07 Jun 2025 07:01:06 +0000
Manifest next update: Sun 08 Jun 2025 07:01:06 +0000
Files and hashes: 1: 8VWdbwuahqcw7zclxs3ZXPAVWno.roa (hash: ZO8J4VlFR2M5Qop1zlocM8dgwe5Uq6otS6RyEiq+ukI=)
2: GAmyQv8-gT8CZ7d-txbZl5EhOio.roa (hash: iUcK9uyMQ6focHOP9BZWCHQasgvLPeszd6U4NOgrxL8=)
3: ZfBa2kOopYZN1zSmKbC-lmjGWMU.roa (hash: XOVEAESgfg7MRdYVfSlFUrFkfMe08NvtY8t3C+PTjsk=)
4: l72bhlMeVEr6AwnYvip7ppFj-a0.crl (hash: Fgj9u4AEZXywsNtBL1spiOQAVB3cdCN5njQ+BcmqppY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:71:78:23:c2:9e:83:c9:f0:98:3c:f2:3d:27:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Validity
Not Before: Jun 7 07:01:06 2025 GMT
Not After : Jun 8 07:01:06 2025 GMT
Subject: CN=6f11be0498a6414a274938c24c50e9e4507a8838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cb:8f:d3:40:d7:49:f0:dd:86:2e:3c:1b:1b:
35:0b:54:0a:57:4c:cf:2f:cd:b2:5c:8e:52:cc:81:
9d:90:87:29:99:d2:c9:65:79:67:4d:7b:57:7e:79:
8b:0b:a6:08:ca:61:c8:df:11:7e:ef:d9:9e:f1:b5:
06:fd:70:6b:34:31:86:76:45:71:7c:90:8f:cd:28:
ad:5f:ba:d1:61:95:20:4b:26:ba:a6:f5:1a:0d:a3:
bd:bf:e3:e7:e5:97:e1:46:d3:4c:62:0c:e8:80:d0:
93:b8:1f:18:32:e0:67:72:e3:a1:c1:b0:65:1d:a7:
22:c3:72:41:83:2d:77:3f:2e:de:39:d7:26:47:83:
e5:61:85:f5:17:57:74:b9:1d:30:c6:b2:97:d3:51:
20:f6:9e:2a:63:32:5e:83:20:84:aa:88:17:66:61:
a0:bf:22:e3:b2:5f:bc:cd:74:c3:ff:a0:21:94:6a:
0c:04:7a:17:2b:3a:6f:8a:f6:49:71:74:22:e7:de:
93:96:80:8e:28:e4:aa:9e:15:57:fd:45:bf:f9:60:
98:d0:66:33:42:ae:cb:48:74:71:6a:6f:7a:c1:a1:
bc:c6:da:48:60:61:29:ee:76:5f:ec:8f:b6:db:59:
71:37:d8:dd:4d:98:04:50:3d:a0:6d:f6:a3:06:ae:
1c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:11:BE:04:98:A6:41:4A:27:49:38:C2:4C:50:E9:E4:50:7A:88:38
X509v3 Authority Key Identifier:
keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:33:3b:b4:57:22:9f:d5:ca:29:87:69:d2:28:df:42:d1:ee:
53:ac:85:1e:65:46:c0:da:cd:db:e5:45:7c:d3:10:9a:42:de:
b9:fc:9b:55:71:15:a6:62:32:29:9b:5f:39:47:b4:82:f4:f1:
da:63:70:75:4f:e3:34:2b:79:79:b7:33:ef:18:fa:e2:24:b3:
f5:11:ec:e4:58:93:ae:3a:51:fb:3c:aa:61:36:a5:66:cc:47:
3d:ee:b7:bb:e0:6c:6c:81:7e:1a:5f:5e:28:70:b6:ed:9b:d2:
1e:3a:f7:62:66:2a:69:e9:a7:83:63:e5:e0:bf:09:4a:cf:e1:
37:a2:68:1c:25:b1:dd:08:b1:4c:a4:39:3f:7d:bf:1b:1c:a9:
8e:01:69:d4:57:82:4e:4a:3b:8c:82:f1:96:1c:4a:a7:f9:55:
2e:fe:7a:c7:1a:b9:11:27:d3:cb:c0:c2:30:e2:0a:f3:9b:f3:
92:5c:df:83:d6:86:b2:ef:d5:bf:ea:c4:dd:a5:e3:a1:53:85:
79:44:c3:ed:1a:f7:18:02:31:e2:29:7a:37:ef:be:8f:0b:11:
c5:25:f7:7b:b8:45:ad:0c:ac:70:38:f6:78:28:fa:e8:8f:25:
ca:b1:05:eb:b6:19:81:73:89:a0:85:88:6c:46:1b:d4:77:dd:
7f:a7:57:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:12:05 2025 by rpki-client