Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
File: j32Qq83eC8bwvKryHOw6TyrPrk8.mft (raw, json)
Hash identifier: 9xYc2A0tYY5ibATZrRZhWogxYG62Z8ET/ED5vmsLABo=
Subject key identifier: 9E:32:58:14:50:D7:BA:30:52:58:82:03:59:48:37:4E:57:7C:F2:BD
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Certificate issuer: /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial: 01976BF478D5C86AA587A432F33918591583
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
Manifest number: 1596
Signing time: Sat 14 Jun 2025 01:01:13 +0000
Manifest this update: Sat 14 Jun 2025 01:01:13 +0000
Manifest next update: Sun 15 Jun 2025 01:01:13 +0000
Files and hashes: 1: Ha4iqiemRVs4K0apcX26aGgxEQM.roa (hash: Y9w0WT6CR9hlG1wNToGxOj1Wt0I5gYiZH++6mqrNiy0=)
2: j32Qq83eC8bwvKryHOw6TyrPrk8.crl (hash: nHhP34GAy+Z/HwZd3RqaLooUrbO5nXusTOJgLgYdW1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:78:d5:c8:6a:a5:87:a4:32:f3:39:18:59:15:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Validity
Not Before: Jun 14 01:01:13 2025 GMT
Not After : Jun 15 01:01:13 2025 GMT
Subject: CN=9e32581450d7ba30525882035948374e577cf2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3f:58:0b:ed:25:c5:74:4b:5f:a5:0e:a5:71:
19:e7:0a:08:67:86:e8:f7:e5:8f:51:83:c0:fd:2c:
44:eb:b6:c2:c9:ad:6d:fd:9a:55:8d:42:80:8d:14:
c6:0e:78:d7:f4:d4:e9:67:2d:98:c3:08:72:dc:84:
c5:f8:01:ad:a3:8c:dc:db:6a:f6:be:77:56:e8:fd:
d0:84:e7:90:37:eb:9d:25:95:a8:34:6c:94:c3:ae:
8f:aa:1d:a2:55:1d:b2:2b:09:72:b2:4b:be:77:f5:
48:34:ea:02:a9:e4:fc:a9:4b:4d:80:cb:3b:b5:cc:
a7:59:01:d2:8b:6d:48:19:f9:6a:aa:28:10:27:42:
18:f7:70:78:96:88:8b:91:c5:11:4e:b1:53:ac:4e:
68:fb:05:46:87:b2:bd:5c:fa:bc:d4:35:9f:60:4d:
8b:d7:9b:d5:f1:10:49:65:be:f9:ff:be:8f:6d:12:
aa:8a:0a:35:47:f3:bc:34:d4:d8:c1:75:69:25:a4:
f8:a5:6d:82:2c:2f:24:85:7b:43:6c:d7:0e:07:ec:
14:21:6c:c8:15:b6:7c:cb:06:a7:fc:bf:a2:95:61:
84:0f:a6:02:de:ed:d8:db:ae:de:52:3e:60:bf:97:
a7:3d:e8:c0:5c:81:49:f5:47:47:47:13:91:9e:5a:
89:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:32:58:14:50:D7:BA:30:52:58:82:03:59:48:37:4E:57:7C:F2:BD
X509v3 Authority Key Identifier:
keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:66:e0:45:28:6f:bd:73:95:d1:45:d9:da:0c:be:6b:c6:17:
fd:61:93:ec:a8:3a:0c:83:81:af:b2:f8:e5:ef:98:12:81:ad:
5b:02:ea:d8:15:75:20:8f:7c:fe:d3:ae:61:5f:a6:2c:bd:b0:
22:a6:92:f6:f2:77:30:03:17:7e:87:99:95:85:bc:14:06:84:
21:d2:1e:f5:62:3f:09:7f:06:02:9b:84:5d:83:b0:90:6a:e3:
bf:55:58:ea:5e:5b:27:2d:67:20:e9:3a:69:87:ee:44:f4:3d:
60:f4:e8:9c:53:34:01:b1:b4:8d:9f:a6:3e:2a:fa:30:8d:f1:
23:43:59:16:c8:ba:9f:bc:62:18:a8:a5:1d:27:97:4f:90:33:
80:c1:46:e0:39:37:2a:db:10:18:7d:78:04:60:8c:09:bb:67:
29:d5:44:d2:b1:30:c0:80:9a:24:84:23:98:d4:4d:1c:d0:d4:
e9:d2:5c:3a:ee:92:ef:39:83:f9:53:f8:ad:fc:a6:77:06:35:
b0:cc:17:34:e9:e2:31:3a:03:57:63:92:a0:ec:12:5a:33:52:
89:75:f7:6b:21:fd:e7:1a:cd:b8:25:f6:48:da:61:71:26:90:
85:b4:5d:07:44:54:e4:ee:16:e3:cc:56:3d:81:63:88:68:d0:
09:56:ec:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 06:29:58 2025 by rpki-client