Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
File: 21m85hup0qDjVb4B8TQbjfdq69s.mft (raw, json)
Hash identifier: yZKz/72tYekZHX7pnOex6XWViZTUXDR/Tzfh/Nnd6Qw=
Subject key identifier: 83:FB:BE:E2:E7:27:DE:7E:06:16:F3:03:92:74:91:43:3C:83:D9:FC
Authority key identifier: DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
Certificate issuer: /CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Certificate serial: 0197518F357023ED30CD536B99791FDB4239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 22:00:29 +0000
Manifest this update: Sun 08 Jun 2025 22:00:29 +0000
Manifest next update: Mon 09 Jun 2025 22:00:29 +0000
Files and hashes: 1: 21m85hup0qDjVb4B8TQbjfdq69s.crl (hash: DG89plKi2YhMNBC8E1NDCsIrHEOeYhLhQzwKSjb2rP0=)
2: y6zUASqLMYC9vOre4NE5oaCGRIY.roa (hash: nU1xlMhFlcEyY9/vfWFwqCMNEfoKNvZKlYNQ0axw4og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:35:70:23:ed:30:cd:53:6b:99:79:1f:db:42:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Validity
Not Before: Jun 8 22:00:29 2025 GMT
Not After : Jun 9 22:00:29 2025 GMT
Subject: CN=83fbbee2e727de7e0616f303927491433c83d9fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:a5:9f:df:62:93:09:b2:fb:e9:d4:66:11:
34:7c:b9:bc:7a:16:84:1e:d2:4a:c2:c0:44:0c:0c:
14:f4:b9:62:89:fa:da:de:e4:e7:5b:93:99:9f:39:
dc:d3:71:d0:50:36:cf:e5:6f:00:b2:68:8d:29:97:
3f:d5:5c:cb:5e:fd:e3:58:8e:f5:df:f5:ce:d2:1f:
c2:01:77:c2:66:b3:81:e2:5a:6b:37:5c:e4:fd:f2:
18:54:a8:1e:a4:5d:35:b1:00:f9:99:c6:ba:0c:73:
c5:d3:01:45:81:c7:2b:5b:71:3b:28:c7:c6:24:9d:
84:e3:23:4b:ab:b1:d7:03:d3:bc:57:c7:47:f7:96:
97:51:54:0a:04:a3:fd:a5:cc:e6:0f:a3:d2:21:da:
d1:18:9b:a4:7d:e9:50:2c:8d:f8:eb:ab:76:8a:b7:
f0:21:12:2b:77:43:b1:95:7a:b9:d1:60:28:4d:50:
26:f0:b2:59:46:1c:b5:b0:73:2e:4b:70:50:f5:33:
7d:b4:55:cb:b9:a1:92:3e:26:2f:e5:c5:3a:fc:ea:
bc:b1:e0:7c:9b:a8:92:d8:89:0a:f7:9a:7b:b7:e3:
ec:39:5b:58:9e:50:c5:97:0a:d3:d9:d8:79:ca:ed:
c6:4c:b8:66:b5:69:0c:8e:5d:52:8b:ac:a6:66:3b:
3d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:FB:BE:E2:E7:27:DE:7E:06:16:F3:03:92:74:91:43:3C:83:D9:FC
X509v3 Authority Key Identifier:
keyid:DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:29:b7:f5:49:91:cc:f6:60:e7:cb:56:dd:73:4d:9f:f4:cd:
0c:fa:ce:99:e6:d1:8c:81:90:e8:34:00:59:4f:e2:d7:39:cc:
ea:2e:65:c5:64:8c:76:99:b7:e1:58:23:59:ce:59:63:15:93:
f0:f4:99:ba:d7:20:05:39:6a:cb:cc:b9:68:68:dc:e7:55:f4:
00:1f:21:a5:a6:4e:e2:fc:48:50:fa:c7:49:bf:a1:f5:16:14:
ad:0d:f4:79:09:6c:75:6f:87:40:9b:67:21:1f:51:18:fe:eb:
a5:db:0f:d8:9a:ef:77:cd:04:ff:13:69:1d:c2:9e:e3:be:75:
b7:d7:a5:c4:68:ea:50:7d:b7:5a:f2:d7:ae:d7:7e:d6:c9:06:
f9:99:5f:2a:23:ba:26:29:68:b6:02:2c:3f:42:8d:6a:77:8f:
1b:c9:6a:9b:a7:18:7d:6e:a3:d6:5f:64:b4:5a:c6:94:d3:27:
d1:61:99:76:f5:7b:90:b3:97:c0:75:7c:c6:f2:9f:82:33:14:
40:1c:d0:7e:74:52:c8:db:bf:31:2f:ea:67:7e:00:9a:bf:a5:
91:07:d0:54:37:cd:ed:0b:d9:20:86:d0:69:47:94:c5:e8:e4:
55:b7:e7:62:ed:f5:6c:eb:a9:5c:62:66:54:b4:23:52:08:fe:
07:72:cc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:06:37 2025 by rpki-client