Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: IwQSFdablINidCdXyukGRBRehxWFjHjBD2N9qUTQ4HU=
Subject key identifier: 68:6A:79:F8:8A:76:05:9D:56:97:3F:D2:B4:3C:BB:E2:3C:74:2B:B9
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 0197496805B64493F893F5FDCDFAFB70E59F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 08:00:43 +0000
Manifest this update: Sat 07 Jun 2025 08:00:43 +0000
Manifest next update: Sun 08 Jun 2025 08:00:43 +0000
Files and hashes: 1: HIDgrdHX_QU-bGXtDjZHW_ouIno.roa (hash: CeASJRYiDgx1fz5UAh5dDbAHwn7ALNNERk8t4H2LNDQ=)
2: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: DYNzsne4hoydN7qeoyj3j9Z5O+Sa9HNdYBgGqYdXDuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:05:b6:44:93:f8:93:f5:fd:cd:fa:fb:70:e5:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Jun 7 08:00:43 2025 GMT
Not After : Jun 8 08:00:43 2025 GMT
Subject: CN=686a79f88a76059d56973fd2b43cbbe23c742bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5b:0c:7f:b1:fa:ef:0e:0a:21:45:14:da:5e:
c9:a4:d1:66:c5:f3:3d:3f:1b:54:2e:6d:98:7b:7e:
2f:e6:49:41:80:60:81:3c:a6:d1:41:2a:25:a7:90:
08:be:39:fe:48:eb:d4:74:7e:85:dc:b2:fd:be:fe:
c3:75:e4:1f:73:28:b6:53:b6:8e:0c:89:8f:ab:32:
45:ef:ec:dc:1e:28:b1:ac:64:e7:9e:86:19:6e:cf:
38:61:60:43:a2:15:95:4e:d0:a9:d6:a9:70:a1:23:
f5:6f:28:78:cf:fd:49:9e:89:0c:1b:21:ce:43:23:
12:29:9d:2d:01:cb:42:56:98:40:10:11:c0:4f:23:
e7:a4:d4:ee:46:03:27:8f:e5:a1:c9:69:8f:60:f7:
50:72:a6:04:bf:cf:c7:7c:ea:05:b0:fd:5b:3f:bb:
43:69:d3:b2:cb:96:27:b5:2a:2c:b7:f6:3a:03:a2:
14:d6:27:93:26:56:15:c4:4f:f3:77:e4:28:a3:c0:
af:fa:75:45:2c:ee:fd:e3:0b:a1:bb:bf:c2:39:72:
d3:23:55:78:46:08:00:77:f0:a9:60:91:47:72:28:
04:f5:d9:f9:3e:d4:c2:72:51:4d:74:86:4f:47:c4:
68:61:ec:38:6b:d7:de:49:ae:ac:0b:57:b8:2a:fe:
11:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6A:79:F8:8A:76:05:9D:56:97:3F:D2:B4:3C:BB:E2:3C:74:2B:B9
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:6f:1a:e9:a9:66:08:21:83:e3:06:23:46:76:41:8f:a5:b1:
5a:d6:62:56:35:56:35:55:9f:b5:cb:1d:8c:e3:19:c3:1d:c3:
6b:00:94:68:fc:a5:eb:8a:9c:f1:b3:14:1b:ec:51:2f:aa:98:
1c:d7:86:93:a0:7a:42:e9:fc:42:d7:3e:40:13:6e:94:60:6a:
d6:26:05:f5:40:24:30:9e:58:b9:ed:63:ad:35:cc:dc:2e:85:
b4:c7:b6:bd:b7:ab:ec:3c:b4:9c:33:c3:cc:fb:44:d3:1d:6d:
ba:cf:66:b8:1a:2e:98:49:20:c0:f0:bf:b7:04:b0:f4:78:d5:
7e:d9:b5:5d:89:84:f8:27:a9:dd:56:c6:f6:7e:7c:b1:f3:e5:
4e:20:d7:c9:eb:2a:5b:b7:38:5b:e2:07:f2:44:9d:f3:dd:cb:
35:ef:01:6f:c0:aa:03:f2:95:4b:20:f4:b2:e5:1d:67:11:e3:
3b:8f:ec:0b:81:d7:64:8d:da:84:ee:93:e3:16:7d:54:00:3a:
fd:d0:80:db:3d:48:83:de:02:56:91:10:47:ea:70:50:24:8e:
d8:fc:c0:4e:b3:c2:8c:c0:ec:84:c8:1b:38:24:96:dc:26:02:
be:4e:42:1c:33:b6:64:1c:e8:46:32:92:bb:1c:c0:8c:cf:cf:
3e:d3:b5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:26 2025 by rpki-client