Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
File: S21-pBAzg38IwoxHQphLgrj0Q98.mft (raw, json)
Hash identifier: jv47cFB2AlCF4RPbEaZyyd/YloXbou1sqHwJ5pHJCGI=
Subject key identifier: AD:5A:F1:63:52:F6:26:6B:60:55:C5:88:1F:E0:0F:59:8C:A7:E0:E8
Authority key identifier: 4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
Certificate issuer: /CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Certificate serial: 01974DB2B1E4B9882E93861F692836E4510C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
Manifest number: 11AF
Signing time: Sun 08 Jun 2025 04:00:45 +0000
Manifest this update: Sun 08 Jun 2025 04:00:45 +0000
Manifest next update: Mon 09 Jun 2025 04:00:45 +0000
Files and hashes: 1: R0-_LF6KU0ufBdJHLr5D2OsCZsM.roa (hash: 9atL02W0zWCgguNUrFQhgbOUdRY0kP2jIZbv6fAlg2k=)
2: S21-pBAzg38IwoxHQphLgrj0Q98.crl (hash: 97jIjQ/n3Vv/Mq7L7g1Q4lOzDsgZfOYjYIvRo7P9Zng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:b1:e4:b9:88:2e:93:86:1f:69:28:36:e4:51:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Validity
Not Before: Jun 8 04:00:45 2025 GMT
Not After : Jun 9 04:00:45 2025 GMT
Subject: CN=ad5af16352f6266b6055c5881fe00f598ca7e0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:03:67:83:11:d3:43:c2:d5:45:4d:68:75:98:
03:00:39:61:81:20:17:02:f4:a9:aa:b7:88:1f:f4:
e1:2a:eb:e6:99:07:5b:52:de:09:86:36:d1:36:13:
f6:9c:6e:41:53:c4:7f:6e:4f:95:b2:32:87:fd:11:
6c:9a:80:d0:f1:04:95:bc:6e:21:45:e6:b6:6d:3b:
47:d4:2f:f0:4a:49:a1:18:a1:bc:ab:b1:00:1a:59:
cd:d7:08:82:c4:27:40:17:c6:f0:7d:99:5f:20:ab:
78:58:58:a1:60:b4:e3:5d:e2:e8:ae:af:fd:ec:24:
ff:3c:23:4b:d1:58:c9:e5:db:cc:ce:db:a3:5e:48:
90:66:ac:32:6d:a0:fe:02:5d:f8:8f:bd:6d:21:35:
a4:19:b0:80:b8:7b:2f:7f:c2:69:3b:7a:96:09:b2:
aa:42:a5:b2:cf:e6:e3:c5:2d:8e:3e:a5:80:b7:f2:
a9:82:24:01:64:16:e6:34:39:21:3c:c6:4c:e3:47:
7d:99:08:24:59:49:8b:3d:4b:48:80:87:fa:d1:39:
33:fb:c6:6b:c7:01:8b:44:88:a5:65:74:78:91:f4:
18:a3:70:b9:20:bb:8e:e4:64:07:9d:f0:30:58:b5:
bf:98:10:20:9d:18:17:02:d4:b0:70:ff:d2:9a:aa:
ad:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5A:F1:63:52:F6:26:6B:60:55:C5:88:1F:E0:0F:59:8C:A7:E0:E8
X509v3 Authority Key Identifier:
keyid:4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f1:50:e0:e5:a1:8c:d3:c0:42:72:8f:9f:90:0b:65:c1:de:
4a:8c:b9:88:66:2a:54:c7:02:67:03:00:da:f0:fe:e7:8c:b9:
ec:f9:94:7c:78:58:f5:7a:08:92:6d:f4:bf:aa:e8:a9:66:ab:
d6:45:23:53:2c:dd:de:9f:a2:b4:19:a0:54:c8:40:91:2a:ce:
64:ee:ec:ce:f9:87:76:5a:ea:d9:1e:17:93:b9:51:14:56:a5:
e7:70:a3:6d:bf:ef:38:94:56:7c:4b:10:3f:1c:c6:b6:51:26:
b4:e1:74:41:55:c8:92:4a:da:38:6b:b5:45:c0:40:cf:b2:4c:
fe:be:d5:ba:71:e6:f1:17:7a:5d:9f:f2:2e:0b:52:0f:04:56:
70:d1:c9:40:ff:b6:03:4f:de:4b:fd:34:f6:93:52:7e:b5:24:
02:5c:9c:87:b8:47:c8:bc:92:00:e7:1e:db:a3:11:14:cf:8d:
c6:8b:18:c9:d5:91:fc:11:d1:1b:a6:05:a3:77:de:68:dd:6a:
c7:20:80:b6:57:e9:8b:7c:14:85:a5:18:0e:0d:ba:d8:d7:81:
89:6f:a0:f2:63:f5:42:f9:56:e9:6e:ee:44:77:a2:d7:da:7c:
a1:78:c8:d6:9d:14:51:14:1a:6d:2a:cb:cc:a9:d6:21:2b:e0:
3b:9a:ed:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:23:21 2025 by rpki-client