Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
File: cNySeAi5pn58uhunTvtb9sEsiVs.mft (raw, json)
Hash identifier: xjCdJaXDqS8MXjX/oSJKgAV3eck8xKIW/XJviLK3LhE=
Subject key identifier: 54:BC:68:55:2A:DA:6F:B6:B0:95:30:39:99:32:52:ED:8F:96:2C:09
Authority key identifier: 70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
Certificate issuer: /CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Certificate serial: 01974DB27CF86EDEBD4C0853ED36C5951694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
Manifest number: 157B
Signing time: Sun 08 Jun 2025 04:00:32 +0000
Manifest this update: Sun 08 Jun 2025 04:00:32 +0000
Manifest next update: Mon 09 Jun 2025 04:00:32 +0000
Files and hashes: 1: BAJtDqJxaWUqQAfiueye7uuRaiw.roa (hash: xliJwPehY40wkTea7xdHZ3Ii3nZae+NEE66sFETvyTA=)
2: cNySeAi5pn58uhunTvtb9sEsiVs.crl (hash: yrHNEZBrj+vFMHBtZkGbVv/3Eqlt8CHr8WthUTlD7N4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:7c:f8:6e:de:bd:4c:08:53:ed:36:c5:95:16:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Validity
Not Before: Jun 8 04:00:32 2025 GMT
Not After : Jun 9 04:00:32 2025 GMT
Subject: CN=54bc68552ada6fb6b0953039993252ed8f962c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7a:31:dc:ee:7d:3d:63:dc:28:9e:be:62:1e:
37:b4:16:81:9d:66:a5:4b:2e:7e:1c:f4:1f:26:f7:
b9:b7:ea:c0:a1:e4:b1:75:c3:dd:2e:59:b1:b4:89:
2c:31:73:a3:cc:f3:6d:5f:4a:62:25:00:a2:64:2f:
f7:29:a7:b5:ed:02:59:da:03:10:18:e5:53:40:86:
6a:ad:e5:47:5a:61:57:14:4d:d3:77:15:5c:04:49:
2f:27:18:c0:af:11:ea:95:95:6d:7e:41:8b:60:f0:
74:48:85:ae:26:f1:ab:4b:d8:f5:13:69:76:f3:e7:
5f:da:4e:4b:b1:d3:6d:55:4b:26:34:65:34:9d:7a:
a5:73:fa:f5:87:80:f4:97:2d:04:a6:bb:52:82:5e:
75:e5:97:3e:06:0c:fe:3d:83:c2:18:31:93:8d:c7:
26:9c:99:3f:16:59:1e:f9:47:64:4f:58:72:68:b0:
87:bf:88:e5:28:9c:12:8d:f0:b9:af:19:9e:44:f7:
56:29:53:33:16:01:00:31:80:73:19:01:e1:62:1f:
3a:7c:be:50:e7:3f:17:15:89:e4:e5:b1:a2:1d:eb:
26:ed:ed:9c:6c:a3:e8:01:c9:93:8c:55:e7:1d:1d:
64:47:8c:01:e6:4a:2a:5b:bd:22:50:8d:66:18:65:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:BC:68:55:2A:DA:6F:B6:B0:95:30:39:99:32:52:ED:8F:96:2C:09
X509v3 Authority Key Identifier:
keyid:70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:65:2d:02:ba:ef:a1:93:b5:ea:9f:c1:e5:ba:e4:6a:49:91:
1d:7e:12:c8:2e:3c:84:38:5d:4b:9a:33:be:d2:5c:bb:d0:ed:
83:a9:89:3e:76:75:79:bd:99:81:ec:03:23:2a:85:ac:d6:07:
4c:c6:87:51:0e:16:bc:41:cf:eb:a2:4d:05:99:c7:7e:63:db:
de:93:b1:a7:5b:26:54:4c:5d:97:f1:26:05:24:f2:3f:cb:28:
e4:ed:6f:b3:56:3e:eb:85:46:87:49:c3:a9:2c:3d:7d:ef:f3:
95:41:3b:ea:81:f5:5f:56:7d:fa:58:0a:b7:a3:ce:b9:d3:22:
be:cb:7b:43:f7:93:9a:96:0f:57:b8:22:06:be:fc:17:2a:5f:
66:06:84:d6:ee:f8:f3:d4:ec:69:48:3a:37:1a:89:a1:a9:f6:
a3:7e:75:ab:77:24:5c:49:48:84:e6:3b:e9:b4:33:6f:ad:43:
49:30:54:7b:ca:df:bd:72:0d:42:60:1a:a3:db:0f:19:ba:47:
3b:d7:ec:85:ed:d2:97:b4:4a:90:6b:11:62:c5:f7:1b:49:4e:
49:cd:96:dd:05:8f:59:87:4b:f2:04:55:ff:2f:53:f1:95:df:
3e:77:60:c9:ba:a4:eb:b0:82:12:0a:1b:d8:85:eb:e7:4a:96:
73:8b:3c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:06:26 2025 by rpki-client