Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: zNAOcCNB6MD39l17+irAPqQ2r4UOd4tO8Gv9tqR/oOA=
Subject key identifier: 18:C0:30:83:94:68:E9:6A:7D:3C:F3:A9:FC:6C:C3:23:2F:20:2D:9D
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 01975158E3486C74A424C2D5260D7982DC0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 03B1
Signing time: Sun 08 Jun 2025 21:01:09 +0000
Manifest this update: Sun 08 Jun 2025 21:01:09 +0000
Manifest next update: Mon 09 Jun 2025 21:01:09 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: ClFq76l5OlOQnyNPUQgd1eHOKteSj8k9+Vl75OtneyE=)
2: tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa (hash: PDEUyoKVmJLpE4EXJZCm2eA6jcMg8DukO+sjxPMBeZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:e3:48:6c:74:a4:24:c2:d5:26:0d:79:82:dc:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Jun 8 21:01:09 2025 GMT
Not After : Jun 9 21:01:09 2025 GMT
Subject: CN=18c030839468e96a7d3cf3a9fc6cc3232f202d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8a:0f:1b:2e:3c:62:d6:f1:f2:55:7f:4f:a7:
13:15:b3:c4:a5:9d:04:e3:ed:0a:5e:6c:15:8d:0a:
9f:6a:e5:23:af:45:65:96:e6:09:4b:e7:fc:ae:00:
6d:36:4b:c4:f9:17:9d:b8:d8:c5:21:c3:32:e5:eb:
b5:da:aa:6c:3c:c0:9f:3b:f4:97:14:7b:21:2d:70:
a6:cc:7a:e1:d4:d8:ce:ba:95:57:89:44:9d:b5:9a:
30:b2:0d:69:33:48:ac:81:f1:48:5c:bf:01:6e:d1:
b6:e8:9e:36:1f:1b:d9:b5:b4:01:79:45:e7:f6:ba:
4d:b2:47:49:aa:f8:3f:25:8d:c5:42:3d:bc:3e:da:
02:7c:dc:a4:92:38:00:1d:ec:c6:f6:af:1f:31:17:
3c:a0:d5:85:3a:e6:c4:53:45:60:a6:41:99:e1:7e:
7f:6d:b5:47:d9:70:09:a0:ab:cc:78:5a:cb:3a:4f:
c1:fb:f3:c9:23:2b:5b:e7:14:23:f9:bb:e1:08:5e:
18:fe:60:49:87:d1:a7:48:db:12:09:1d:ad:3b:c8:
e1:61:64:a1:3c:c9:83:0c:38:dd:a3:6d:52:ca:63:
96:80:9c:5c:64:a2:56:97:8a:74:a1:04:16:31:cb:
f4:4f:4c:c7:a8:6a:2f:e6:93:ee:39:c1:9b:e2:a7:
32:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C0:30:83:94:68:E9:6A:7D:3C:F3:A9:FC:6C:C3:23:2F:20:2D:9D
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:5f:1d:a3:5a:e8:c8:e1:28:be:4a:ac:60:aa:e8:56:3a:ec:
0a:9a:13:35:32:1c:c4:7b:90:ef:f0:bc:b4:f3:ac:ac:0c:5a:
f1:41:19:a7:a6:ae:bc:aa:aa:5d:bc:98:f1:d8:7b:6e:a6:aa:
bf:bf:ad:a2:da:3a:a0:ab:5d:c5:15:e8:33:95:49:e9:b8:fb:
ac:2f:4e:de:2d:a0:c4:65:0a:64:86:5e:f7:ee:1b:f0:fd:e5:
38:e9:a0:f6:20:62:36:3f:46:27:9d:5c:dc:f1:d9:90:37:be:
d3:a1:25:0c:4a:f4:13:1b:08:85:69:5a:f2:8c:dd:cc:8a:33:
d0:9c:cf:c4:36:79:7e:e2:9f:19:1d:00:b8:a8:1d:f7:36:48:
6b:da:47:9c:53:77:c6:ce:37:61:44:92:9f:d4:a6:07:9a:78:
c3:06:85:27:ff:a9:c9:fd:79:05:6e:29:53:23:0a:35:d1:4c:
c4:9b:51:91:11:a1:34:be:1e:e7:67:05:16:b6:b0:3f:50:0f:
82:33:58:0e:74:5d:62:6a:fc:52:ea:aa:46:31:6a:eb:55:5f:
3a:92:fe:c7:24:12:29:bf:f6:d8:46:7e:e4:ad:ef:5c:57:24:
ef:63:d5:e5:c0:80:23:8e:1a:ec:1a:08:21:4e:7b:70:55:b7:
c8:ab:9a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:18:42 2025 by rpki-client