Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
File: mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft (raw, json)
Hash identifier: ibLpR3td6R2pJ5j4P8ZViO1vnuPJduMBmDZ5DGWjlCs=
Subject key identifier: 9B:56:68:15:41:B3:3D:F2:2F:BB:F1:B3:0C:F3:9D:93:60:FD:E0:EF
Authority key identifier: 99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
Certificate issuer: /CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Certificate serial: 01974A7AA612CA8582A675EB4DD6F3D580E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
Manifest number: 0471
Signing time: Sat 07 Jun 2025 13:00:41 +0000
Manifest this update: Sat 07 Jun 2025 13:00:41 +0000
Manifest next update: Sun 08 Jun 2025 13:00:41 +0000
Files and hashes: 1: VANQMbS9wJfHpjxNeVPpV7NpFIQ.roa (hash: UNFy8NT1hW32lKijy2cCpAEH6HPMdcOUxJumaoALuL8=)
2: mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl (hash: uUb3Q6RTqdB+cHVOwFJmWb9J+oWwI5lAC3m50UoagZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:a6:12:ca:85:82:a6:75:eb:4d:d6:f3:d5:80:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Validity
Not Before: Jun 7 13:00:41 2025 GMT
Not After : Jun 8 13:00:41 2025 GMT
Subject: CN=9b56681541b33df22fbbf1b30cf39d9360fde0ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9f:47:22:9d:62:2d:29:fe:ae:18:e8:fb:ec:
96:ab:f7:26:42:0d:23:d2:91:12:c3:f8:06:87:d2:
8c:69:7b:34:24:70:78:ec:a2:eb:ec:8e:a5:2b:b1:
88:32:0e:5e:9b:34:86:75:b7:06:8e:28:88:f5:b9:
c6:58:bb:de:a9:0e:22:f2:10:7b:8f:97:a3:f8:38:
ef:8c:03:e9:d5:a5:98:91:a6:a1:8b:7d:43:16:f7:
5e:ca:3a:59:c8:7a:6d:4a:fb:ab:3c:11:3d:47:23:
33:86:1e:21:78:ed:9b:e8:8f:51:a7:e8:bb:0e:f0:
1c:06:fd:6a:d9:a0:a5:56:3c:e5:34:b2:38:61:b8:
13:e9:1a:e2:e0:0c:1c:02:f3:a1:3c:68:df:07:ec:
0c:9d:74:47:e6:e1:4c:2b:3c:6d:3e:78:1e:ed:1f:
cd:0b:30:05:fa:03:da:2d:29:00:a9:28:ac:06:ec:
10:30:c4:d0:a0:3b:47:65:54:86:9a:d1:68:db:62:
8e:a2:33:ca:ad:de:da:79:20:99:90:42:f2:df:ac:
c9:b9:71:76:cb:d8:a5:dd:37:09:80:78:4c:4d:e7:
99:bd:7c:2b:4c:f7:86:0a:11:df:af:ef:53:7b:a0:
ad:a9:c0:b7:f9:e9:97:52:0e:d1:cd:ef:f2:b5:5a:
51:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:56:68:15:41:B3:3D:F2:2F:BB:F1:B3:0C:F3:9D:93:60:FD:E0:EF
X509v3 Authority Key Identifier:
keyid:99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:bc:bc:bf:a6:fa:69:c4:8d:b7:eb:ce:fd:12:b5:13:cf:12:
fe:2a:11:2e:66:c7:3f:9d:e9:12:2c:77:ef:cf:26:19:8c:3c:
d4:72:22:d5:60:59:b8:3d:3d:0f:fd:95:db:88:b2:84:70:c5:
a7:d4:36:78:0b:4e:11:80:ec:96:6c:ec:e7:ef:05:64:5f:7a:
31:de:07:46:b5:03:01:47:21:db:5d:a2:5b:6b:1f:7d:f0:39:
61:25:71:05:0f:d3:bd:8f:b2:14:46:7e:40:da:1a:68:4f:af:
1e:d8:28:54:f4:16:3b:2a:89:b8:bb:c2:29:db:de:32:9e:83:
c4:54:ad:e9:53:8b:1e:8d:dc:55:a6:d5:7b:83:26:f2:8e:7e:
9a:5e:1c:af:16:97:ed:85:89:04:fe:78:f1:eb:d0:ba:36:c9:
41:0a:1b:7f:01:10:82:8c:b9:5f:d3:3f:2d:32:d8:65:3e:aa:
0c:3f:38:2b:72:0c:c8:9d:f5:ab:f5:fd:05:35:4b:fd:cf:63:
5f:2c:d0:7a:ce:29:8a:2e:8d:bf:dc:7c:3b:3f:a9:77:6a:52:
08:f9:de:fd:80:be:1e:f2:93:a4:70:d8:8c:aa:9d:f6:1d:5c:
16:6e:9c:c9:52:e3:6e:d6:b4:5e:c1:35:5d:8f:30:d2:af:f2:
52:d7:65:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:30 2025 by rpki-client