Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
File: sKEzNsOO66EMusnCjK8e_PRKyGM.mft (raw, json)
Hash identifier: UZ8EsToBc78re2l6Q1VG4BuZvMivQJqtpyjoRxIfdcY=
Subject key identifier: 47:22:8C:2D:43:71:88:D3:99:3C:2D:0D:5F:64:FD:3C:A0:27:50:A4
Authority key identifier: B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63
Certificate issuer: /CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863
Certificate serial: 01974BC42DF8EAABE5BF5CDD86B9FABA2D90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
Manifest number: 0847
Signing time: Sat 07 Jun 2025 19:00:37 +0000
Manifest this update: Sat 07 Jun 2025 19:00:37 +0000
Manifest next update: Sun 08 Jun 2025 19:00:37 +0000
Files and hashes: 1: sKEzNsOO66EMusnCjK8e_PRKyGM.crl (hash: RbdWTmNs1tclo2XAS0xi6byVXm1eIWo/51zs8PzEINM=)
2: y3LlHCcHKFo-BQ_p86jxyc013sQ.roa (hash: 70W6ragDKntXJcQVl89iuaUr+4h8ye/EbsXthKhbWqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:2d:f8:ea:ab:e5:bf:5c:dd:86:b9:fa:ba:2d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863
Validity
Not Before: Jun 7 19:00:37 2025 GMT
Not After : Jun 8 19:00:37 2025 GMT
Subject: CN=47228c2d437188d3993c2d0d5f64fd3ca02750a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:17:8d:40:5c:66:32:cb:e8:c6:62:22:f6:39:
fa:bf:b7:18:c1:cf:53:c1:f0:f9:99:7c:2a:56:9f:
fe:88:8a:33:6c:77:2a:4a:82:db:6f:e8:a8:30:69:
35:d0:18:5f:fc:eb:c3:ff:cb:24:59:43:2d:e6:bd:
c5:44:62:04:e6:7a:4c:00:2f:06:02:53:ad:f5:8e:
6b:f6:bc:25:53:aa:25:68:00:3b:c4:64:af:f7:ed:
1e:a7:eb:11:6a:52:3f:a5:52:8f:e7:d5:19:04:68:
43:55:32:2b:8a:51:c6:f2:62:f8:8b:27:4d:78:a6:
61:98:68:30:42:3f:8e:40:6b:d0:fa:56:6e:bf:e1:
7b:a2:4e:5d:17:9e:5b:cb:d1:11:ab:c6:94:67:51:
06:c0:fd:f5:e0:21:62:73:b7:34:51:cb:5a:31:63:
36:eb:8e:03:7e:de:42:b5:9d:62:e9:33:d7:37:6d:
72:c4:1f:63:70:41:48:40:96:b0:c3:8a:b3:ea:f9:
53:47:94:46:e6:9f:60:68:ac:b2:77:f5:28:26:05:
81:19:f9:9c:d4:3f:55:e2:f8:73:b3:4c:be:f2:e7:
8b:85:96:7f:1c:7c:99:94:77:d8:cf:49:d8:81:ad:
2a:5e:fa:1d:24:a9:5e:16:4a:09:42:16:3e:a1:8a:
f2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:22:8C:2D:43:71:88:D3:99:3C:2D:0D:5F:64:FD:3C:A0:27:50:A4
X509v3 Authority Key Identifier:
keyid:B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:9c:48:b9:72:b2:4e:f4:6d:62:97:37:9d:75:4e:3f:bf:df:
70:ab:60:9e:59:a5:b0:b8:bd:08:28:50:d0:d6:35:34:8d:35:
36:ac:47:b6:32:3c:ba:ad:1a:2f:85:d7:e3:e3:3e:cc:c1:95:
a9:f0:e4:64:d0:69:70:fa:ce:61:92:d4:9b:b2:ad:41:0b:e0:
17:f3:84:bc:02:1f:c6:f5:83:1f:c6:05:d2:03:15:5b:42:a7:
57:82:86:19:49:57:df:73:1b:a7:8d:1f:e7:94:21:ec:4a:b8:
b8:45:53:97:67:2e:74:5b:73:0e:75:10:6f:aa:24:3e:6f:6d:
22:89:1b:a0:54:02:be:ea:f0:6c:45:7d:0e:c2:99:93:d1:ae:
05:f5:fb:4d:37:db:bc:58:1e:cf:3f:4b:a7:7b:8e:a0:9f:28:
56:6e:d9:c0:ea:20:56:fc:82:74:b2:34:65:20:eb:b2:9f:a8:
8a:f0:8f:82:1e:d6:2f:94:52:43:d9:22:4b:d8:25:ef:49:4d:
55:b9:08:92:00:e6:e4:2a:34:62:a2:21:40:89:99:ac:c6:31:
1e:54:33:eb:58:31:3e:0e:07:75:99:d1:c6:d4:c6:d3:45:13:
be:00:72:f2:41:bf:b0:dd:80:fe:b6:28:de:ef:68:7e:25:6d:
3e:6a:d7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:39:13 2025 by rpki-client