Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
File: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft (raw, json)
Hash identifier: rBkJOgvLME3WjnerOarQnPMFQAFC90bpjJf+y87b2cA=
Subject key identifier: 8C:96:9A:BD:9C:09:2B:45:75:19:3C:0E:CD:72:E2:18:52:86:31:09
Authority key identifier: FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
Certificate issuer: /CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Certificate serial: 019748C2D9C8C80954B8A269B8E753CCBB51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
Manifest number: 0FC8
Signing time: Sat 07 Jun 2025 05:00:18 +0000
Manifest this update: Sat 07 Jun 2025 05:00:18 +0000
Manifest next update: Sun 08 Jun 2025 05:00:18 +0000
Files and hashes: 1: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl (hash: +xsUP2IRO9yMXoPW7mIUsA219LQ0qh3LzQJY/Vnd7Ws=)
2: Qqhw1hFjAH2cjMyIzDFuLuhBB38.roa (hash: N8UT7eSxYsrDW5XIIE4cv48SYlBhyKYdxt2C78AnGxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:d9:c8:c8:09:54:b8:a2:69:b8:e7:53:cc:bb:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Validity
Not Before: Jun 7 05:00:18 2025 GMT
Not After : Jun 8 05:00:18 2025 GMT
Subject: CN=8c969abd9c092b4575193c0ecd72e21852863109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:53:bf:c4:6b:b7:10:b4:77:1a:94:ff:12:6d:
d9:e6:c4:db:f9:b7:56:54:f5:91:27:f7:0b:01:be:
f8:e7:20:7b:1b:29:35:7d:af:28:fc:77:6e:46:6c:
78:77:59:bf:d5:33:6b:33:88:ff:9b:f9:91:df:dc:
7a:b4:9f:38:4c:9e:31:58:6e:60:37:23:3a:98:c2:
44:e6:2b:5e:af:12:30:9e:c5:98:47:9d:ec:6b:7e:
96:77:53:15:12:95:06:cb:74:f8:03:a8:61:2a:09:
0a:ab:b6:11:f9:bb:39:8b:22:20:61:a2:74:98:0c:
e8:b2:00:e0:76:71:5f:2d:c4:8c:22:bd:c4:04:a9:
83:53:15:2e:60:4d:e7:22:f8:41:09:c7:1e:85:94:
31:10:fc:b6:6e:a8:95:48:13:3e:91:cd:39:fb:fd:
e6:d1:da:24:d6:0a:53:dc:d2:f4:3c:29:03:55:47:
3b:2e:25:32:33:3a:42:41:55:a8:15:b8:aa:2c:ac:
9e:5f:14:14:e4:08:97:28:46:bc:46:3c:4c:e6:99:
73:41:fa:c7:78:81:ae:ee:b0:9c:77:f0:bb:f6:7d:
5e:08:34:86:47:95:49:78:66:f0:f9:29:fa:1a:80:
cc:d8:47:2d:bd:64:e9:72:7e:c0:6a:fe:9a:9b:8b:
bd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:96:9A:BD:9C:09:2B:45:75:19:3C:0E:CD:72:E2:18:52:86:31:09
X509v3 Authority Key Identifier:
keyid:FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c5:e4:fc:0a:42:55:25:14:2e:f3:01:68:02:67:13:58:99:
8f:0c:e6:f7:98:77:a2:d2:4c:fa:66:35:89:eb:98:c7:cc:78:
e1:ff:40:eb:79:5a:47:ea:91:99:81:3f:fd:c0:38:0c:46:2d:
12:5d:dc:db:54:09:1c:a6:33:1e:52:27:57:a5:80:47:f3:27:
fd:12:b4:d8:01:e6:65:ac:ac:41:62:6a:8f:21:3d:9c:70:6f:
60:04:40:80:c7:d7:a6:54:da:21:27:c8:e7:f8:5f:b5:ce:f1:
f4:3e:b0:6f:f7:47:39:a6:1d:19:7e:cf:d6:fa:89:11:5c:7a:
17:87:a6:2a:16:ba:d6:53:3e:12:63:86:b1:82:02:a5:5b:25:
f8:8e:4f:a3:e5:09:27:b1:62:92:95:1d:df:a8:96:5e:0c:e3:
6c:7c:63:48:57:ee:9e:22:84:df:3d:cd:85:52:42:fe:b6:c4:
6b:79:6f:6c:53:78:ad:2d:67:f7:92:be:c2:20:bc:fc:55:9f:
f0:cd:ed:7b:5f:fa:df:bb:1e:cd:35:39:d2:90:b3:02:a9:95:
4d:02:78:7d:4d:d7:ba:ef:9a:92:4e:1a:be:fb:63:8b:ec:fa:
11:e7:8a:5e:f4:3e:46:2c:58:66:82:60:63:8d:f9:17:22:d5:
32:f6:e8:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:08:42 2025 by rpki-client