Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
File: mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft (raw, json)
Hash identifier: 7meY6rsngQuQi/mXATVxvxL7tSCIuCLejxSxeNJ/cLE=
Subject key identifier: 89:50:B6:FF:4A:1B:74:31:56:6E:A7:F4:34:1F:8E:DE:EE:B2:98:96
Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927
Certificate serial: 0197499F210D85F021D552CB1DF39650D368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
Manifest number: 120F
Signing time: Sat 07 Jun 2025 09:00:54 +0000
Manifest this update: Sat 07 Jun 2025 09:00:54 +0000
Manifest next update: Sun 08 Jun 2025 09:00:54 +0000
Files and hashes: 1: mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl (hash: L9zkUVBXudGJfrfx13ECvIHMjh/Xjx1I4x279Qf5Rfw=)
2: oGPLcgnT5_jMQFeXtQh3bXaXriM.roa (hash: QUvCaj08Q2TK+WnTDqsu5pyPq9XzMOcObz9WAotvcYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:21:0d:85:f0:21:d5:52:cb:1d:f3:96:50:d3:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927
Validity
Not Before: Jun 7 09:00:54 2025 GMT
Not After : Jun 8 09:00:54 2025 GMT
Subject: CN=8950b6ff4a1b7431566ea7f4341f8edeeeb29896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:38:cb:f6:29:f9:aa:3d:f2:0f:dc:99:28:31:
a7:a7:48:8f:08:51:25:8b:43:22:15:ae:4c:b8:2c:
fb:c3:51:7b:f5:6e:2f:b9:ef:57:2a:ff:64:2a:49:
f6:04:38:78:08:8a:c7:ad:54:86:51:d5:fd:57:55:
ed:2d:c3:0c:b5:a8:35:e8:95:e8:4f:5a:8e:5d:8f:
9e:38:7d:95:07:fd:2f:24:fa:8d:ab:bf:c8:71:f7:
2a:75:0c:f0:35:fc:ca:d0:fa:b2:1e:4b:5c:64:4a:
d1:c5:f3:83:32:2f:64:b3:6f:9b:48:9c:3f:e3:ac:
a3:e9:3c:76:df:47:7a:23:43:fa:eb:66:49:bf:1a:
6d:8c:dd:78:7e:f7:2b:74:14:c1:7d:a0:e7:46:2e:
1b:c8:d6:2d:5c:3c:4a:13:2e:f0:20:13:24:94:b9:
77:d2:58:42:91:b8:53:28:87:79:c9:12:0d:ee:cd:
7f:0c:25:39:85:0f:cd:8d:5d:6b:04:ee:1b:91:41:
55:00:a0:35:f2:a4:34:7c:90:8f:c6:54:71:99:65:
84:10:52:ad:23:66:88:6f:3f:c1:53:08:41:fa:83:
66:a8:32:a9:8a:bb:96:c6:e5:cf:53:c8:1a:f7:db:
22:ff:0f:5d:dd:62:c1:c6:43:27:01:01:16:58:78:
c7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:50:B6:FF:4A:1B:74:31:56:6E:A7:F4:34:1F:8E:DE:EE:B2:98:96
X509v3 Authority Key Identifier:
keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d8:83:6d:2d:cb:bc:d8:ec:03:47:19:1c:82:0d:9c:a9:d9:
9a:88:c9:7d:75:e2:bc:53:2a:dd:86:8a:a8:8d:b7:b5:a6:dd:
d8:e3:26:b2:74:08:f5:d8:42:cd:d4:88:c9:ea:36:ff:0f:bc:
f4:43:61:2f:cb:f6:cd:87:7d:6f:7b:a0:e1:6a:24:fa:73:30:
14:a8:a7:2d:3f:46:1d:56:9c:98:8c:ea:8e:85:dc:19:a9:fc:
02:e8:25:7b:4a:0d:77:af:22:37:af:50:3e:3b:42:36:d8:62:
0f:95:7f:49:76:2a:4e:d5:00:46:98:24:f5:da:d6:63:6d:fc:
d7:8f:81:6a:0d:00:3b:dc:e0:42:f5:ff:34:50:63:31:c2:f9:
2c:34:d5:c3:ed:84:6b:10:dd:a9:03:a6:58:9d:cf:7d:01:54:
3b:93:2b:40:db:a5:ee:d8:55:fb:c5:c6:29:d5:6a:82:ba:24:
86:ad:58:14:61:b7:48:38:aa:ec:d5:2f:bb:b2:35:22:de:5f:
8f:52:47:38:ec:1a:9e:07:be:dc:dc:05:74:9a:21:d8:8f:a2:
c9:ad:75:5f:f1:5e:d8:97:2e:0a:5d:b8:d7:a9:82:0d:34:2f:
a1:6b:19:a2:bc:44:76:a1:0a:e6:8c:03:80:d9:9c:e0:38:84:
37:51:61:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:34:19 2025 by rpki-client