Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
File: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft (raw, json)
Hash identifier: /y2ZokMVJBi7Z2kT7573YfB0zUBZtt6+2aSSuCGWYNY=
Subject key identifier: B8:7F:39:C9:D6:BF:DD:C9:1A:79:F9:11:53:9A:A9:0D:F0:80:6D:4F
Authority key identifier: A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
Certificate issuer: /CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Certificate serial: 019750EAC482743229C6775528B7CE47FEED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
Manifest number: 0C38
Signing time: Sun 08 Jun 2025 19:00:52 +0000
Manifest this update: Sun 08 Jun 2025 19:00:52 +0000
Manifest next update: Mon 09 Jun 2025 19:00:52 +0000
Files and hashes: 1: Z94Es0pJzdNNFG_pvtxbCrg0w94.roa (hash: uXR+OJPAQJAMUd3RxLmxlHyff75ZTmhyAoVDvTJyktM=)
2: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl (hash: FBg+JjvUl69DsctR9kkQidHSVUuI59046Gy7u88luGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:c4:82:74:32:29:c6:77:55:28:b7:ce:47:fe:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Validity
Not Before: Jun 8 19:00:52 2025 GMT
Not After : Jun 9 19:00:52 2025 GMT
Subject: CN=b87f39c9d6bfddc91a79f911539aa90df0806d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:37:20:ab:fa:31:cc:86:9c:75:9d:de:30:f2:
ff:1f:b2:1c:d4:f2:fd:31:57:74:62:f3:4d:37:3a:
c4:a7:ed:c8:75:75:90:d8:63:95:6b:33:c3:a5:f2:
a1:6f:fb:4b:eb:6a:ff:46:a9:7e:21:d7:55:2d:e9:
6f:15:de:be:4c:f8:dc:94:69:3e:71:88:95:44:6b:
0c:63:8f:d6:3f:c0:ad:be:8c:30:26:58:51:eb:22:
21:18:97:6f:24:50:20:d8:5b:20:bc:f6:45:0e:45:
09:3e:3e:73:76:57:0d:c9:cb:8a:a3:53:9b:f8:31:
e9:de:e8:00:5d:d2:bc:78:e4:5d:dc:4e:33:d8:2e:
e7:b1:c9:a0:07:2f:5a:45:f0:9b:77:36:79:38:a6:
d2:84:a3:21:c9:8b:ba:0c:dd:a8:18:2c:99:ba:5c:
2c:60:58:e7:24:05:90:b5:44:d6:a1:44:2c:67:50:
0a:1b:49:c2:80:9d:11:66:77:d9:73:0c:f2:c0:a5:
fb:2b:0d:4b:47:e8:e2:0d:15:d0:c6:3e:46:c8:c8:
ae:e9:0f:09:49:8e:df:ef:f5:f6:21:a7:36:65:13:
1d:cd:59:93:1c:de:cb:2f:d6:e8:b6:d4:65:93:00:
fd:3f:c6:4a:54:40:a4:7e:11:c1:73:98:57:ea:07:
d7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7F:39:C9:D6:BF:DD:C9:1A:79:F9:11:53:9A:A9:0D:F0:80:6D:4F
X509v3 Authority Key Identifier:
keyid:A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:7c:05:3f:dd:21:af:54:27:0f:5b:26:5b:2a:83:ad:c4:34:
27:b7:06:c3:32:b6:6a:c1:40:16:e2:39:f6:b2:26:a7:38:74:
5e:c5:f5:f0:99:ec:93:18:86:62:57:55:b0:7c:b5:17:1d:32:
87:9e:45:1e:6f:e1:35:39:69:7d:34:79:d1:0a:32:ad:82:6c:
05:4d:6b:dd:52:e3:ae:3f:f7:ff:58:6f:4c:eb:ca:c9:24:a2:
58:61:6d:53:1f:39:50:48:7e:eb:d1:4a:e1:ad:b8:39:d0:6b:
e8:33:bb:68:53:95:e1:2d:45:34:c8:9a:4a:b1:1f:57:cb:2c:
9a:25:92:ba:3c:74:8e:76:a8:c1:d6:09:d2:e8:34:17:17:86:
50:ce:3d:47:cb:ea:17:28:a0:48:47:40:c4:a7:aa:af:93:b1:
29:70:fb:8b:4c:91:ad:b6:6c:fd:3d:b7:2c:a5:d3:7b:21:29:
9f:48:91:96:ae:6e:89:e0:e0:3a:88:6a:15:69:8f:a5:45:79:
c6:44:cd:5d:6a:7b:ac:20:ff:1c:de:58:75:24:fd:9d:dc:14:
1d:29:16:13:34:65:d2:26:d1:dd:b9:53:53:b2:6d:ac:a3:da:
0c:12:a3:65:1d:c6:86:3c:a3:6e:79:1c:95:a4:b8:b3:70:ae:
f4:1b:d7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:21:33 2025 by rpki-client