Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
File: POsgUJhzLLkIgjBF79XXQCUMayc.mft (raw, json)
Hash identifier: LzbzNvT4JNBQ+XbJYnM7cvqKPyV+QORiWOrBN2ePh8c=
Subject key identifier: 98:64:8E:67:BA:C9:BB:C2:4C:D5:E2:A7:D9:AB:17:80:F7:CB:3A:B0
Authority key identifier: 3C:EB:20:50:98:73:2C:B9:08:82:30:45:EF:D5:D7:40:25:0C:6B:27
Certificate issuer: /CN=3ceb205098732cb908823045efd5d740250c6b27
Certificate serial: 01974EC5F1EB47C8644A00310ECD169F73D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 09:01:24 +0000
Manifest this update: Sun 08 Jun 2025 09:01:24 +0000
Manifest next update: Mon 09 Jun 2025 09:01:24 +0000
Files and hashes: 1: POsgUJhzLLkIgjBF79XXQCUMayc.crl (hash: Qji5fbZCwb2FqYMWItdstlgZpgphTdUBexq38giMKFU=)
2: glhaGjYvz9mGirczYGxMS81rRfI.roa (hash: cPBvD492Ea2g7PNrZgsOnSXH4CPshMieJYjaq9P+dD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:f1:eb:47:c8:64:4a:00:31:0e:cd:16:9f:73:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ceb205098732cb908823045efd5d740250c6b27
Validity
Not Before: Jun 8 09:01:24 2025 GMT
Not After : Jun 9 09:01:24 2025 GMT
Subject: CN=98648e67bac9bbc24cd5e2a7d9ab1780f7cb3ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6a:0c:5b:e8:90:a5:90:eb:cd:d6:c0:44:9e:
8f:25:71:c3:1c:46:64:f9:51:0d:83:69:0a:3b:25:
3c:5d:35:d9:c9:b0:c7:51:6e:aa:5e:78:84:ef:cc:
9b:3c:47:f1:e3:54:32:18:81:fd:c6:a0:4e:9a:c6:
7c:69:01:dd:d0:13:9c:82:58:e3:4b:75:fe:52:16:
3f:81:f0:78:c5:9c:43:da:66:72:cf:a3:6b:f4:1e:
1b:76:d1:75:7e:22:92:49:e0:07:97:f1:e8:da:d2:
ad:ab:f7:74:87:11:b8:50:64:e4:dc:3f:dc:12:d6:
1c:38:ad:f1:10:7a:63:39:5f:f9:eb:74:28:f5:b1:
3d:b5:89:b0:f8:83:7b:42:62:68:d4:5c:30:ac:b3:
4a:5c:72:68:5a:29:4a:47:03:02:d6:f7:8b:90:1a:
53:d0:dd:3c:5f:4d:42:1a:1d:a4:c7:d2:74:e4:fa:
bb:d3:7f:f5:8a:cc:a0:96:1a:a8:30:94:c4:79:ef:
9f:ea:c8:1f:03:c1:a1:1f:a4:fe:13:c0:90:6e:f2:
92:e2:59:fe:02:f3:2a:52:87:98:47:87:c2:92:a3:
48:b9:67:64:85:56:05:85:8a:37:bc:83:a7:09:7f:
5b:8c:48:52:56:1b:c7:ca:8c:75:63:b3:05:12:c6:
2e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:64:8E:67:BA:C9:BB:C2:4C:D5:E2:A7:D9:AB:17:80:F7:CB:3A:B0
X509v3 Authority Key Identifier:
keyid:3C:EB:20:50:98:73:2C:B9:08:82:30:45:EF:D5:D7:40:25:0C:6B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POsgUJhzLLkIgjBF79XXQCUMayc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9a4238-7d74-4edf-a4b1-25ed75046b01/1/POsgUJhzLLkIgjBF79XXQCUMayc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:7d:77:42:42:df:0a:0a:68:27:33:a8:73:7f:46:fc:fa:d9:
26:4c:e4:27:ad:0b:94:6b:b6:d3:34:2d:55:65:86:3d:8e:13:
1a:66:50:a7:a1:44:00:ba:a8:06:d3:de:55:9d:40:19:71:56:
a4:e0:f4:34:82:4d:71:48:7c:06:94:c0:ec:e4:f4:8b:26:4c:
0f:93:59:1d:e7:d7:80:71:cb:39:57:87:f5:ce:a2:91:c5:55:
71:bf:da:b8:bb:21:b6:72:d9:fc:25:de:41:06:65:69:9c:3a:
ee:a6:9a:c5:fd:ff:af:b7:ba:f5:71:36:4f:b1:cc:a1:30:41:
52:6b:92:36:8d:1b:8b:2f:97:63:4a:eb:7a:83:ab:63:54:e1:
b0:9b:be:ca:01:f5:69:d0:ef:cb:e5:60:14:4d:bb:c5:3f:6e:
42:47:b5:a3:c1:3b:b4:2a:b1:87:48:8b:37:46:de:b5:4d:34:
41:a5:77:6a:eb:ea:ce:8e:8a:2f:7f:9f:81:ce:2a:98:6e:76:
88:ae:49:93:e1:c3:1a:bd:0d:ab:b1:b4:8f:c7:14:e7:6d:78:
98:f1:21:ef:5a:49:84:4d:a9:85:8b:69:2f:84:85:70:37:ed:
d2:7d:0d:7c:7a:0f:f1:b3:f9:fe:0b:e1:b6:bd:f6:4d:a6:09:
cd:cf:39:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 16:45:08 2025 by rpki-client