Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
File: my2tSBy6VIO6qw16DM3BregyrRY.mft (raw, json)
Hash identifier: /TC0voKqcizkGWrFYvCkyHnk56YBjaHDNbXsocgMhIM=
Subject key identifier: 6F:F3:75:BC:85:F3:1B:4E:F6:E8:F9:C6:DB:1A:1E:34:E0:1D:0A:82
Authority key identifier: 9B:2D:AD:48:1C:BA:54:83:BA:AB:0D:7A:0C:CD:C1:AD:E8:32:AD:16
Certificate issuer: /CN=9b2dad481cba5483baab0d7a0ccdc1ade832ad16
Certificate serial: 01974AB183E635E59152662A4D76C6A5BC53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
Manifest number: 0718
Signing time: Sat 07 Jun 2025 14:00:37 +0000
Manifest this update: Sat 07 Jun 2025 14:00:37 +0000
Manifest next update: Sun 08 Jun 2025 14:00:37 +0000
Files and hashes: 1: iUGe5ciIVDZ_vtvHcYAi2dKEvOs.roa (hash: GD3GHNZKL4fdpgdi7l7xwFI/fIJOKFQjsdvcNA8UW4E=)
2: my2tSBy6VIO6qw16DM3BregyrRY.crl (hash: 9M23xiOFldoaEj19ZoMvKwdEvUYViuXjXA2nG5/twQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:83:e6:35:e5:91:52:66:2a:4d:76:c6:a5:bc:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b2dad481cba5483baab0d7a0ccdc1ade832ad16
Validity
Not Before: Jun 7 14:00:37 2025 GMT
Not After : Jun 8 14:00:37 2025 GMT
Subject: CN=6ff375bc85f31b4ef6e8f9c6db1a1e34e01d0a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:99:df:98:86:9a:fb:a9:fc:65:87:e7:99:
da:b8:5e:80:e3:a8:92:52:3f:c5:91:a3:35:6f:20:
76:90:ef:87:74:b5:17:61:64:91:64:b0:cc:6b:a6:
9a:82:9b:ac:bb:50:77:ec:8b:b8:fd:12:7e:20:48:
22:3f:a7:b8:04:e8:3c:af:54:19:e0:72:cf:02:7a:
f0:a8:b5:2c:ab:c0:78:58:f0:94:b3:15:2a:f6:a8:
f8:ad:ae:5d:b8:16:e3:bc:f9:b8:d1:d7:7b:1e:73:
2c:24:20:96:de:4c:95:2a:90:3e:0c:33:c6:94:a2:
2f:fc:ec:3b:63:c1:f7:af:93:f8:be:bb:b5:b5:07:
ac:7e:d2:0e:a5:ec:1f:02:d1:38:90:1f:2b:dc:bc:
4b:05:ac:ca:6c:87:a3:c3:03:60:42:58:21:7c:1e:
b1:cc:5d:4e:07:f7:4f:fe:dd:a6:e6:3e:d5:b9:e6:
3b:08:fe:d8:7b:71:0f:01:5a:4a:d5:c1:2b:be:8b:
f2:58:a5:85:41:a1:d9:92:57:18:20:a2:8c:52:2c:
a5:15:da:09:ef:8b:c0:0a:92:f5:aa:31:2f:e1:db:
4b:c3:04:d3:02:a8:0d:bf:88:ee:e9:22:0f:74:82:
8f:63:0d:74:06:65:75:0d:4f:8b:19:cb:76:bd:3d:
77:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F3:75:BC:85:F3:1B:4E:F6:E8:F9:C6:DB:1A:1E:34:E0:1D:0A:82
X509v3 Authority Key Identifier:
keyid:9B:2D:AD:48:1C:BA:54:83:BA:AB:0D:7A:0C:CD:C1:AD:E8:32:AD:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/my2tSBy6VIO6qw16DM3BregyrRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/64bab8-89b7-4f68-afc3-85a2aeb0798d/1/my2tSBy6VIO6qw16DM3BregyrRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:5d:5d:dc:ba:42:f1:bf:a1:e4:58:a6:aa:7f:db:2f:c4:97:
aa:5d:17:dc:05:99:fa:b6:d2:80:ef:50:c0:eb:86:2f:c8:fb:
d9:8d:9a:d9:3e:7f:e7:6c:cf:eb:2f:d1:96:86:c6:c3:7a:5b:
df:98:17:29:83:e3:cd:a2:a3:bb:ac:70:43:32:27:33:ed:d2:
92:47:09:18:bf:0b:b1:40:5e:03:99:25:1c:2c:79:22:1c:39:
e2:04:7f:68:58:38:a9:17:f7:c8:c3:e7:8a:6f:58:4a:fb:6e:
57:71:48:4c:8e:ba:62:b4:de:0f:36:87:96:a5:08:89:d2:eb:
11:1e:62:1b:3f:90:00:72:59:a3:65:c2:09:ba:56:8c:10:3b:
fd:2f:0d:6e:84:e5:94:62:07:2a:bf:be:6d:80:12:be:54:28:
d5:69:77:91:d1:44:83:23:12:ac:1a:08:c2:e7:30:f7:98:58:
2f:78:d4:7a:36:5a:64:80:fb:ac:dd:db:31:23:b8:aa:b3:20:
85:1a:f5:8c:37:bd:6c:8f:56:f1:a9:1d:0e:d2:0d:00:c2:a2:
fe:36:56:43:49:d0:53:91:3c:6f:ea:46:00:9b:f6:d7:14:6c:
ba:26:ec:46:63:0d:9d:ba:b5:eb:6a:e8:3e:a5:29:34:68:a3:
6d:85:6c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:05:51 2025 by rpki-client