Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
File: wQdbeoGvSd7_tsg1xWCO4LiEMso.mft (raw, json)
Hash identifier: rciI4CPgSQrJ22lOiHdr0K7vFxsApWda/IQPgRX/8hM=
Subject key identifier: A8:87:BB:08:F7:0B:32:D4:36:A3:4F:03:20:76:71:73:DC:E0:2C:EC
Authority key identifier: C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
Certificate issuer: /CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Certificate serial: 019749D607324AEE13A3518D6CBA0C3ADB51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
Manifest number: AD
Signing time: Sat 07 Jun 2025 10:00:52 +0000
Manifest this update: Sat 07 Jun 2025 10:00:52 +0000
Manifest next update: Sun 08 Jun 2025 10:00:52 +0000
Files and hashes: 1: YfJtBuAEzwrAwSN_J7xGNSKCjCE.roa (hash: XmpRYRo5Vs4yfW8P8k8ClzDTbvhLktOQ+0fCN4Fj/SI=)
2: wQdbeoGvSd7_tsg1xWCO4LiEMso.crl (hash: oZ6FOrtPzY6NJ/wKQr/bsnzvhPwG60sg6ZPNEGJBbtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:07:32:4a:ee:13:a3:51:8d:6c:ba:0c:3a:db:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Validity
Not Before: Jun 7 10:00:52 2025 GMT
Not After : Jun 8 10:00:52 2025 GMT
Subject: CN=a887bb08f70b32d436a34f0320767173dce02cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d0:7c:28:9c:71:ce:07:33:5b:f4:93:e9:ed:
97:51:1d:ef:11:f8:19:25:8e:38:30:a7:22:e7:9a:
d7:28:bb:f6:76:f4:86:1b:62:19:97:c8:90:4a:44:
76:ca:57:96:3e:43:5e:3b:c6:21:3a:e1:5b:6c:a6:
11:fe:22:0f:9e:c8:2e:1a:6f:28:d2:da:31:50:8f:
37:b4:65:f1:a0:37:8e:fc:9a:ee:44:8f:68:ed:90:
26:b3:82:65:f7:c6:91:21:f7:a1:f0:db:86:5b:01:
8a:8f:4f:ba:4f:85:26:9e:40:c8:89:b9:e8:05:b6:
c6:b0:73:6d:82:89:0a:16:07:ad:90:a7:b3:26:5c:
04:bd:1d:cd:b4:6b:b9:8f:39:c1:04:f4:50:30:fc:
20:62:e0:ec:ae:6c:55:36:b4:70:11:73:9d:99:fe:
52:f4:bc:53:61:15:a3:a2:c6:3d:f3:3a:02:9d:67:
2b:c5:d2:fb:80:79:77:fa:f4:77:79:c5:b5:d7:3b:
c5:45:54:9b:d7:29:b7:5d:84:f1:29:37:93:67:c6:
c6:09:f1:dc:3c:2e:46:de:dd:85:10:8c:67:a8:bc:
ed:70:be:03:b4:32:97:c3:8a:3a:3b:64:3b:c1:56:
1a:9a:b7:81:72:90:d0:6a:8d:00:ac:5d:05:31:e4:
7b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:87:BB:08:F7:0B:32:D4:36:A3:4F:03:20:76:71:73:DC:E0:2C:EC
X509v3 Authority Key Identifier:
keyid:C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:a4:d7:17:06:53:f6:5a:3f:b3:32:6a:8d:cf:ba:22:15:28:
a5:61:7c:a2:c3:c7:98:26:18:99:0e:73:ae:29:1e:74:95:b4:
22:88:1e:15:d1:d6:61:b3:55:9a:05:88:37:83:aa:a4:a4:24:
34:d2:95:eb:41:7d:67:7c:86:04:6b:e5:36:73:f8:7a:e7:58:
41:5c:f5:1f:11:23:0a:a5:42:b0:90:f3:8b:cf:19:d7:14:56:
1a:31:cd:9d:10:c0:e9:cb:a0:00:8e:90:0c:cf:34:0c:6a:f8:
1d:fa:b7:16:21:35:d7:20:4d:21:72:ef:eb:32:38:60:2f:ec:
28:10:d9:02:b2:96:4f:31:e5:3e:63:3d:5c:00:af:49:9d:d4:
ed:54:66:04:f1:3d:41:59:42:bf:0f:ca:38:8c:50:25:ee:92:
ba:cc:0a:35:ef:2e:3f:f5:f5:93:94:10:a7:b2:ac:aa:8e:5e:
4d:e9:3a:57:95:85:f8:a3:9e:8f:63:43:5f:4f:9a:75:75:c3:
44:96:b9:5d:dd:9c:d5:d7:75:23:db:46:fe:39:0e:6a:9a:12:
e4:a4:6f:d2:22:b1:be:a8:7c:70:aa:1d:a0:28:b4:0a:00:24:
3c:50:1a:83:28:5f:67:24:80:3d:2e:32:95:5b:53:a8:49:a3:
0f:49:39:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:46:27 2025 by rpki-client