Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: Ja2UY5/kS5wL2NIMcKJz4ZnBQrgEbw9invQeepVhkMI=
Subject key identifier: 00:B1:AF:F7:8A:03:53:C7:FF:76:34:F4:82:CD:65:24:FC:97:86:D6
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019747B08EED2E9E38C9B4DFC5B7CC09B6DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 00:00:42 +0000
Manifest this update: Sat 07 Jun 2025 00:00:42 +0000
Manifest next update: Sun 08 Jun 2025 00:00:42 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: R1ecL8Kw9GlmGzfo1rxGX9AvFd3h4JgrMeUFTfxI2rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:8e:ed:2e:9e:38:c9:b4:df:c5:b7:cc:09:b6:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Jun 7 00:00:42 2025 GMT
Not After : Jun 8 00:00:42 2025 GMT
Subject: CN=00b1aff78a0353c7ff7634f482cd6524fc9786d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1f:5a:26:cf:57:02:44:83:d6:6d:de:38:5e:
0b:c3:21:16:19:b9:f7:c5:0a:85:45:45:19:fe:1b:
ac:74:b9:15:20:db:63:3d:44:a1:35:c8:f2:80:47:
22:53:be:1d:68:32:97:d6:f1:18:a3:85:7c:7f:22:
93:6b:2a:08:cb:dc:4c:12:56:13:bb:18:80:04:01:
6c:e1:c2:df:f7:69:cb:60:5c:8a:48:68:8c:fe:8c:
ae:b1:4a:eb:46:2a:b3:37:c6:d5:fb:ef:4e:29:70:
fc:6f:50:33:40:b1:3c:53:c8:88:79:75:ba:20:ed:
73:df:25:1c:d1:36:01:c0:ff:62:1e:eb:af:eb:3a:
6f:37:f5:ac:e9:48:db:13:58:3f:a6:e7:95:2f:fa:
12:12:d4:d0:8c:7c:a9:4c:65:ea:6c:13:39:8d:c6:
ef:cd:d0:16:0c:d4:05:ce:71:bc:ef:bd:5d:e6:bf:
2e:15:8e:05:32:7f:13:ca:4f:62:79:b0:29:a1:cd:
2d:3d:00:19:01:4b:94:39:21:b4:89:12:9a:bd:2a:
10:df:4e:de:6b:9c:b8:87:d9:d4:5e:39:88:52:c7:
f8:f7:63:57:c1:fe:74:db:83:a7:d4:ee:86:fb:0b:
c8:43:cf:b7:e9:b6:8e:0c:15:c9:ee:29:c5:fe:0f:
6a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B1:AF:F7:8A:03:53:C7:FF:76:34:F4:82:CD:65:24:FC:97:86:D6
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f3:ea:c6:0c:43:da:2f:32:6f:f3:56:34:b1:0b:77:6a:c6:
3e:a9:bf:69:54:20:8b:e8:77:22:ac:4f:b5:c7:b6:7b:02:8e:
9d:62:ae:79:ae:38:7e:a4:60:6c:25:1f:2d:f3:29:a2:5f:14:
46:75:39:e6:4b:fa:dc:98:97:02:eb:13:76:21:2c:c4:31:bb:
48:3d:67:06:b8:4c:d7:af:d9:62:2d:8a:c0:d8:92:13:8b:ce:
38:a4:f5:a9:9b:fe:fe:1b:b3:f9:ee:9a:4a:18:1d:64:e0:4c:
e9:9c:73:0e:67:57:de:54:80:73:2f:e0:90:eb:d2:83:14:86:
95:e9:89:21:df:48:50:24:93:d5:67:bd:a1:12:7a:a6:79:ab:
f4:4a:23:e9:c4:5d:8b:33:f3:a4:c4:28:0c:ce:00:46:fd:11:
94:71:70:fc:32:5d:3b:9a:73:23:cb:95:9c:14:19:79:9e:ca:
68:58:7b:4b:1d:c2:09:86:d4:37:01:d8:2c:ef:ba:4e:c0:39:
10:3b:55:1d:19:ea:11:60:e1:ca:38:59:c2:e7:a6:3b:5d:e0:
1f:1c:ea:9d:e4:6b:b6:ca:8d:27:c6:3c:e4:7b:8b:11:78:26:
67:47:ac:e0:83:1a:bf:cc:27:83:a1:62:1f:a7:f0:98:21:1d:
44:d4:b5:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:51:37 2025 by rpki-client