Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: P+ccV4VcCboEn4HUNUuess8ALhOQYBCDuPNbMCJ/5+A=
Subject key identifier: CF:13:D2:67:62:72:32:84:2D:B5:FB:AB:CC:E5:EF:19:D7:06:AF:46
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 01974A7B6E87C034CD0FE2D7C9772966A363
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 13:01:32 +0000
Manifest this update: Sat 07 Jun 2025 13:01:32 +0000
Manifest next update: Sun 08 Jun 2025 13:01:32 +0000
Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: ObDPEq0k5y8JfmVZmNOi7px5skdvHoIoiyXjSNELutk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:6e:87:c0:34:cd:0f:e2:d7:c9:77:29:66:a3:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Jun 7 13:01:32 2025 GMT
Not After : Jun 8 13:01:32 2025 GMT
Subject: CN=cf13d267627232842db5fbabcce5ef19d706af46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:3e:d9:40:95:6a:2e:38:0a:c9:23:13:49:
51:76:33:5b:32:b0:8e:68:5f:55:d8:b8:7c:18:a9:
ae:2d:db:94:b3:d8:56:aa:88:53:66:ad:5c:a7:88:
d6:c6:4f:60:68:0e:ec:2a:be:b4:c9:ab:19:e0:cb:
9b:74:b1:89:60:52:7f:2c:28:2c:20:f8:ea:5b:4d:
14:14:6a:36:a6:60:0c:70:60:71:1d:12:b4:f5:b7:
51:36:b7:db:a6:67:60:e5:9a:a7:27:83:7a:76:b5:
95:66:be:c6:bc:20:0c:b3:2e:89:fb:ff:03:37:7d:
3c:7b:29:78:52:a2:11:c3:7d:c1:e2:a5:47:35:c6:
eb:9d:25:00:9d:b7:fd:06:6d:d6:b6:e0:7f:ff:b7:
7c:7b:29:c6:8b:86:d0:96:28:bb:45:c8:02:46:ef:
ff:e9:da:22:85:f1:63:b0:f3:4a:aa:32:11:cc:b9:
44:b9:00:93:98:95:f0:99:09:fa:9f:5d:e9:4a:7d:
0d:20:ee:d0:3a:74:ee:f2:20:83:e9:fa:17:0a:82:
2b:c4:24:35:9f:0e:89:e9:3b:18:bc:f0:d4:41:58:
fc:0c:94:80:91:b7:b9:f1:c0:8a:a3:21:89:be:f1:
c8:ca:a6:4c:a8:66:ae:98:16:10:6a:dd:60:7a:e1:
e0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:13:D2:67:62:72:32:84:2D:B5:FB:AB:CC:E5:EF:19:D7:06:AF:46
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:3c:84:ae:e4:db:5f:51:70:b3:ec:8e:00:0d:68:0f:ad:62:
0e:e1:f2:b9:19:93:6a:94:49:4a:e0:dd:1d:7c:76:ec:83:bb:
a1:8e:bb:69:61:a8:27:f4:3c:f1:e6:6a:7b:af:7b:2e:76:78:
80:51:98:da:09:3c:23:b4:34:1b:b8:ca:7d:c5:76:40:8d:c5:
dc:d9:6c:c9:8b:46:d1:d9:52:e7:43:5f:30:24:fc:ff:3c:88:
61:9a:82:83:31:41:91:2a:26:2b:54:8c:45:f7:b0:bf:61:56:
7f:55:e5:06:b8:88:14:92:6c:8e:b0:c1:11:c5:b5:52:dc:ce:
70:d9:fe:7a:17:a6:06:3e:41:ec:32:d3:6c:a4:d9:78:5f:6a:
d8:77:52:b5:b8:1b:13:61:c9:39:5b:0b:71:00:39:6b:76:0f:
2f:ab:58:81:59:f0:4a:07:5b:5c:35:7a:f7:ad:30:0f:5e:2d:
e9:0a:79:7b:5e:5c:fb:a7:ec:f4:5e:db:77:0e:06:e1:96:eb:
59:f6:35:6d:82:c5:71:8b:87:3d:08:be:f5:36:29:93:1d:a7:
0d:38:32:95:74:d3:9a:ef:90:25:4d:74:80:a7:9f:46:f1:d6:
2f:5d:62:ee:f6:68:3a:3f:52:b2:05:02:fc:12:5d:7e:a3:4b:
47:27:fd:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:37:09 2025 by rpki-client