Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: kh/zr1OWWVMHKQDTyTJfNLBngqZUtJtWKKPmqbYf99s=
Subject key identifier: B2:B8:5C:F5:56:90:84:DB:06:37:28:E2:E0:9C:F7:4D:EE:D5:74:8B
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 019746D512BB7604BCD57F46B3358B239048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 08DB
Signing time: Fri 06 Jun 2025 20:00:58 +0000
Manifest this update: Fri 06 Jun 2025 20:00:58 +0000
Manifest next update: Sat 07 Jun 2025 20:00:58 +0000
Files and hashes: 1: iFeMzfeEdL5eLiPhJVZH9fOR9os.roa (hash: Hluf44L3umjh9a1sEhuox24mM0+jKftFeuevrlqeW6M=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: /tj0Shf5f49XjxYgd6PGS8BudXTzf9FxVuxaV161ThA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 20:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d5:12:bb:76:04:bc:d5:7f:46:b3:35:8b:23:90:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Jun 6 20:00:58 2025 GMT
Not After : Jun 7 20:00:58 2025 GMT
Subject: CN=b2b85cf5569084db063728e2e09cf74deed5748b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:83:8c:5e:31:bb:55:eb:0f:02:c8:d6:ed:04:
01:52:f1:1f:a4:13:70:a4:e9:a4:23:5c:56:f3:3a:
c7:68:61:0b:55:69:c4:f7:ac:4f:0a:40:69:7f:fa:
9e:5f:0c:97:50:84:24:3f:6d:3e:a2:5c:c7:f9:cb:
b4:22:12:80:7a:62:3e:e6:08:66:fa:94:e4:a1:56:
58:94:23:2b:a8:67:dd:2d:82:bb:c9:2a:60:63:c3:
79:18:1e:f3:8a:33:e8:50:69:6f:3f:da:1e:d4:70:
8e:14:10:84:72:c3:73:4a:1d:d4:a3:b9:00:b7:90:
26:81:cb:8f:40:75:8b:56:ff:d3:9a:a8:18:9e:b6:
8b:c3:60:74:5d:1b:b0:d4:08:0b:3f:ee:84:04:c7:
5d:5a:d7:e8:8a:e6:0e:3b:3f:f6:e2:25:59:4e:d3:
4a:d6:24:05:ac:75:bb:36:39:5e:79:98:60:a4:4b:
5a:4e:4c:2c:1e:28:9f:ea:d8:e4:04:a2:29:c1:d3:
eb:5b:6f:83:64:6e:31:98:e1:5c:1e:20:95:a3:28:
be:b2:32:2b:58:6f:13:2f:e1:71:87:e1:49:ec:b7:
d2:3e:ce:e1:97:8c:5a:6c:0d:78:e1:ca:52:02:1d:
e0:22:e3:1f:cf:28:18:e0:2c:30:d1:57:b7:c1:7f:
7d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B8:5C:F5:56:90:84:DB:06:37:28:E2:E0:9C:F7:4D:EE:D5:74:8B
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:53:46:bd:51:58:e8:05:dc:68:41:fd:bc:31:cb:dc:e4:0f:
bd:a0:a1:20:8d:a7:6f:8d:60:b2:72:c6:d5:d7:fa:fc:4f:90:
e7:b7:29:7d:bd:ce:ef:8e:91:d1:20:fd:d5:dc:c6:f2:ab:c9:
1e:56:cc:b1:52:8a:1e:85:ee:b0:80:ea:f3:cc:e7:0a:f3:71:
32:a1:ce:e6:3a:6d:56:11:b2:53:33:94:97:a5:73:d1:4f:c3:
25:de:da:1e:fd:dd:e5:cb:50:92:39:95:1a:c9:e2:c4:fb:17:
1b:85:dd:b9:7b:8c:4a:52:88:05:ea:85:5c:e0:e2:08:34:40:
59:c0:aa:b2:ec:69:ad:08:8b:a8:48:c6:ed:75:10:63:6a:0e:
25:3f:57:34:51:9a:fa:33:0c:93:0e:75:5e:d0:d9:70:97:5d:
a9:1b:24:3d:36:3a:f8:59:b2:2b:48:bb:85:c7:96:0e:73:b9:
1b:82:af:d8:0c:69:e6:6f:56:aa:bf:d6:34:16:3b:65:48:45:
10:d7:8f:40:df:e5:ff:38:a8:69:b3:3f:93:03:0f:e4:c8:9b:
76:a2:11:57:f2:30:0a:d2:0e:aa:84:cb:fd:24:cf:ae:51:60:
17:14:fa:d8:de:16:09:74:3e:60:97:ee:19:06:35:38:80:9b:
f6:21:04:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:30:16 2025 by rpki-client