Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json)
Hash identifier: nH9hcZ3JfwJ7dKdKw3x3aBgjLlCct87CPRNUGG3E6mA=
Subject key identifier: 36:C9:FF:A9:21:75:3F:F6:7D:F9:D6:83:11:D7:1E:6B:50:BB:8F:21
Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Certificate serial: 01974CD71E295CDDC74F81B8F623A0A35673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
Manifest number: 0F79
Signing time: Sun 08 Jun 2025 00:00:55 +0000
Manifest this update: Sun 08 Jun 2025 00:00:55 +0000
Manifest next update: Mon 09 Jun 2025 00:00:55 +0000
Files and hashes: 1: 8XxbJK1GWPrtjat_Lpe2HKly_9k.roa (hash: 1REGOqOGYIsLrmhSt5pZG4EmBpaR7Cf++uPRynahll8=)
2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: vtlFZgBkHX6y17ZCf2QIttSN2/YAoxwX7NmZQv7eyDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:1e:29:5c:dd:c7:4f:81:b8:f6:23:a0:a3:56:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Validity
Not Before: Jun 8 00:00:55 2025 GMT
Not After : Jun 9 00:00:55 2025 GMT
Subject: CN=36c9ffa921753ff67df9d68311d71e6b50bb8f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:be:13:4a:8b:7f:66:a5:cd:58:fb:07:bf:c4:
ec:8e:45:05:f3:8a:d6:13:cb:16:67:85:1e:28:f1:
7d:7b:7f:d7:65:d6:f8:4c:2d:35:63:d2:3e:0a:e6:
dc:6e:24:03:90:6d:03:6b:ad:80:0a:89:7d:63:bf:
2f:04:49:f9:16:98:ab:fe:1d:7c:75:46:18:ae:fe:
bc:ee:09:27:94:5f:91:2f:f5:52:83:2d:0e:45:89:
ad:fa:30:30:12:9d:76:27:97:80:13:b2:32:9e:a6:
56:88:14:b6:d3:13:5f:b5:2c:c4:e8:0c:db:37:fb:
59:63:99:5d:3d:8d:4f:db:11:4c:f3:a9:f3:b0:bf:
e9:68:16:8e:0f:2d:e2:a4:fe:cd:4f:ea:df:fa:a0:
14:45:3e:58:ea:8c:6f:e3:02:7c:2d:4e:4f:25:58:
ba:1f:b4:4f:e2:21:f7:50:00:9b:d5:cf:e3:b1:0d:
b0:b7:74:a7:83:ce:57:05:17:86:e4:68:00:c3:af:
0b:a5:16:f6:fc:e0:c7:26:fc:72:1e:c3:ba:50:d1:
17:93:70:98:96:93:c9:c2:31:50:5a:09:ab:b9:7f:
a3:35:b9:d3:78:f2:a7:c0:c7:4e:c7:01:c3:a5:e4:
54:e5:6d:27:8a:c1:f6:7d:e2:32:a3:8e:67:6f:51:
6f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C9:FF:A9:21:75:3F:F6:7D:F9:D6:83:11:D7:1E:6B:50:BB:8F:21
X509v3 Authority Key Identifier:
keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:cd:b2:cf:d8:9f:f5:d5:4b:6c:1b:df:2c:6a:f6:1a:85:d4:
5d:af:61:ee:5f:06:aa:4c:0b:04:fe:2a:c0:48:e0:df:1c:7d:
9d:6e:96:c7:1a:2b:a1:f8:ca:19:3d:12:87:7a:2e:5a:d3:61:
ca:56:57:c3:32:d0:dd:f7:8c:d8:c1:61:36:ba:52:6e:41:07:
b9:00:19:96:08:a1:3c:c3:95:bd:bc:5c:48:c1:c3:72:9a:3f:
7b:fd:0d:4e:0a:a3:f8:23:a8:e8:01:a6:2d:dd:41:5f:3a:49:
9f:38:98:40:04:c0:cd:a1:11:1d:a6:fd:37:e3:a9:b6:ce:20:
dc:82:99:e2:94:2a:76:24:76:18:66:d4:0c:01:a2:fc:4d:02:
60:72:85:7e:75:36:72:d0:0f:15:03:c8:c4:5c:b9:de:bd:6d:
87:71:ff:ac:aa:83:9e:7b:c0:42:73:5b:dd:0c:06:b5:39:e9:
ea:ca:4f:34:eb:e5:fb:47:ca:d6:10:5a:83:41:25:90:e4:4d:
2d:57:c1:1f:a0:f2:d2:23:73:d8:dd:3b:5d:1f:0d:ed:fb:b8:
ed:04:b8:2e:9c:67:32:d9:46:c8:3b:a5:66:41:d9:c1:ea:3a:
30:b1:83:50:f2:e5:d9:35:42:65:4c:64:81:8e:83:f2:a0:ef:
d3:72:69:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:46:32 2025 by rpki-client