Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json)
Hash identifier: vMxYo7vxaSMfBgSWIbv5bLlem4JEOPB/Ff+eTPvlrFE=
Subject key identifier: BD:09:06:8D:76:74:03:9A:50:01:0D:65:8E:83:C4:26:EA:E4:A3:F6
Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Certificate serial: 0197462FE55E53CAF17F17DF580A42C445C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
Manifest number: 0526
Signing time: Fri 06 Jun 2025 17:00:33 +0000
Manifest this update: Fri 06 Jun 2025 17:00:33 +0000
Manifest next update: Sat 07 Jun 2025 17:00:33 +0000
Files and hashes: 1: 6rvpyTq3GpToeI0SORQBn8auSqk.roa (hash: It3me0g3R8Ie8D4qrGq2UTC1Pz9Blt9bU50UXq7GwOE=)
2: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: INA9cIMRtf5Bg5U5mj8na4Ezal/OllJPCKvPA/LmhyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:e5:5e:53:ca:f1:7f:17:df:58:0a:42:c4:45:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Validity
Not Before: Jun 6 17:00:33 2025 GMT
Not After : Jun 7 17:00:33 2025 GMT
Subject: CN=bd09068d7674039a50010d658e83c426eae4a3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5e:17:18:0a:af:8d:fc:17:34:e2:be:aa:cf:
7d:f1:ee:7b:0a:45:24:18:97:a0:67:4a:e1:55:a2:
31:8e:14:5e:03:5d:3b:e2:c2:a2:55:6b:56:81:c5:
f9:c6:8f:cf:b9:d7:6e:ae:2a:2e:55:0d:08:d6:43:
bb:1f:cb:92:f0:e1:34:1a:15:b3:07:2f:60:ee:eb:
75:1c:29:53:23:85:02:9e:3c:f9:ca:7d:7b:c7:d0:
da:b0:b1:78:26:70:be:c4:ac:cc:bd:96:92:7e:6e:
af:a9:e7:11:61:e5:f7:bd:79:34:e2:05:f8:af:92:
35:9b:31:69:d3:1b:9c:42:4e:c6:74:37:28:9c:32:
8e:09:e2:10:d0:79:c6:46:bf:54:78:ab:dd:3c:48:
e4:91:b4:aa:b5:41:4e:b5:14:06:26:be:40:5c:3a:
fa:13:63:1f:66:07:89:df:ff:bc:e5:bc:de:aa:3b:
63:18:3a:f4:da:ca:f5:a8:47:26:2f:c7:9b:c7:c6:
fb:95:df:8c:58:05:4a:38:a1:86:ee:fc:48:53:5a:
5e:a4:7f:5d:59:07:29:16:25:60:3a:10:8c:00:1e:
ef:e4:da:74:ca:67:41:6f:6c:fc:1a:44:8e:14:a2:
7d:0a:fb:fc:bb:40:aa:2a:e3:de:51:96:46:1e:28:
dc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:09:06:8D:76:74:03:9A:50:01:0D:65:8E:83:C4:26:EA:E4:A3:F6
X509v3 Authority Key Identifier:
keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:26:06:d7:84:c5:f5:8c:43:a7:31:1a:09:08:7f:fe:37:bc:
41:2f:de:92:a0:f1:1a:63:ea:10:ca:24:54:84:e8:c4:e0:50:
93:65:7d:5b:5c:c8:8b:7b:64:ad:c5:99:19:70:e8:23:1e:eb:
a1:14:96:71:e6:75:b3:98:ce:4c:e2:9e:4a:f0:15:15:d0:9c:
ef:b7:e9:d6:d5:5a:cf:df:6a:55:90:fe:aa:2a:9b:75:72:97:
dd:54:37:f6:b7:4d:07:07:25:f4:8f:42:30:4e:c8:6a:b3:46:
a4:54:d6:51:71:1a:e8:e8:c6:d2:87:3e:15:53:b5:55:73:64:
5c:c2:27:a6:97:77:8b:ed:e6:31:d3:8f:fe:e9:a3:c2:9e:5c:
ee:82:41:0d:e3:64:05:b6:a7:ca:4c:99:e3:10:ae:a4:09:de:
a6:b7:09:4f:a0:8e:b9:9d:37:be:13:bb:0c:bc:c2:05:07:1c:
2d:f5:60:1f:9e:a5:aa:52:f8:6a:a6:80:8d:72:cc:d6:a0:87:
2b:18:ec:2f:f7:92:d0:ca:7d:e1:06:e4:f6:74:40:76:1e:1b:
37:44:f4:e6:30:ce:ac:db:a0:ed:3d:9c:6d:62:75:5d:bc:a9:
79:53:ee:06:55:b5:78:9d:61:76:b7:38:aa:01:e8:a9:ab:1f:
be:31:1e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:26:21 2025 by rpki-client