Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
File: 9XpIEqFZ72qekpcudXKtZi1yIVo.mft (raw, json)
Hash identifier: jVYP300tbXMwsDf8KKcN7zPXYUhqN2PRD8ZBPXWB8YA=
Subject key identifier: BA:F8:29:F3:42:A4:19:D9:B4:19:85:0A:3C:A2:CD:5E:D4:1D:7F:87
Authority key identifier: F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
Certificate issuer: /CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Certificate serial: 01976772EB71329D2F018C698D7C7B06F1C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
Manifest number: 0E74
Signing time: Fri 13 Jun 2025 04:01:13 +0000
Manifest this update: Fri 13 Jun 2025 04:01:13 +0000
Manifest next update: Sat 14 Jun 2025 04:01:13 +0000
Files and hashes: 1: 9XpIEqFZ72qekpcudXKtZi1yIVo.crl (hash: 1eRG0bv4uguNMAQ6SB9fj1Qlcb7sLNz2KlrSr8vM1Bw=)
2: rsfWL4ne_IO-bw3hiD_1W0HWkNY.roa (hash: zqnrJ6HitRbslJtaa/MioT9cGJCTTWr6OsfLiIDmwLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:72:eb:71:32:9d:2f:01:8c:69:8d:7c:7b:06:f1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f57a4812a159ef6a9e92972e7572ad662d72215a
Validity
Not Before: Jun 13 04:01:13 2025 GMT
Not After : Jun 14 04:01:13 2025 GMT
Subject: CN=baf829f342a419d9b419850a3ca2cd5ed41d7f87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c8:58:bd:04:b0:90:38:75:61:6b:ba:63:01:
87:69:6c:32:22:d2:28:90:01:5b:76:77:c1:a9:21:
52:69:23:fe:61:e6:21:72:05:c8:9c:e1:d7:f9:d3:
21:dd:f1:5f:73:d4:41:21:74:3c:21:13:83:7f:88:
ff:2c:58:d5:4e:4a:e2:8c:2b:ab:0d:7e:61:04:30:
44:e1:fb:e0:4e:57:4b:a0:f1:10:d5:c2:44:93:60:
86:bb:01:62:ee:3d:5e:e4:bb:5a:a4:ac:1f:97:be:
24:90:83:b1:8c:84:55:65:a1:17:0d:cd:4d:76:05:
8a:b9:48:0a:96:9e:59:0c:d0:c0:4c:13:06:9e:15:
58:84:35:3b:2e:fe:89:66:b4:96:41:f3:01:17:fc:
7b:d1:e4:a4:ac:02:ab:d2:4a:73:8a:d2:30:78:38:
c0:43:ad:4b:ef:15:8b:3c:0e:27:eb:d2:05:82:45:
86:07:c6:41:8f:f6:8c:0e:e4:b4:90:b9:4d:05:27:
bd:8f:a6:2a:d7:dc:f1:07:b3:7b:91:75:92:17:83:
70:66:58:e9:df:d1:15:82:2b:ad:77:90:34:41:fb:
45:c8:b9:73:86:95:17:57:76:09:a6:68:65:f6:ef:
73:69:01:fb:86:1b:54:04:76:ca:6f:fc:53:47:d4:
3b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F8:29:F3:42:A4:19:D9:B4:19:85:0A:3C:A2:CD:5E:D4:1D:7F:87
X509v3 Authority Key Identifier:
keyid:F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:94:92:12:23:3a:67:d3:4a:8f:78:05:d6:f6:f1:98:b9:91:
9a:bc:f4:ab:97:a2:a6:37:68:d4:03:9c:a7:2d:de:23:fa:12:
0e:93:fc:81:e8:fc:ef:2a:d3:4d:1e:8f:70:13:0f:3d:df:52:
dd:c7:a8:19:c6:e7:e0:99:e7:02:6a:d5:15:5e:33:65:8e:b6:
be:8a:71:e6:6a:3f:de:c7:07:d8:f6:71:96:d3:2e:e7:37:db:
b2:ea:71:ff:26:36:04:9c:72:10:59:58:0c:77:32:64:98:8a:
57:8d:08:42:ae:31:f5:4e:76:9c:79:d3:4c:4b:88:24:30:16:
a7:60:96:04:6e:89:97:05:b4:ab:48:55:43:3d:1c:05:71:a6:
c7:2d:27:5c:e2:0f:29:23:86:b5:59:7c:61:84:02:57:b9:60:
60:86:42:c3:93:b4:c6:4a:7f:e4:31:ff:d7:84:e2:b9:34:6a:
f6:76:20:28:22:72:b8:65:20:3e:12:d7:4d:44:53:bb:b0:75:
09:61:d5:45:bc:c1:57:c9:58:12:c3:e5:40:50:b6:24:38:32:
b6:dd:bc:2b:86:a8:a2:bb:a6:f7:e5:89:ba:8e:b7:e6:e1:75:
99:04:df:a0:b6:55:bf:1e:87:ac:29:bf:ac:11:f2:c8:ed:31:
cd:6b:22:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 06:07:06 2025 by rpki-client