Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
File: sCqa8vxf6TxDFIqssTxRvpBMjkw.mft (raw, json)
Hash identifier: 6SHWME1Chi49K23iJXrRYbZziQ19JkzMV90TRXtBOqc=
Subject key identifier: 0E:09:E9:F1:1A:05:F6:DE:9E:FE:15:03:42:7A:3D:B0:D6:AB:AC:17
Authority key identifier: B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
Certificate issuer: /CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Certificate serial: 01974DB29272854D147ADAAA9E0F337110BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
Manifest number: 03B9
Signing time: Sun 08 Jun 2025 04:00:37 +0000
Manifest this update: Sun 08 Jun 2025 04:00:37 +0000
Manifest next update: Mon 09 Jun 2025 04:00:37 +0000
Files and hashes: 1: RLYBpjQJ_nWnvtQxzs5jpfZ53LI.roa (hash: WydSL9s2ghSAkXvNPUv+LZJE2s3aihvIV2UvrS6hIBw=)
2: sCqa8vxf6TxDFIqssTxRvpBMjkw.crl (hash: vK2N52GYwQmdjm6fOOdlMM/WLHPomXmh29HwnpTaAbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:92:72:85:4d:14:7a:da:aa:9e:0f:33:71:10:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Validity
Not Before: Jun 8 04:00:37 2025 GMT
Not After : Jun 9 04:00:37 2025 GMT
Subject: CN=0e09e9f11a05f6de9efe1503427a3db0d6abac17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:fc:d3:b0:5c:ee:a5:10:eb:bc:77:4a:45:
70:9d:5a:43:a8:97:a7:78:1d:97:e8:eb:1e:d6:7f:
64:52:19:2a:e3:9e:2d:fb:ea:ec:f0:c8:81:8a:d6:
52:c0:ae:69:4c:91:c1:a3:7e:33:0e:49:90:66:f9:
6c:76:ca:c7:46:d1:29:74:22:37:48:6f:20:17:c3:
49:23:11:83:e5:6a:97:15:3c:7c:20:ea:e0:52:57:
a9:31:cf:15:94:a4:1c:f3:38:56:e2:ad:2b:fa:e4:
96:11:85:2a:b4:25:e0:b7:df:4f:03:4a:85:5a:8c:
37:a4:6c:c7:58:b5:df:b0:28:78:87:6d:75:e4:b3:
40:da:bf:58:fd:6a:1d:3d:dd:90:4f:72:b6:84:37:
ef:31:b5:e2:c3:8d:13:39:c7:8b:9c:97:84:d3:f2:
8e:06:1a:2b:dd:69:35:09:ba:b4:5d:5b:5c:cb:46:
cc:96:0d:63:89:16:2c:c7:65:04:af:b2:52:27:bb:
00:69:e1:c9:76:1b:bf:3d:10:4a:81:f8:b2:53:bd:
0a:12:93:ae:c2:f4:f6:56:43:53:f0:2f:63:d0:36:
c8:42:df:12:fe:97:8d:ad:25:26:65:51:74:e6:4c:
c0:d7:bc:70:c0:ad:4d:0e:4d:d7:65:f4:ec:b9:38:
27:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:09:E9:F1:1A:05:F6:DE:9E:FE:15:03:42:7A:3D:B0:D6:AB:AC:17
X509v3 Authority Key Identifier:
keyid:B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:20:91:44:ba:e8:43:9c:6f:22:ff:98:bc:5b:7b:bc:0e:0d:
06:7d:f7:72:c8:dd:33:81:35:9d:5d:10:de:d1:87:bf:cb:af:
5b:34:9f:c7:79:00:40:3a:85:01:fc:c4:80:c4:0a:d1:30:64:
96:15:a4:80:b9:0c:7f:4d:c2:81:7c:ca:73:26:4f:ee:23:a9:
c6:45:20:55:c6:fc:82:52:ac:94:12:45:ba:f5:e7:3e:7e:7d:
36:d0:d0:a3:de:d1:66:10:d1:5e:3b:50:3e:9a:38:43:aa:f6:
40:dd:40:ce:55:e4:92:7d:5f:36:f1:29:dd:64:62:c7:71:4e:
83:3f:dc:d6:1f:6b:d1:ef:c9:d1:a8:f4:70:9e:3d:fe:ec:9b:
73:f7:83:75:50:65:90:6d:7f:8e:a5:b6:d9:37:08:ad:0c:2a:
1f:3e:d7:56:94:17:e2:d5:9e:76:b6:5e:00:7f:f8:c8:0f:88:
68:17:1f:08:5f:b8:a6:d1:74:bd:17:20:f0:c8:ec:af:ab:97:
b4:d7:7a:ac:43:e8:93:93:c0:44:2f:fd:07:f3:f5:b2:06:f8:
67:4d:f2:6e:d3:40:34:50:d9:76:08:a8:b3:85:c0:f2:f7:20:
7e:ba:b3:63:c6:cd:3d:33:f6:04:f3:d4:9a:57:16:04:15:c6:
25:81:8e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:34:49 2025 by rpki-client