Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: 233nB3LfjyYf0HhBvif+n3mhNYJFrQduZGvWoMz/KOM=
Subject key identifier: 78:BF:15:5B:AF:AD:A1:5C:AD:FC:64:48:FB:53:01:6E:B9:17:1D:F9
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 01976E19AA7D2B7406104C98E2C8ABCB22FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 0238
Signing time: Sat 14 Jun 2025 11:01:05 +0000
Manifest this update: Sat 14 Jun 2025 11:01:05 +0000
Manifest next update: Sun 15 Jun 2025 11:01:05 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: 6y/7Yuz+u5SHiH7cewSrYYSZ8a6ze/teZb3PVTw7dHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:19:aa:7d:2b:74:06:10:4c:98:e2:c8:ab:cb:22:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Jun 14 11:01:05 2025 GMT
Not After : Jun 15 11:01:05 2025 GMT
Subject: CN=78bf155bafada15cadfc6448fb53016eb9171df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:73:49:fd:ba:0c:59:ff:3d:55:87:a6:a0:ee:
de:07:fa:95:d2:04:f8:6d:ec:67:6f:c3:0e:ba:65:
8c:aa:c7:b7:8f:21:d0:c3:07:04:8a:8f:4f:e9:2b:
d7:48:ed:c1:0c:21:0e:5d:74:0a:a8:89:87:f7:b6:
b7:a2:02:03:75:da:78:75:87:5e:36:38:2a:1b:f3:
95:74:be:d1:47:ef:30:60:0d:2a:c9:21:ec:69:b2:
3c:38:34:da:44:e4:43:b6:6c:03:f2:c0:b0:ac:5d:
3f:8b:34:6b:88:b4:ba:33:04:15:e0:8d:e3:28:97:
33:4c:a5:86:12:45:66:ca:6a:40:95:a0:8b:08:e0:
0f:53:ca:7f:e0:ab:e5:3b:08:eb:f3:da:a4:36:c9:
2d:08:b4:e7:99:1b:78:45:2f:6f:6e:62:65:ac:7c:
0f:62:05:03:b1:4c:17:05:64:a3:ef:f8:2b:dc:f6:
4a:d0:d1:20:ea:ae:13:e4:52:76:4f:ff:84:fe:f6:
82:f9:63:e4:31:c2:df:bc:9c:e6:ad:52:0f:9e:37:
a7:ab:b1:56:16:b9:0d:12:b3:9d:50:a8:7f:65:84:
ea:c2:3e:14:29:cc:26:78:1a:2a:8b:89:ed:eb:f0:
f9:3d:4d:31:cf:67:fb:3c:6b:f5:a3:fb:51:82:ce:
d2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:BF:15:5B:AF:AD:A1:5C:AD:FC:64:48:FB:53:01:6E:B9:17:1D:F9
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:89:ae:a9:e0:af:35:09:77:7c:6c:d5:29:b8:04:5c:b1:68:
b4:14:02:6c:d8:7e:07:70:4a:19:63:62:ab:df:76:89:6f:f3:
a5:1f:16:8f:fd:27:5b:9c:ed:8d:8f:60:6f:7f:1e:27:8b:08:
45:67:c1:3e:0a:f3:9c:aa:af:6b:5e:bd:9a:c8:31:27:30:27:
f4:fe:fe:92:fc:8b:db:e9:c9:f3:a2:90:ae:55:58:cd:9d:f4:
97:ff:da:85:5c:2f:89:f0:cd:b3:8b:d9:49:b8:fc:85:55:d4:
6e:91:fd:13:e1:e5:3a:49:c6:51:b5:4b:5b:9a:34:c8:ec:5d:
c9:05:5e:09:fd:00:b2:9b:21:45:2c:b0:70:0e:fa:c3:7a:10:
31:c2:69:38:32:9f:bc:7b:b8:85:f7:8d:23:e7:9b:ab:fa:b7:
c5:cf:e3:fd:e8:69:52:9d:77:1d:7b:b6:24:56:20:22:76:c0:
98:62:eb:71:bb:56:ff:6d:56:fe:46:c3:15:88:1e:32:7e:67:
aa:f4:68:6f:82:90:f4:8e:87:a2:21:97:d6:4c:c2:e1:5e:06:
e5:e1:8b:8f:f7:6a:c6:bd:80:27:6b:7f:7e:3c:78:4b:69:d4:
63:24:4a:62:58:6a:5f:a1:91:38:6b:bf:ea:1d:1b:ea:9c:6b:
24:f4:b5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:49:31 2025 by rpki-client