Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
File: rN3HO1mh_N7iLiWCTUCswnKGqlI.mft (raw, json)
Hash identifier: dZ6986OZOz9erv7MKF1KNwCcDfu5yqZetHg8mfDA4gQ=
Subject key identifier: C2:AD:45:AD:74:54:0F:89:F1:3B:82:F1:67:C9:D6:68:A2:75:E8:EE
Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Certificate serial: 01976EF4F432F95F7237DEC8904B4BCB9B92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
Manifest number: 01E4
Signing time: Sat 14 Jun 2025 15:00:36 +0000
Manifest this update: Sat 14 Jun 2025 15:00:36 +0000
Manifest next update: Sun 15 Jun 2025 15:00:36 +0000
Files and hashes: 1: oo8iJLtCvQj5tOxPs0jWtfp64Qc.roa (hash: XKlJdTZMxFrgX9Jc6CyAN7uX/wDP3zOgo6gX8cl2wYU=)
2: rN3HO1mh_N7iLiWCTUCswnKGqlI.crl (hash: NR2pQCs+X+FrKUZT/YmvZzEifZl5LiR94/Dwd9vQVYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:f4:32:f9:5f:72:37:de:c8:90:4b:4b:cb:9b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Validity
Not Before: Jun 14 15:00:36 2025 GMT
Not After : Jun 15 15:00:36 2025 GMT
Subject: CN=c2ad45ad74540f89f13b82f167c9d668a275e8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a1:56:79:26:85:8e:3f:9f:4b:04:aa:da:75:
d1:f0:b1:cd:e7:a0:90:92:2c:65:44:c0:9e:98:3b:
a2:f1:0c:65:30:9d:67:83:2d:5d:7c:a0:7e:c3:ff:
e5:e0:37:6e:80:54:f7:fd:21:76:ac:22:79:7d:3b:
59:75:4c:92:6a:4b:bd:2f:b6:b5:4f:19:49:f5:43:
3d:f7:a1:1a:32:1e:d6:fc:5e:62:d2:6c:44:4d:68:
89:03:6b:59:6f:ca:5e:fd:fa:b8:1a:e9:86:ab:9a:
d5:04:b2:ed:0e:60:f8:39:5f:0f:24:20:a4:d1:66:
f7:d4:da:b9:6f:7c:b7:3c:d5:76:da:19:1c:14:11:
94:55:58:f3:51:95:fc:47:e6:8d:e0:f9:a5:89:c2:
e9:a5:b9:02:89:d9:b1:71:99:e1:15:18:c4:6e:ec:
a8:cd:e2:31:fb:bb:66:9b:24:8e:db:b6:3d:6d:6f:
ec:ee:b4:d9:49:ca:7e:5e:11:4c:e4:02:ed:04:22:
1e:8b:c3:e9:91:ec:64:0d:66:41:5f:cb:db:8f:35:
e8:47:a0:56:d6:d3:6c:01:71:8b:58:46:93:1a:c6:
76:04:37:5a:ce:ab:88:7e:79:02:9b:68:3f:56:b5:
04:fb:69:74:5b:04:14:d0:3f:29:c8:71:76:79:3d:
62:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AD:45:AD:74:54:0F:89:F1:3B:82:F1:67:C9:D6:68:A2:75:E8:EE
X509v3 Authority Key Identifier:
keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:46:57:43:97:c2:30:d5:f1:26:49:de:2b:10:bf:30:06:e2:
9e:16:1f:6e:99:77:99:5e:5a:8b:b1:4e:ab:fc:39:59:7b:6c:
bf:87:ea:84:5d:09:ee:4b:8a:45:4d:81:bf:c6:3c:9c:c9:63:
f0:8e:16:6a:ce:a1:04:0d:22:2f:34:05:6e:e1:33:70:be:a9:
9f:78:08:a4:b8:de:87:ba:7e:ee:5b:7e:97:71:63:40:21:f1:
d3:78:19:e4:8a:f7:74:47:66:83:f6:78:d7:41:31:1a:84:5f:
71:bc:21:d8:9e:f5:a6:26:70:33:e4:4b:71:3c:62:a2:80:b6:
c2:9d:83:ea:97:6f:53:7d:dd:54:60:ef:db:e4:8c:92:f4:f8:
51:bc:f5:5d:4e:53:0f:8e:ed:33:d0:9b:2b:72:54:24:6b:90:
04:be:af:15:07:67:06:ed:15:02:93:30:cb:b3:fb:3e:56:57:
08:28:88:25:17:ff:cf:e3:73:57:2d:5e:ea:b2:a2:06:48:5b:
ca:73:e1:f6:14:3e:6c:13:88:7c:65:a4:f4:45:c2:59:19:5c:
e1:ce:48:20:fd:72:4c:fa:e6:fd:17:f7:7c:a8:ea:e5:d0:b3:
ca:01:47:f4:3d:0e:d2:99:9b:d6:df:52:aa:d0:74:00:07:8b:
e7:b1:ea:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:50:41 2025 by rpki-client