Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json)
Hash identifier: c+mnVIASdjq+6maMN/xmQajg0q/E8I3Dt6kBwo34S8w=
Subject key identifier: DF:65:3B:2E:B4:71:82:CB:6E:1E:30:CF:3E:DA:7B:11:16:DA:0D:DE
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 01976A05A902C7FD8039A12070D51EE899B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
Manifest number: 0685
Signing time: Fri 13 Jun 2025 16:00:45 +0000
Manifest this update: Fri 13 Jun 2025 16:00:45 +0000
Manifest next update: Sat 14 Jun 2025 16:00:45 +0000
Files and hashes: 1: J5SKCaGOc1EmK2ciMl5AsL0Yt6k.roa (hash: G1OhQbiptYNimu4j0r+tzGfxHpXqGX5AtlwZt3l6QBs=)
2: TMwrQ9VEC3dWwdOdSzhchqd9LKU.roa (hash: ddLT4suSyGT63FePBoB4o2Q5fl/qPXcvtKn+r4yKT0g=)
3: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: VQoUNDhGAazzsnwl48ZOBblHRQnL/uhLwm036HaM9co=)
4: qjXXTFXVdVVWr7-MSHZr7AQqbSo.roa (hash: Sp8Mn3EU/O89RIW7deIN1lZCT2/D8tgJU4hIx0BHNRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:a9:02:c7:fd:80:39:a1:20:70:d5:1e:e8:99:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Jun 13 16:00:45 2025 GMT
Not After : Jun 14 16:00:45 2025 GMT
Subject: CN=df653b2eb47182cb6e1e30cf3eda7b1116da0dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:22:69:5f:90:19:38:0a:8a:90:01:a4:be:1b:
cb:84:6f:13:c5:37:59:ea:a1:3e:fa:34:f7:16:fd:
0f:c4:0c:4a:e0:0e:92:c5:f3:3f:87:7f:10:ea:ac:
18:d0:9a:16:a9:9f:df:d1:53:91:57:ea:e8:88:6f:
d1:fa:55:24:28:27:ea:b6:13:f9:b9:be:c9:7b:fc:
3e:53:87:eb:5f:88:08:62:25:db:81:25:25:b4:54:
87:24:ef:fa:ac:e7:1f:b2:da:99:fd:20:56:31:7d:
e9:ec:aa:9c:8e:4c:4e:fa:df:2d:28:37:28:a8:f8:
68:29:62:32:b3:cb:22:b3:17:66:45:77:77:66:7b:
d8:b3:e5:b0:35:e1:98:85:36:ac:1b:ac:30:af:fc:
a2:93:da:ef:8e:ec:69:20:c5:50:61:03:bc:c7:ae:
2d:4e:09:48:7e:db:a7:9e:b2:3c:80:c7:5f:71:1d:
0d:08:37:39:c6:f0:d1:01:0b:fb:c4:23:e2:cf:d2:
9f:42:8e:e6:82:e9:25:2d:12:fc:98:c3:fa:17:76:
09:89:26:49:9d:df:09:e5:09:a9:ca:74:a6:82:60:
ce:40:a9:48:13:57:e6:ee:94:ec:d4:8d:44:69:83:
5b:f3:81:bd:a3:0b:bc:e5:16:01:fa:4a:7f:18:60:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:65:3B:2E:B4:71:82:CB:6E:1E:30:CF:3E:DA:7B:11:16:DA:0D:DE
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:09:6c:05:97:ee:35:d6:cc:a3:ae:b9:b1:cc:75:ef:c2:f6:
c9:03:23:50:66:8f:ac:d5:a9:12:d0:20:55:11:0b:07:4a:45:
75:81:1c:5b:a8:bf:33:97:bf:8f:a8:f6:85:c2:fe:4c:44:e3:
5a:b7:94:7a:4a:7f:f8:e2:d5:74:20:9e:fb:5b:b2:8a:5b:6f:
95:36:59:1d:e9:24:2e:33:5b:35:1b:32:33:8f:69:d1:9b:d1:
f0:54:d8:ca:ec:e0:a6:75:b9:b1:ef:f6:5c:cb:6f:aa:ba:20:
57:81:54:5f:84:cb:54:4a:b4:68:3d:03:a6:01:4f:30:1a:ea:
7d:04:59:58:84:54:b7:44:42:73:82:01:12:72:44:db:7f:c0:
7b:93:c9:90:9b:f8:3b:0f:3b:60:ba:91:42:33:99:9d:ea:ab:
40:d2:75:19:76:f3:08:09:37:f2:27:ef:7e:4d:30:dc:f3:fa:
69:e0:a5:f5:a3:22:53:1c:b3:ea:72:55:c4:e7:69:3a:d5:f5:
6b:69:c7:1c:56:49:06:f1:8d:6c:56:e9:36:7f:24:78:81:e1:
5f:3c:16:39:78:a5:86:83:8d:02:d0:1a:74:b5:d2:97:bc:39:
b2:dd:3c:32:ab:fc:64:47:9f:c6:6b:9d:11:82:a4:2d:a3:3a:
57:23:69:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:31:16 2025 by rpki-client