Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
File: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft (raw, json)
Hash identifier: 7VEoiVufM03h9lgLR7Z6JgBqE4WXEV2VsZfieeKoWHQ=
Subject key identifier: E2:21:FD:3A:ED:C6:08:EE:90:5B:A7:E8:6D:3C:FF:14:76:EA:90:A2
Authority key identifier: 46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
Certificate issuer: /CN=467350d5975a272a88bfb8810af45981cd55935a
Certificate serial: 019771BF9CDCE5B5512B94FA1588E284522F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
Manifest number: 0E8C
Signing time: Sun 15 Jun 2025 04:01:12 +0000
Manifest this update: Sun 15 Jun 2025 04:01:12 +0000
Manifest next update: Mon 16 Jun 2025 04:01:12 +0000
Files and hashes: 1: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl (hash: 42vQ9UEK6Ux7FZkk2IzoZQRgFHzKteq2OKQQiiD4xwA=)
2: cM594o8l7Xh7Dw0EOXhcxgvWLYI.roa (hash: 1Ym4804A2QtxpGJhVDPpEbLS0giUeOdd5FG8xMIV330=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:9c:dc:e5:b5:51:2b:94:fa:15:88:e2:84:52:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=467350d5975a272a88bfb8810af45981cd55935a
Validity
Not Before: Jun 15 04:01:12 2025 GMT
Not After : Jun 16 04:01:12 2025 GMT
Subject: CN=e221fd3aedc608ee905ba7e86d3cff1476ea90a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:73:37:04:6f:bb:92:c8:f8:66:65:e9:80:
eb:8d:6b:98:f2:a6:29:db:c5:45:bc:35:0c:2e:c9:
d1:85:bf:5b:67:97:d4:b9:fd:3e:97:8b:a1:df:a6:
93:df:08:8b:73:a5:b4:fa:52:7b:e3:64:4d:2f:d4:
5d:17:d8:6d:d1:9a:57:4a:58:3a:53:3b:db:5f:29:
5c:04:54:77:1a:68:ed:cd:bb:b3:b6:d0:6c:6c:22:
00:cf:4d:77:93:31:ad:ff:47:e1:5e:7d:09:45:f6:
e3:46:9d:2f:c4:20:51:f8:fd:39:fb:55:a9:68:4d:
76:50:b4:f1:7e:03:9d:2a:1d:a4:24:6e:08:44:42:
84:65:cf:8a:ac:71:3a:6b:da:ad:eb:3f:32:0d:9a:
88:c7:90:63:4b:2a:2a:40:16:c5:a3:49:d3:c6:ff:
aa:97:35:bf:ec:e8:0e:02:67:8f:eb:57:14:a9:b4:
ff:31:5d:01:5f:ff:e5:47:f1:79:d5:36:e7:29:38:
c3:87:45:d6:a2:fc:cc:7b:7f:66:82:13:fe:19:59:
b5:c3:64:2f:ee:14:de:2b:c4:66:e1:6e:52:d1:97:
e6:8b:04:bb:af:af:13:0f:6e:0f:32:45:8b:e1:a3:
43:64:50:fa:de:cb:3f:c4:a3:7c:3f:ba:b9:2e:38:
6a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:21:FD:3A:ED:C6:08:EE:90:5B:A7:E8:6D:3C:FF:14:76:EA:90:A2
X509v3 Authority Key Identifier:
keyid:46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:c0:56:b0:15:cd:8e:0a:59:c6:0f:25:ee:b0:88:02:c7:2c:
40:20:5d:b2:24:10:f7:be:aa:c4:9e:61:f8:15:90:70:87:3e:
39:c9:d0:35:ce:a6:4f:fe:05:12:00:06:52:99:f9:80:4f:1f:
f7:92:3b:80:c4:ae:ba:0f:d8:1c:ec:1e:26:81:21:a0:82:27:
2d:3f:f5:2c:7b:95:78:db:e9:d6:08:e7:a6:e8:b3:2f:dd:ce:
9d:45:42:9a:df:ba:cb:0e:28:ef:1d:9e:12:6c:3e:a4:60:69:
91:35:e2:62:d0:50:13:27:73:f2:1a:b7:8c:76:af:79:07:3d:
bd:ef:f1:cb:40:f6:fa:05:0d:60:46:d3:a5:d4:89:c9:3b:6b:
18:73:6b:bd:df:79:1d:08:2b:4f:5b:a9:04:ec:b5:09:95:37:
f0:d8:19:d1:c7:40:90:67:ff:1d:33:a3:6a:16:49:fd:17:f3:
4b:b4:51:81:d2:ba:01:c1:4e:27:a7:19:67:23:f2:df:1a:e9:
cb:42:0b:01:38:be:d7:3a:c9:f3:f5:7b:e6:0f:1f:f6:23:98:
df:e6:9c:99:0d:64:50:25:b9:43:b5:e8:3b:31:3f:33:ca:3e:
35:c9:18:cb:d9:77:04:82:f9:04:e6:56:03:a6:6d:c0:ce:34:
9e:ef:77:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:06:27 2025 by rpki-client