Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
File: sx0cKJHYgEaaINi38Y5M2GVDAEY.mft (raw, json)
Hash identifier: Fg3iHvf8SNdszxiSz+k7zphZiHR/F2RcaY3cFJteV44=
Subject key identifier: 9C:3F:EC:9D:58:5D:FC:24:40:40:A3:76:22:D4:B3:B6:B9:6A:F6:DB
Authority key identifier: B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
Certificate issuer: /CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Certificate serial: 0197718802C612B8F0CC786194AD106583B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
Manifest number: 0273
Signing time: Sun 15 Jun 2025 03:00:28 +0000
Manifest this update: Sun 15 Jun 2025 03:00:28 +0000
Manifest next update: Mon 16 Jun 2025 03:00:28 +0000
Files and hashes: 1: K12F-uP3adhB5XYkvRWOwtyWFxQ.roa (hash: 4K99rP4m/GgxDIw4+Su5OB+ocoFQK/2aIqkgeWKmoU4=)
2: sx0cKJHYgEaaINi38Y5M2GVDAEY.crl (hash: Fu2WBLPtmqpn44Nin6FERps9tbTB3IbyOvXp+VzCrtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:02:c6:12:b8:f0:cc:78:61:94:ad:10:65:83:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Validity
Not Before: Jun 15 03:00:28 2025 GMT
Not After : Jun 16 03:00:28 2025 GMT
Subject: CN=9c3fec9d585dfc244040a37622d4b3b6b96af6db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:39:de:6e:7f:19:fd:1c:d8:82:d8:64:fa:1b:
3d:20:b3:a4:57:09:47:d6:67:62:39:7e:90:47:c7:
93:6f:db:f9:00:61:be:95:3e:64:07:d5:42:dd:c3:
c4:c2:ed:7c:c4:f6:95:3c:8d:90:ce:cd:24:76:3b:
7a:20:47:f8:9c:5f:19:a7:a9:b4:98:df:9b:4d:9a:
e5:1b:c3:f6:25:19:c8:ac:ba:92:6c:3b:46:d5:e3:
41:22:19:14:94:b5:ae:7d:95:ed:b7:03:32:f8:dc:
bf:21:29:93:cf:a8:3f:54:67:d0:d4:82:7e:46:af:
69:89:51:f0:3e:8d:a2:fd:0e:41:a4:13:46:1e:61:
9c:c9:27:32:04:f4:30:cb:b6:6e:78:03:ab:96:f8:
5b:d1:05:57:24:49:4f:09:54:da:10:71:4b:97:d0:
8a:c9:78:4a:78:6c:e9:4d:56:6f:81:db:3a:0c:a3:
9a:f9:43:c4:5b:df:38:4c:d7:5a:e1:4e:0e:75:ea:
89:21:ed:a5:cd:4b:07:e5:5c:5b:cc:58:fc:ae:77:
da:dc:9c:50:29:cd:09:13:e0:26:2b:51:c5:08:54:
96:f8:a9:73:d8:b6:e9:34:b0:7b:fa:ed:da:77:0f:
11:5f:e5:33:4d:0f:08:cd:21:8c:3b:e7:f9:44:67:
15:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:3F:EC:9D:58:5D:FC:24:40:40:A3:76:22:D4:B3:B6:B9:6A:F6:DB
X509v3 Authority Key Identifier:
keyid:B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:0e:ca:dc:51:74:be:5e:f1:c5:c4:e8:21:01:f5:88:c9:0c:
28:5d:84:75:e5:42:90:28:75:f6:c5:ab:cb:65:36:c6:09:4f:
53:9f:7b:79:48:03:40:70:f0:3a:8a:43:db:57:6b:93:9d:1c:
d0:05:e0:b5:b9:26:1d:9b:7d:5f:63:bc:da:aa:33:a1:f8:45:
50:6a:da:81:71:58:b6:61:dd:90:6a:4a:d7:3b:73:fc:09:c8:
d0:c1:32:fd:8e:ba:d7:fe:0e:e2:c5:9e:f0:68:6e:28:1a:9c:
c0:4a:6f:ec:6f:36:d3:a6:24:5a:32:36:9a:84:13:46:07:10:
51:03:cf:80:24:8a:6d:94:4f:fd:a0:59:74:27:3f:e6:a1:57:
78:44:0b:87:8f:a2:8d:11:9c:e6:4f:05:56:d2:ab:bc:55:4d:
a1:8f:ef:5a:2b:24:77:21:9e:1b:33:a7:b8:a3:6f:9b:9f:7d:
91:84:06:76:d2:7e:b1:01:a5:e3:e8:78:70:eb:c5:9d:29:2e:
15:d9:16:4b:7e:31:58:ab:a2:08:88:01:f3:d6:42:81:72:cb:
81:13:a7:cc:fa:fc:e1:68:33:c1:bb:1d:25:91:15:c9:24:26:
d7:29:a3:f6:9b:11:9e:8d:f6:fb:01:84:30:27:9d:24:0e:f4:
ec:d8:4f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:36:06 2025 by rpki-client