Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json)
Hash identifier: S6HBX2J7ao2SBzEK1CjcvE0ExUP+DHvGLbXWOwGI/qU=
Subject key identifier: 4A:1A:17:0E:D2:AE:5B:CE:6C:05:91:29:40:C7:00:E7:5E:EE:F8:16
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 01976BBCF72849BFD06E3FC23AEF8DD6DA05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
Manifest number: 0AB0
Signing time: Sat 14 Jun 2025 00:00:35 +0000
Manifest this update: Sat 14 Jun 2025 00:00:35 +0000
Manifest next update: Sun 15 Jun 2025 00:00:35 +0000
Files and hashes: 1: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: XvGYz0KRTKhrVHd1PGcjrkaMMjH0Gsso53WfROo2G/Y=)
2: fS7Vtpenx3ISocQLcsKDmT4cdAc.roa (hash: lsacutCDcdT1KWfBtvedBOBvauWcszwNt+V8+YsxMyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bc:f7:28:49:bf:d0:6e:3f:c2:3a:ef:8d:d6:da:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Jun 14 00:00:35 2025 GMT
Not After : Jun 15 00:00:35 2025 GMT
Subject: CN=4a1a170ed2ae5bce6c05912940c700e75eeef816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a6:e6:e9:b4:74:58:36:de:8b:db:1a:82:8f:
eb:99:e3:5e:8c:1a:11:3c:be:39:4e:70:70:2a:8d:
c8:7e:2e:af:2b:d9:b4:d9:b0:da:bc:da:83:05:81:
bc:57:d4:fa:eb:ac:2b:96:25:ef:b3:75:0b:87:9a:
c6:5a:88:df:f3:59:9d:6a:3d:4d:72:7a:6c:8f:c8:
16:df:63:75:86:db:fb:1c:3f:cb:64:fe:f3:c2:9e:
cb:c1:1e:8e:5a:2e:04:ae:71:79:02:1d:84:81:8d:
6a:c5:a7:df:3c:2d:82:39:56:d6:d1:55:84:8a:60:
70:9f:84:41:f9:e5:50:85:5b:06:92:64:6d:ea:49:
6d:2d:62:3c:aa:38:15:d9:4a:56:b1:06:53:71:e3:
80:51:06:a6:f1:8a:87:83:20:23:4e:77:78:a3:c8:
f6:e9:a4:bd:95:4d:68:03:c8:68:5e:9a:28:a2:94:
53:83:5c:43:5f:5b:58:42:38:56:6a:14:6c:2b:74:
0a:b7:38:77:f1:90:f6:d7:30:19:a5:9c:f2:4f:2b:
16:d4:99:0e:24:23:5f:a6:97:6a:a7:f8:d8:ee:18:
b4:9a:62:2f:46:94:b0:c5:7b:ed:b2:de:34:d9:d2:
8c:59:45:d9:8b:42:0a:43:6c:cf:3f:70:e2:53:d0:
54:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:1A:17:0E:D2:AE:5B:CE:6C:05:91:29:40:C7:00:E7:5E:EE:F8:16
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:fe:28:65:e8:6f:53:bb:7d:2a:0f:d2:47:3a:a5:75:d2:1b:
44:fc:06:c5:0c:10:0b:04:63:ca:3a:06:78:3f:72:fc:66:d6:
d1:8d:90:d8:77:3f:aa:15:7a:a2:2b:fe:11:f0:59:98:cb:04:
35:0b:cc:e8:49:08:a7:6e:f7:7e:31:c6:6c:85:ba:73:65:76:
c3:b6:c7:2f:a4:9e:23:a8:b4:f3:79:77:23:e9:21:c0:00:3b:
69:dc:98:59:f6:95:96:e4:72:75:6b:9b:62:a6:26:50:3d:5a:
5d:e8:c7:35:98:0b:ed:e7:9e:b3:2c:35:d7:79:9f:3a:16:7c:
18:ba:2d:b7:0e:bc:e9:a9:58:21:f4:3f:96:47:e3:f9:6f:db:
3b:b2:10:62:be:d5:a8:7c:a5:fc:5a:35:92:52:40:4c:e9:37:
05:87:bc:35:4e:1c:84:9c:36:05:16:77:f5:ec:54:14:a2:11:
ad:75:8a:23:1e:8b:bf:9f:fa:b0:c7:e0:1e:d1:73:d5:1f:2e:
65:47:1e:09:ae:66:1d:31:7e:d6:82:11:5a:87:ed:5a:ab:f0:
87:a7:30:31:27:0e:a8:3a:45:1d:93:09:61:62:1d:80:f8:05:
6f:70:4f:57:e2:0f:b8:1f:a7:8d:1c:94:0c:4b:1b:57:e6:b4:
47:97:79:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:57:25 2025 by rpki-client