Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: uafl/Y/lZCjGiFrwEvb5tIpbgLs4WRKk67qNcVAnpB0=
Subject key identifier: 7B:D6:A3:4E:C5:B2:07:9A:EB:84:34:FD:B6:91:1B:AD:B8:29:45:E5
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 01977AC236259870B2CF7FC22C63B92F4345
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 13E3
Signing time: Mon 16 Jun 2025 22:00:37 +0000
Manifest this update: Mon 16 Jun 2025 22:00:37 +0000
Manifest next update: Tue 17 Jun 2025 22:00:37 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: f+MwsPuxwA2NzznM3VNJ9ikvtAeY1XV4NAKWzKPTYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:c2:36:25:98:70:b2:cf:7f:c2:2c:63:b9:2f:43:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Jun 16 22:00:37 2025 GMT
Not After : Jun 17 22:00:37 2025 GMT
Subject: CN=7bd6a34ec5b2079aeb8434fdb6911badb82945e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:13:0a:af:9c:8b:87:54:e0:f8:d8:f4:c1:
0f:5c:db:5c:35:c2:20:06:e6:8f:cf:db:77:c1:4f:
cf:66:53:2a:a0:3f:f1:c9:dd:2a:95:99:9f:65:e8:
25:c7:16:ff:33:25:46:26:18:b0:30:45:0a:f8:13:
e2:16:cc:9e:08:af:2c:ff:0a:3b:6c:c1:e7:18:f6:
2e:65:5c:01:98:20:46:19:7f:6d:c7:b4:2c:5c:d8:
48:9e:7b:47:02:ad:64:02:a0:e2:30:39:e6:d6:c0:
49:ef:e5:b1:5e:d5:51:8b:9e:f9:9d:ae:91:bf:9c:
fd:38:c1:85:ea:3d:5e:fa:f4:53:c7:81:07:da:26:
6c:da:c7:ce:88:ac:65:b8:3c:13:ea:5b:98:8d:99:
98:be:57:fb:f9:51:0c:e0:d4:b0:a4:5e:42:63:fc:
cd:10:8f:f7:81:33:81:e1:df:a8:55:a5:79:88:87:
dd:76:62:55:38:68:25:7d:7c:01:4d:d3:54:9f:2b:
18:09:0c:33:3a:dc:7d:60:63:cb:ce:0c:1e:e5:a8:
83:ff:a7:44:da:21:d6:d5:c8:71:23:c2:34:a5:28:
ed:5f:6a:85:8b:f3:c8:37:d6:60:75:04:39:8b:d2:
b8:52:3c:81:ed:54:68:fb:e7:ea:28:bc:68:2c:b8:
71:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D6:A3:4E:C5:B2:07:9A:EB:84:34:FD:B6:91:1B:AD:B8:29:45:E5
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:66:58:5f:6d:f5:9f:10:8a:71:bb:b3:f7:d8:32:62:4c:1a:
cf:4d:eb:8f:08:b9:95:e0:4c:5b:9e:4a:85:c5:cc:e9:0d:a7:
00:0c:e2:c2:b3:e9:84:2b:b6:03:c0:06:7f:55:a6:32:bb:c8:
79:cd:1c:1f:df:c0:45:4a:20:36:87:7c:ba:91:90:de:bc:fc:
ac:31:05:74:2e:78:96:ef:ca:0e:89:b8:d9:c9:94:5a:8a:61:
2b:dc:bb:4c:8b:ed:6f:35:e8:28:3c:60:07:66:63:03:82:e0:
43:cf:1e:30:09:63:1a:13:2e:94:2f:72:d5:7c:1b:fe:b4:b4:
7b:e4:96:16:59:ed:f1:2e:8c:31:be:66:85:d2:e8:c4:1a:f0:
94:59:a7:aa:52:fd:89:2f:39:71:ff:45:04:64:20:53:ad:19:
3b:53:06:5e:12:e5:47:c0:b3:b2:6d:c2:b6:fe:5c:f1:ed:69:
fd:68:fc:3f:8c:99:05:0d:a0:c7:a6:97:2d:20:3d:e5:0d:c6:
a6:8f:4d:d0:2c:38:ef:d2:18:68:67:72:15:99:f3:9a:2a:8b:
b5:93:ed:49:70:41:55:b0:0d:ae:f3:cc:41:73:02:47:f1:3c:
a7:fc:9e:6b:46:36:74:c9:5a:bb:07:f0:8a:f8:6b:63:32:f9:
86:67:6e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:25:32 2025 by rpki-client