Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
File: t3gT9sVnClhoatw9SVV0QpXdFBk.mft (raw, json)
Hash identifier: wkhsQCe+fNvlwwkHxgiWVuHWst4eCZJofZGhiBVdzxc=
Subject key identifier: B4:6F:62:84:E4:58:B8:E5:37:9D:D7:88:FB:7D:FA:BA:52:91:F9:E4
Authority key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
Certificate issuer: /CN=b77813f6c5670a58686adc3d4955744295dd1419
Certificate serial: 01976F9A6CBE3631B8391A945998E4101DFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
Manifest number: 0E68
Signing time: Sat 14 Jun 2025 18:01:20 +0000
Manifest this update: Sat 14 Jun 2025 18:01:20 +0000
Manifest next update: Sun 15 Jun 2025 18:01:20 +0000
Files and hashes: 1: t3gT9sVnClhoatw9SVV0QpXdFBk.crl (hash: x5ue70HGHx/uVBEYQ2hXx2F+eKh2ZtjI1ly73WjqA3I=)
2: xy0ayvCMPxVGUij5mpyeTNFKRNw.roa (hash: tXbOwwPUAQhZJRCjintnYpclKOHIFWoxy2lUX1RBhtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:6c:be:36:31:b8:39:1a:94:59:98:e4:10:1d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77813f6c5670a58686adc3d4955744295dd1419
Validity
Not Before: Jun 14 18:01:20 2025 GMT
Not After : Jun 15 18:01:20 2025 GMT
Subject: CN=b46f6284e458b8e5379dd788fb7dfaba5291f9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:4a:df:c2:a9:ad:29:ee:23:fe:24:16:e8:
38:84:98:81:1e:56:87:6f:ae:d3:85:cd:3e:f2:e9:
07:42:1d:00:8e:56:2a:a0:b3:91:7f:64:06:2c:f7:
2b:44:78:d5:f5:d1:30:8f:75:46:6f:89:12:d6:fd:
91:5d:02:18:00:07:8a:cf:ba:47:37:81:69:dd:14:
66:40:42:c2:04:6b:20:c9:d0:cd:fa:5a:18:d1:78:
fa:84:83:d9:15:81:d0:ad:25:d9:8b:f9:43:b7:9f:
91:e2:80:b0:fa:6a:2a:e0:e8:2e:03:ae:3a:13:35:
eb:4a:1e:f8:64:bf:64:8b:73:fb:4a:80:59:23:5a:
4c:14:29:1f:46:c8:f5:0e:e8:ad:c3:87:dd:f6:1e:
84:0e:fe:85:ec:0c:fc:9d:9b:61:06:14:c0:47:b6:
b8:23:10:1e:61:b9:af:58:ad:68:95:6f:9b:27:41:
e9:bf:f0:96:c1:81:f2:e3:b3:b9:5c:c2:27:d5:09:
f2:96:56:b5:2c:3a:d9:09:dd:2e:67:8b:b8:cd:8d:
68:47:70:1f:72:e8:cd:9f:06:03:17:86:d6:55:29:
26:b6:af:55:16:cf:84:6d:3d:16:d9:42:86:0b:06:
f2:95:b9:0a:bd:3e:cc:4f:8f:44:62:50:49:38:43:
d7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6F:62:84:E4:58:B8:E5:37:9D:D7:88:FB:7D:FA:BA:52:91:F9:E4
X509v3 Authority Key Identifier:
keyid:B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:28:47:2f:05:d8:1d:60:48:ea:6e:bd:c8:91:a1:89:67:6d:
a5:97:86:a4:dc:5b:61:1e:44:e1:d7:75:6b:e5:2d:d2:2a:5a:
1d:f3:93:b1:ad:07:40:ed:43:30:1e:46:15:6a:c0:1b:82:14:
6a:f2:69:2a:a0:98:ea:dd:d3:54:97:06:ec:72:36:0d:ab:13:
c5:20:e2:6f:dc:03:49:2a:7c:28:34:19:4f:3e:93:e5:39:9a:
52:1d:ef:4d:45:59:57:52:b0:1d:ab:61:d9:e0:b1:6c:53:c5:
c8:8b:4a:a8:4a:6a:8a:04:9e:91:21:38:f4:d0:c4:28:33:d0:
6b:fe:f3:f9:20:ef:5d:89:03:b4:30:5f:d9:36:c6:53:a2:a2:
f9:1d:6a:2f:28:30:42:2b:e3:69:d1:84:16:bb:ec:b3:ad:5d:
d5:6e:15:91:f7:b7:35:2f:c3:79:ec:37:f5:9c:a0:e2:46:f8:
a1:05:d3:47:be:b0:7b:45:6b:0d:f9:19:7e:44:06:35:32:a7:
b3:83:8d:5f:cd:08:9b:6c:a0:94:b9:6f:19:5a:41:d9:4f:dc:
27:ac:dc:4d:b9:d6:67:42:d5:3a:b5:87:2d:1f:21:c8:e4:f8:
7c:e1:99:76:f4:82:d9:f8:99:d6:87:9e:9b:50:70:ef:df:01:
ae:69:59:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:08:05 2025 by rpki-client