Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
File: SS0kreN6IjOTKECddX1H-XlDt6A.mft (raw, json)
Hash identifier: 5td0plCWRybqHA/as2f0JaX5Z8Tlafryc7B+eyN63QQ=
Subject key identifier: 00:02:FF:30:35:05:32:8F:1E:F1:DF:43:6C:EC:23:72:1D:0E:B7:87
Authority key identifier: 49:2D:24:AD:E3:7A:22:33:93:28:40:9D:75:7D:47:F9:79:43:B7:A0
Certificate issuer: /CN=492d24ade37a22339328409d757d47f97943b7a0
Certificate serial: 01976C622B3168E1641E797795935DF16A74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SS0kreN6IjOTKECddX1H-XlDt6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
Manifest number: 0C8A
Signing time: Sat 14 Jun 2025 03:01:02 +0000
Manifest this update: Sat 14 Jun 2025 03:01:02 +0000
Manifest next update: Sun 15 Jun 2025 03:01:02 +0000
Files and hashes: 1: BB5_8BhJDTnxTKWGMNqj5oXCwds.roa (hash: LuNPA32mjFH0EXTfiP4dDNt0mH4g6yoGsaPQD7tGC9s=)
2: SS0kreN6IjOTKECddX1H-XlDt6A.crl (hash: Vxi+/l7tY+oJhKwQV6Es7suptohk0IBGQJsYHajBb/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/SS0kreN6IjOTKECddX1H-XlDt6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:2b:31:68:e1:64:1e:79:77:95:93:5d:f1:6a:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=492d24ade37a22339328409d757d47f97943b7a0
Validity
Not Before: Jun 14 03:01:02 2025 GMT
Not After : Jun 15 03:01:02 2025 GMT
Subject: CN=0002ff303505328f1ef1df436cec23721d0eb787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:f9:df:97:4d:16:55:d8:dc:0e:25:18:a4:
bd:a2:f9:6a:4e:55:40:1a:be:ba:b3:89:24:0d:d5:
a0:03:83:ab:91:d2:54:ea:d7:85:7e:e6:db:24:2b:
8c:db:21:e7:c4:e8:5e:38:da:53:a3:8f:f3:cd:61:
07:fa:14:f9:bd:5f:2d:d3:93:3d:39:ff:9b:db:b9:
3d:85:06:f4:a8:f3:b4:d1:c7:34:1a:f5:6d:eb:61:
fc:a6:44:7b:df:02:e8:fa:16:b7:4a:c5:d7:5f:8d:
4f:86:86:d4:68:4a:05:91:9c:2a:e9:af:8d:2a:de:
0b:95:2e:08:d7:c8:2c:b3:2c:07:0e:b5:b8:fa:f4:
a2:ad:ed:2c:e5:8a:27:5e:8a:1c:9e:7e:93:2e:60:
ce:b5:6a:a5:9a:15:87:14:48:70:64:9a:d5:bb:33:
4c:c1:23:38:b6:c5:b4:e2:0d:23:4d:23:4b:8f:c4:
38:4b:48:50:03:93:3f:80:04:6c:38:53:88:9d:50:
35:5f:be:35:ab:e3:d8:ad:19:2c:68:f9:18:2f:d5:
8e:34:3c:ed:93:26:43:5e:cf:65:b5:92:e6:2d:6e:
22:db:83:f8:20:8b:3b:70:a2:2b:a1:f5:dd:8c:3d:
30:78:dd:70:e5:b8:e4:b8:b6:13:18:f6:82:2a:c2:
84:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:02:FF:30:35:05:32:8F:1E:F1:DF:43:6C:EC:23:72:1D:0E:B7:87
X509v3 Authority Key Identifier:
keyid:49:2D:24:AD:E3:7A:22:33:93:28:40:9D:75:7D:47:F9:79:43:B7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SS0kreN6IjOTKECddX1H-XlDt6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d8f845-6250-4df8-90c0-e24b579c9914/1/SS0kreN6IjOTKECddX1H-XlDt6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:04:80:9b:df:d4:7d:f4:25:fb:2e:5d:53:24:8a:38:26:a1:
36:f3:9a:03:eb:94:81:be:da:19:c3:f8:7f:6d:41:c9:a0:0d:
ee:e4:7a:38:7d:4a:5e:32:50:44:4c:13:2b:26:90:75:ad:9b:
d1:e5:b6:ed:82:16:b7:b0:a1:41:fb:1b:40:6c:ce:22:a9:50:
3c:6a:ed:e7:a3:9b:14:59:56:23:c1:17:9b:4d:fc:46:76:b9:
e6:11:22:56:9b:d1:d4:0b:a4:ab:96:2c:02:af:d5:2d:8d:4f:
06:e0:ff:d7:71:dd:f3:33:6b:aa:bf:07:77:5b:c2:cf:16:1e:
6f:00:48:84:0b:be:26:c9:19:71:68:f6:62:69:39:d9:9e:7d:
d6:57:ec:f2:74:ec:d9:e9:fa:88:2b:9a:b1:18:4a:4a:46:b3:
83:31:59:a8:ef:6e:4c:b5:9d:5d:a8:69:d0:c3:44:02:f4:eb:
d1:5c:d8:bc:b7:90:a6:56:6d:2b:aa:f4:5b:8f:59:31:1f:1b:
d1:45:f2:89:e5:16:07:14:21:03:42:02:8c:46:f8:37:4a:7a:
57:77:9b:d2:07:20:e3:96:59:5c:bb:2d:7d:94:4e:60:0d:bc:
c7:da:6d:73:89:a1:0e:e5:7a:80:49:bb:f4:3f:58:00:7b:ef:
0f:0c:66:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:04:13 2025 by rpki-client