Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
File: su7525PeEaAlPVqoxT7Mrg-cPTM.mft (raw, json)
Hash identifier: Z7gzkyZFK6nWkzEqmN9W+LaBfB9zspLQOW1ICkGp7Rw=
Subject key identifier: 1C:69:73:8D:9F:BA:57:CD:EE:AC:9E:B8:0D:E1:86:DE:6E:57:CB:85
Authority key identifier: B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
Certificate issuer: /CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Certificate serial: 019874190E4F24FDE7EE97486DDD9F042C5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
Manifest number: 0989
Signing time: Mon 04 Aug 2025 08:00:55 +0000
Manifest this update: Mon 04 Aug 2025 08:00:55 +0000
Manifest next update: Tue 05 Aug 2025 08:00:55 +0000
Files and hashes: 1: HmEXSyMzNsE6ZXWyBUFqSz_-J_I.roa (hash: QHoycNdEbZMja0gAvjEgeC3E4wx2OI9vc9S4Y873m1w=)
2: su7525PeEaAlPVqoxT7Mrg-cPTM.crl (hash: Uzc6rejxT2ynWtcUwLK5KlGYINGcHrcfkJCoR/oTd80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:0e:4f:24:fd:e7:ee:97:48:6d:dd:9f:04:2c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Validity
Not Before: Aug 4 08:00:55 2025 GMT
Not After : Aug 5 08:00:55 2025 GMT
Subject: CN=1c69738d9fba57cdeeac9eb80de186de6e57cb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2e:c5:c3:cb:1f:6e:0c:10:2f:36:7b:30:cb:
c9:d4:db:d0:d4:e7:cd:be:06:55:7a:d3:b2:64:a8:
0a:c8:d4:d7:d5:fa:9c:e9:f3:ee:c3:27:61:a3:4b:
47:70:4d:bc:c9:d0:c4:c6:7b:f6:0d:51:6c:54:9f:
11:72:dc:4e:b3:bd:17:62:84:0b:09:05:ad:d5:ea:
1f:08:59:1b:87:5c:2d:7d:a9:31:55:a9:cf:44:fd:
d6:fb:2f:62:b1:04:2e:a6:80:b8:b9:16:a8:06:2b:
ad:06:d2:f1:37:a7:f9:0c:ca:b7:16:bc:ef:c5:5c:
8a:0a:d3:a6:53:e2:83:d2:ad:32:39:d1:91:be:96:
75:d6:98:1e:d5:55:6d:83:4c:78:d4:e9:82:c9:28:
d9:53:9c:b4:0d:4b:00:36:0c:11:3b:b5:a6:a4:e7:
b9:1e:3a:ca:8d:1b:56:19:4a:10:c7:a8:16:03:22:
63:92:eb:74:ca:b1:10:5b:23:26:10:1a:cb:83:d2:
56:ab:b9:46:43:e7:b9:1e:2d:8e:9d:15:60:d9:28:
5e:d8:fe:c0:59:7f:26:e4:8a:39:cc:3e:d6:33:1e:
1f:a0:1a:db:b8:1f:1e:34:c3:f0:59:50:35:51:36:
d0:8c:85:45:d4:fe:4a:15:6b:28:0c:83:a7:30:1d:
45:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:69:73:8D:9F:BA:57:CD:EE:AC:9E:B8:0D:E1:86:DE:6E:57:CB:85
X509v3 Authority Key Identifier:
keyid:B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:61:26:93:8c:f2:3b:cd:53:55:a5:f8:78:f1:f3:52:6e:bf:
0b:df:ab:8e:58:da:52:33:cd:df:7d:67:71:63:d4:46:1e:f3:
2a:6c:a0:91:2e:e7:41:eb:3b:f5:54:93:a2:1b:5a:fe:f2:06:
ee:77:43:f9:f9:5e:94:85:3d:68:de:e9:90:48:20:c0:d0:a6:
ea:f9:d3:34:27:6c:1c:b7:73:2b:9f:15:47:69:14:c7:b8:48:
45:48:71:25:b9:9a:ac:b2:50:9d:06:9b:99:6b:86:66:c1:06:
26:fa:f1:a5:f7:31:2a:fe:2f:95:39:80:ce:30:37:87:00:de:
f3:04:81:ed:1d:29:d4:06:48:f0:0c:35:50:fa:79:b6:b7:38:
4c:44:1d:01:05:8a:61:03:2e:38:f7:20:cb:a4:3c:7b:9c:8d:
ba:8a:37:f4:41:7d:d3:a2:7d:1e:94:aa:29:6b:f6:b7:d4:5f:
93:e9:ec:9a:b3:aa:ed:97:c2:c5:ef:ae:0e:6a:37:93:ca:01:
1b:47:d1:b9:37:97:a6:e2:67:7d:50:fe:b3:92:59:46:6c:45:
6f:62:18:7f:e6:b2:fe:d9:d6:39:4d:c2:00:1b:b1:44:0a:d7:
1f:71:7a:f5:d2:55:25:4d:05:76:c9:e6:b9:9c:b9:dd:ff:55:
cf:87:e6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:02 2025 by rpki-client