Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: SHwwNGhXQR0eXV7lg87/f5yWaim9TQh5DKRyLxUuQJ8=
Subject key identifier: F5:BD:43:C5:EF:FB:FC:34:7D:87:95:23:91:22:D6:86:87:FD:34:AE
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 01976F2C750636C1D333513AC9FC07CCA14E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0A49
Signing time: Sat 14 Jun 2025 16:01:13 +0000
Manifest this update: Sat 14 Jun 2025 16:01:13 +0000
Manifest next update: Sun 15 Jun 2025 16:01:13 +0000
Files and hashes: 1: 1-VdOr1FUP7HNxfqfhOHB4LyOJ2Y.roa (hash: QB9LyYahw6voR06UwItPSAyVLMKgN6beiVidIvS+Rxs=)
2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: ncyp0X7texUQO8z4KabOzCGpvkJwBGDFmx9VwyaTJjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:75:06:36:c1:d3:33:51:3a:c9:fc:07:cc:a1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Jun 14 16:01:13 2025 GMT
Not After : Jun 15 16:01:13 2025 GMT
Subject: CN=f5bd43c5effbfc347d8795239122d68687fd34ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2c:ea:46:86:b7:9a:e0:b5:9d:74:65:05:04:
e3:a6:39:80:50:3b:f6:64:56:e1:23:13:77:d7:14:
f5:4b:7d:53:96:16:cb:cd:f9:40:59:6b:f1:ce:52:
6e:a0:64:5e:75:d7:54:20:4e:2e:30:18:b5:28:9e:
9d:96:e8:9c:9a:83:29:a2:10:60:d8:bf:15:32:d4:
23:ef:62:e4:bb:ab:66:2d:e2:30:3a:26:2d:97:3f:
a9:b2:3e:7e:4d:60:b8:d7:a4:92:6d:09:54:cb:b7:
b7:f2:6f:d7:d7:fb:0e:4a:a4:af:da:f4:3e:39:03:
22:65:3e:10:bf:26:50:f4:57:72:50:11:61:cd:e6:
30:bc:51:5f:3e:25:5d:f3:04:fa:ae:46:91:b2:be:
e7:26:2e:a3:23:f3:68:41:23:69:d1:49:ce:2b:9e:
22:de:b8:c4:8b:19:b4:e3:e7:f4:72:ba:bb:73:4e:
78:9d:c9:f3:9e:b5:48:c7:03:dd:91:89:d6:bc:7e:
69:89:fc:25:3b:64:ce:05:ba:36:99:8d:05:b9:45:
51:30:bf:44:4f:6a:61:74:a7:cc:03:a0:50:1e:c2:
6b:b9:84:d0:34:9d:10:52:d3:ef:6c:29:8d:c6:14:
5f:b1:7e:08:3d:61:05:7d:c6:ef:3b:38:ab:06:9f:
f1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BD:43:C5:EF:FB:FC:34:7D:87:95:23:91:22:D6:86:87:FD:34:AE
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:82:66:3b:ba:f4:b1:ca:9c:9c:01:63:b1:c2:b2:d8:51:97:
7f:f4:3c:0d:b2:2c:d3:34:9c:e6:c7:19:87:41:4c:80:0d:af:
27:c0:b7:cd:0b:96:b4:a1:29:35:1d:21:77:5c:d8:5b:c9:f0:
7e:5d:eb:d8:8d:26:6b:4d:7e:c7:1f:d8:17:0a:1c:65:31:15:
54:a1:36:0e:b7:d4:a5:bb:93:ff:b3:66:50:21:5b:36:74:b9:
7e:d0:0f:15:46:0d:38:b5:f1:53:a6:28:e6:dd:86:78:9e:90:
45:e1:3b:1f:84:43:0e:64:7b:49:7c:b4:b4:df:02:b1:1c:4f:
80:2a:98:1b:dd:78:ed:56:c2:91:55:fc:49:36:0e:b3:7e:8f:
05:77:d7:b6:69:8b:8b:a3:c8:f9:a4:f3:93:b7:24:57:d0:84:
90:a7:66:b5:a4:e3:30:41:50:7a:27:6c:c4:2d:96:b3:7a:05:
8b:2e:e1:e2:a0:34:fc:a6:d6:45:c8:f7:9e:e6:bf:d1:87:ba:
e4:0b:5f:4c:04:35:17:f4:98:43:c7:61:a9:e7:34:b4:8f:29:
7d:07:2d:1b:0d:64:01:4f:b1:2b:b6:45:0e:30:97:25:93:01:
1c:8c:84:db:81:b5:11:df:3b:1b:6a:7c:36:46:8c:05:2f:57:
32:60:a9:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:09:57 2025 by rpki-client