Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json)
Hash identifier: CuKg2OjnaeHRfzsteAk/L6kHnJLNzpRS2E6yWKYXtdY=
Subject key identifier: 70:7D:17:C9:D1:6A:24:5A:85:09:31:40:0A:6A:0C:CE:7F:8B:76:01
Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Certificate serial: 01976D74A7B2A19286ACD37D25A90B1EEDC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
Manifest number: 1522
Signing time: Sat 14 Jun 2025 08:00:51 +0000
Manifest this update: Sat 14 Jun 2025 08:00:51 +0000
Manifest next update: Sun 15 Jun 2025 08:00:51 +0000
Files and hashes: 1: Kp8YOETyXn_CJNlkKRcjiHTajds.roa (hash: pE4tiu3XHnbIpJeimbwG8Yyb4EwnGUv1VJS0J7muojA=)
2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: fhr0pkVJfy0C1pghdM0xMuTFLJlJ6t3QBA8j4y3Vh4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:a7:b2:a1:92:86:ac:d3:7d:25:a9:0b:1e:ed:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Validity
Not Before: Jun 14 08:00:51 2025 GMT
Not After : Jun 15 08:00:51 2025 GMT
Subject: CN=707d17c9d16a245a850931400a6a0cce7f8b7601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:19:e3:5b:58:63:e3:95:84:71:f9:92:0b:78:
ed:bb:30:8a:84:f0:b8:63:16:e9:44:74:fd:6d:fa:
a5:dd:ec:15:1a:38:f5:db:dc:68:79:cf:85:f1:7f:
59:40:b1:be:ed:61:82:5a:02:7c:bf:13:48:71:84:
44:fd:07:7d:ad:5e:15:11:38:5f:12:33:b2:6b:58:
66:27:5c:e3:f8:99:09:a1:81:c7:9e:41:13:f3:87:
83:d6:eb:b1:c3:41:0a:95:b9:41:aa:4a:a5:47:e3:
ac:53:8c:16:c6:9d:ce:d0:17:d3:95:ea:79:7a:d2:
db:00:95:71:85:db:01:60:9e:59:2b:ad:fe:f0:57:
5b:c9:b0:95:58:72:e1:a2:37:c9:e1:41:a6:9c:00:
e2:27:89:8c:db:ba:96:8e:07:5b:c7:e5:d4:ca:8d:
c3:22:e7:c1:99:fb:47:fc:e7:59:c0:f8:d0:9e:11:
ff:8f:cd:76:92:8b:b4:7c:7c:20:7b:1d:30:4e:0d:
6d:79:1d:47:72:c7:b2:e7:e9:1f:3b:18:b0:1d:a2:
e8:f4:37:22:61:c6:b9:e5:84:28:c1:fb:a2:2a:f0:
db:49:33:71:eb:56:4e:ef:28:fe:76:ce:e5:86:b6:
3a:c5:00:d6:17:15:09:44:62:f7:67:69:d4:bb:1c:
c1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:7D:17:C9:D1:6A:24:5A:85:09:31:40:0A:6A:0C:CE:7F:8B:76:01
X509v3 Authority Key Identifier:
keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:45:4d:f2:e9:df:74:c6:8f:a7:99:66:49:57:02:d3:df:98:
9f:05:24:bf:a9:3d:45:f6:8c:1c:51:48:33:62:7b:c3:90:95:
c7:10:4f:b4:0d:9d:88:55:e4:d4:84:62:3b:1f:e6:a1:a9:a4:
6e:cf:d5:3e:06:19:a6:75:e9:2c:09:35:7f:2f:69:12:05:7d:
07:80:98:49:f2:2f:e7:97:b2:3e:d2:5c:02:e2:e4:f0:6c:bc:
b2:76:f3:45:44:20:56:42:d5:87:9a:3c:0e:88:cf:83:59:71:
9f:d1:65:6c:ff:67:a5:aa:22:af:bb:2b:3d:3b:64:a7:b1:04:
23:4d:0e:95:7c:91:69:ee:3d:86:10:61:eb:2a:2a:5e:19:42:
22:e6:d5:4f:86:11:f5:60:ac:a1:2e:fa:b0:7b:5c:52:78:df:
e6:5f:21:64:d8:03:00:12:ff:af:c3:e8:26:19:f9:5a:9b:d4:
52:9f:e7:40:3c:42:fb:e4:7f:a7:1c:e4:2f:28:68:35:ff:5d:
e9:23:14:03:82:0e:e4:15:d7:e6:e5:07:1d:99:60:be:f6:6f:
69:9f:68:55:55:c6:5a:47:a2:e9:4a:2a:a1:14:be:43:9a:f7:
76:2e:e5:b4:b7:26:f0:15:f1:bc:a9:4c:0a:79:b8:3c:61:9d:
a3:76:f5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:58:44 2025 by rpki-client