Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: y+Yh+XNLvugoAp10d0+J/8YDCqTsiyYrKTxuD9d7GJg=
Subject key identifier: 9F:56:EC:4F:70:07:14:CE:C3:CE:3A:4D:7E:58:33:D5:96:79:35:43
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 01976C98F5F00F0AEBC813BBF834CC1BC58B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 14EC
Signing time: Sat 14 Jun 2025 04:00:53 +0000
Manifest this update: Sat 14 Jun 2025 04:00:53 +0000
Manifest next update: Sun 15 Jun 2025 04:00:53 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: efJht/e5KzSBA2OO/99yrcuTIP8ZtkVDw4PW4fFjHbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:f5:f0:0f:0a:eb:c8:13:bb:f8:34:cc:1b:c5:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Jun 14 04:00:53 2025 GMT
Not After : Jun 15 04:00:53 2025 GMT
Subject: CN=9f56ec4f700714cec3ce3a4d7e5833d596793543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:ee:15:72:80:7d:f8:35:53:3e:d6:f4:34:
13:e1:1d:f3:0c:e2:68:d1:74:da:b7:da:67:de:c3:
64:f7:a0:8e:09:97:26:e5:5c:2f:b7:80:36:53:b2:
b4:0d:e7:ce:29:53:bb:31:94:bf:8f:d1:d3:0c:b5:
33:87:bf:a2:ae:ba:ec:15:64:74:55:e8:cb:51:c7:
bb:04:55:0c:85:65:76:0e:51:f1:b2:4f:ce:27:f0:
88:2e:dc:b8:01:ea:12:cc:45:d2:7f:92:d3:38:11:
c0:8c:68:0c:d3:7a:dd:8e:61:92:ac:3b:d9:f4:cd:
19:03:05:d8:73:c4:ab:b1:2e:f5:0b:98:b8:83:9a:
7a:e8:66:36:e5:15:01:0d:2d:9e:bc:83:e0:b4:a7:
40:b5:d6:91:92:f5:1c:2f:9c:09:e0:81:c3:93:df:
92:bc:07:fc:31:b2:a9:e5:20:89:5a:ce:21:37:fc:
24:31:2b:d0:f7:ac:1a:4d:8f:30:1f:5a:b2:67:e3:
34:2e:91:48:4d:e8:8a:81:37:ae:49:43:a2:bb:60:
72:9c:15:43:40:81:77:6d:e6:29:24:fe:68:ca:73:
c3:5b:62:1f:19:4c:a1:72:29:a2:5f:97:82:ea:3b:
42:e4:01:a1:a8:db:fc:28:2b:f3:d8:f6:6d:32:4b:
3e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:56:EC:4F:70:07:14:CE:C3:CE:3A:4D:7E:58:33:D5:96:79:35:43
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:46:9b:a8:4f:a1:03:eb:af:10:1f:c1:63:d9:96:8e:1d:85:
10:97:93:9b:78:8a:b9:f7:04:58:b5:18:c4:e8:ba:44:c9:2c:
1c:59:0f:1c:25:b1:f8:c6:f7:ae:75:96:25:ef:55:9f:21:13:
8a:a4:62:65:b2:b9:46:1c:b6:f0:22:2a:aa:cc:80:df:7e:dc:
0d:e7:b5:7b:91:34:46:bf:bd:39:1d:b6:e3:ad:cf:a0:a7:c3:
dc:2e:8c:c6:a1:0f:80:fd:9a:d6:38:18:97:65:16:d4:90:dd:
2a:f9:1d:9d:15:e3:ef:5c:5c:ea:a4:ea:2e:77:45:03:19:cc:
50:bc:b2:1d:ca:68:94:43:ae:6f:42:54:30:c8:26:44:ce:a2:
d8:45:f8:55:26:a8:bf:fd:10:ee:a0:16:7f:71:be:4d:fa:12:
30:a1:05:f1:9e:8b:88:88:44:6d:c9:f0:cd:03:54:ba:51:35:
d8:90:03:20:1d:fa:13:75:d5:94:08:fb:ee:f2:58:f3:49:91:
91:a8:30:af:f1:7a:a8:de:1e:c8:cc:7e:40:fe:8f:ac:d4:e0:
40:a9:92:ed:e3:02:7f:8c:c8:90:f4:5d:11:37:56:d8:99:f5:
17:b6:68:e0:61:0d:ea:50:8e:a3:41:a9:fb:30:15:b9:86:3d:
35:ce:49:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:00:37 2025 by rpki-client