Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json)
Hash identifier: rkaZIkTaRvJEKao/bI5jXHO4SawdQ2mst5bKlroCtco=
Subject key identifier: 72:6C:38:96:A0:F1:50:C5:10:D8:56:71:D8:64:8B:6A:3D:86:3B:F8
Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da
Certificate serial: 019769CEA2C873213000744B4D9F168AB0EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
Manifest number: 97
Signing time: Fri 13 Jun 2025 15:00:39 +0000
Manifest this update: Fri 13 Jun 2025 15:00:39 +0000
Manifest next update: Sat 14 Jun 2025 15:00:39 +0000
Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: kYlriRjAD5egUkkZPVfuDgbRRfMc3N+2Y1EFJZnVbdU=)
2: NEPVSXjqT46bRniV4fcHp7pNd9I.roa (hash: cRn+2MSENb6w9bePKCbLQTtEQgCQcGDUoWkOY828NLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:a2:c8:73:21:30:00:74:4b:4d:9f:16:8a:b0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da
Validity
Not Before: Jun 13 15:00:39 2025 GMT
Not After : Jun 14 15:00:39 2025 GMT
Subject: CN=726c3896a0f150c510d85671d8648b6a3d863bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a5:7b:ce:89:fb:f4:8f:b2:14:e9:68:a5:b7:
63:b5:99:72:38:d4:a9:14:50:7b:3f:bf:0a:ac:81:
08:51:c0:53:90:e5:76:69:41:cb:1e:5b:7b:07:74:
6e:90:bd:3a:d5:c2:dc:db:c9:6e:27:02:ff:ff:85:
ea:f3:eb:41:73:68:49:4e:9d:60:d2:de:2a:6c:b1:
28:08:a0:c6:cc:d8:75:69:8f:9d:09:8b:d6:57:46:
ec:2e:c4:e8:d1:b5:55:68:fc:f5:57:ba:74:7f:15:
e3:60:c6:0a:f8:0b:9a:fa:1c:1a:01:84:51:ad:cb:
25:81:b9:ba:09:0f:4a:ab:1d:3d:43:3a:52:bb:77:
02:ca:bd:5b:d9:0f:90:e5:5d:72:7c:2a:21:d4:0a:
74:b6:25:ae:de:93:c9:ec:46:bf:8d:17:db:18:c8:
eb:9d:d6:33:fe:b1:51:5c:fd:ad:03:f2:aa:7c:04:
e8:f1:81:53:9e:c2:99:10:6b:48:8d:89:dd:d9:87:
e7:34:d6:d3:e2:fb:d9:87:db:15:1f:16:cf:1d:66:
cf:4c:5e:63:46:0e:c4:92:84:6d:97:90:1f:4a:20:
6b:d1:db:99:e1:5e:7d:b1:60:51:e2:33:ae:70:b9:
ee:4e:d1:fa:3c:3a:06:b4:40:d4:7b:1c:a6:fd:bc:
8f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6C:38:96:A0:F1:50:C5:10:D8:56:71:D8:64:8B:6A:3D:86:3B:F8
X509v3 Authority Key Identifier:
keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a2:c2:9b:f8:4d:49:d0:0d:ea:90:a4:6c:d9:6c:74:f7:37:
5e:46:c2:39:bf:cd:ee:b9:15:84:01:cd:e9:53:5f:c9:55:56:
71:99:db:ca:81:00:68:d7:14:61:44:25:82:de:a0:d2:7e:59:
99:5f:00:be:dc:5e:01:a7:00:a3:a0:62:91:b3:2a:ad:cb:d6:
32:9a:fa:3f:ab:91:0f:a2:89:00:b2:6b:14:aa:2b:da:ab:0f:
e8:5d:9b:d5:2b:fb:99:37:0d:d9:38:f4:96:42:2b:7b:72:9f:
3c:6f:b4:52:c1:47:ef:27:3e:00:37:0b:48:af:7f:b7:db:68:
5d:31:b8:f7:25:c6:55:74:45:d3:c8:8e:e6:53:7e:d2:66:57:
9a:c0:53:ac:6d:5a:73:39:b4:d9:fe:e6:63:e8:91:ae:4e:69:
e9:05:2f:43:a3:ec:68:c3:b2:c2:af:88:cf:0b:e9:52:4e:39:
ce:85:fc:80:55:7e:cf:19:cc:7c:96:c8:41:29:b2:61:2d:63:
ec:8d:85:f4:6b:ce:82:ad:11:36:05:0a:19:2f:b5:30:ec:0d:
ab:d2:ed:7f:9f:f5:de:8f:80:92:17:c4:6e:50:b3:ec:e6:d9:
3b:a8:b9:35:eb:09:7d:18:99:3b:52:1c:1f:96:1c:5c:14:d4:
4a:0b:6c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:12:30 2025 by rpki-client