Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
File: rfRJdaXb2_gjtKCmt-65mxSENn4.mft (raw, json)
Hash identifier: WhxHQ5CpJXhmEOlvrqEC+29mS9cAybHwd83FxWU7n2s=
Subject key identifier: 1F:17:B6:E7:87:92:03:EF:53:45:81:17:3E:B2:82:EA:84:43:36:85
Authority key identifier: AD:F4:49:75:A5:DB:DB:F8:23:B4:A0:A6:B7:EE:B9:9B:14:84:36:7E
Certificate issuer: /CN=adf44975a5dbdbf823b4a0a6b7eeb99b1484367e
Certificate serial: 01977B9DB3168FFF9EF046E48C914478B116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
Manifest number: 052A
Signing time: Tue 17 Jun 2025 02:00:21 +0000
Manifest this update: Tue 17 Jun 2025 02:00:21 +0000
Manifest next update: Wed 18 Jun 2025 02:00:21 +0000
Files and hashes: 1: R4XHwh-uR65EL_DdpXZF6OARJ4Q.roa (hash: iFcX7qqj7I+Qr0pVVXkrPFoUP0jPJo5pY3SNhZeIPSE=)
2: rfRJdaXb2_gjtKCmt-65mxSENn4.crl (hash: DzCG06TYr/Vw6/E0YimeraTz7gBJxnz8P85msITHk5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:9d:b3:16:8f:ff:9e:f0:46:e4:8c:91:44:78:b1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf44975a5dbdbf823b4a0a6b7eeb99b1484367e
Validity
Not Before: Jun 17 02:00:21 2025 GMT
Not After : Jun 18 02:00:21 2025 GMT
Subject: CN=1f17b6e7879203ef534581173eb282ea84433685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e2:c6:9a:9d:f6:a9:1e:0d:65:d9:ee:02:d3:
b6:c2:86:21:ec:eb:ef:23:3b:eb:de:00:98:cb:6c:
38:1d:7e:d8:0a:9b:a0:af:ca:ae:34:78:c9:e4:aa:
11:51:13:e3:c6:30:e4:a8:c5:b1:6e:af:bd:c7:10:
1e:b4:45:42:25:91:ba:90:01:03:95:23:2e:cf:26:
3c:4e:9b:d5:89:f8:e6:e6:c0:28:1b:ca:f7:a6:cd:
50:48:ac:4b:1d:ef:07:3f:18:ad:8f:19:6f:b1:f3:
2b:84:aa:e4:d4:4a:8a:1e:9d:1c:36:7b:8e:9a:9e:
17:75:66:9f:c5:a2:71:81:ad:b7:a3:ea:8e:33:4b:
4d:24:f8:f5:6a:f9:06:1e:eb:de:9f:45:00:b8:5d:
0d:e1:ae:a4:31:91:72:38:bc:80:0d:51:d5:37:f4:
8b:3c:0e:29:f4:67:8f:0c:c3:2c:04:ee:a3:c8:51:
29:92:89:42:72:8b:74:65:db:e0:b7:92:39:44:34:
a7:26:c3:bc:ed:bd:ed:e7:70:cc:70:fb:bd:58:2f:
b8:83:99:1a:e2:2a:b9:54:7a:70:ee:d2:c5:99:4a:
b6:cf:11:63:5a:6f:e0:a9:5d:72:e8:8e:d0:15:6c:
bb:78:99:dc:72:05:f1:cb:b2:84:7a:36:1c:e4:78:
f6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:17:B6:E7:87:92:03:EF:53:45:81:17:3E:B2:82:EA:84:43:36:85
X509v3 Authority Key Identifier:
keyid:AD:F4:49:75:A5:DB:DB:F8:23:B4:A0:A6:B7:EE:B9:9B:14:84:36:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:d6:a4:9b:e9:76:a5:06:7b:2f:c6:3c:82:e6:99:76:99:da:
83:a6:3c:a6:54:62:d2:70:2c:8f:ad:0d:20:d8:64:21:31:51:
b6:ec:ea:8c:54:fc:16:f7:d2:0d:41:f2:a0:f9:b8:34:f1:aa:
69:87:e5:50:72:17:5a:5c:f5:6d:11:bb:48:92:2f:63:cf:d7:
41:4b:4e:ba:29:f7:98:97:f3:56:0c:08:a7:81:74:74:c4:43:
24:10:ab:a7:ef:3a:ca:cd:24:2a:99:5a:22:91:74:cb:40:46:
90:dd:03:40:47:52:09:31:53:6f:5d:2e:99:14:36:64:88:72:
16:ff:b0:8d:a0:1e:39:b2:e3:98:2a:05:7d:e3:32:2b:79:99:
4c:7f:f6:95:e4:b4:3f:e2:eb:3c:6d:70:19:2f:89:fa:69:7d:
70:7c:65:70:c4:05:62:97:46:59:0d:43:96:a4:e0:60:88:cb:
2a:a4:ca:d5:72:5c:6f:9b:14:d4:0b:7d:cb:a9:82:37:e7:37:
e3:93:90:10:43:bc:28:c3:e3:41:82:9e:96:7f:cd:e3:02:73:
b4:f3:1f:1d:21:25:a9:28:5a:53:19:34:ae:0b:4d:09:c6:18:
a7:ac:14:0d:e9:63:f5:e0:6a:1a:a9:36:df:2d:98:f0:81:1f:
7c:23:af:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 05:58:31 2025 by rpki-client