Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
File: bN7Hsun4ZurDa8McpMT_YtU90WY.mft (raw, json)
Hash identifier: A9Z78t0QK2berrcXLs+IKGuEgoIDYSMV8R3fLSu1rF8=
Subject key identifier: DD:2B:E2:FD:58:26:CA:8A:9D:6F:59:4A:31:84:C8:E1:84:8E:89:20
Authority key identifier: 6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
Certificate issuer: /CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Certificate serial: 01978DA42D43B7291AB2D9504179CD460660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
Manifest number: 15A0
Signing time: Fri 20 Jun 2025 14:00:36 +0000
Manifest this update: Fri 20 Jun 2025 14:00:36 +0000
Manifest next update: Sat 21 Jun 2025 14:00:36 +0000
Files and hashes: 1: Z4ohMPF1WbOgY7NPLu3yhyFt6Mc.roa (hash: wjvtvacmB4OpgR5kZvFLo2El4XLARx+8D9159reAQW4=)
2: bN7Hsun4ZurDa8McpMT_YtU90WY.crl (hash: B12TMt+uY5sXEuXLYjbaKuTP2uHcGqds+gSqcV4Bx40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 13:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8d:a4:2d:43:b7:29:1a:b2:d9:50:41:79:cd:46:06:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Validity
Not Before: Jun 20 14:00:36 2025 GMT
Not After : Jun 21 14:00:36 2025 GMT
Subject: CN=dd2be2fd5826ca8a9d6f594a3184c8e1848e8920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:03:28:95:fd:b7:f7:6a:dc:ed:36:40:01:28:
da:11:aa:34:a5:7a:fe:3f:6c:99:80:6c:f5:e0:89:
e6:c5:7b:49:71:66:8a:d9:a2:08:4a:e5:f9:60:4b:
14:bd:1d:3b:f7:e2:31:ef:53:69:a0:df:9b:d7:20:
4f:f5:01:7c:02:60:63:a3:0e:81:f1:a7:84:c9:90:
55:00:44:94:03:13:6a:68:d3:82:da:d2:d2:05:f8:
0d:e6:31:c8:c0:e4:25:ef:bb:15:4f:38:d6:ff:87:
cf:7d:d2:cb:2b:fa:b7:c5:f3:61:91:8d:8c:09:fc:
19:17:78:eb:cf:52:5d:f2:f3:88:e5:7a:0a:78:a7:
a9:61:5f:a1:55:f9:fb:f5:1c:85:d4:c2:43:73:89:
e8:7e:01:dd:bc:03:d6:5b:4a:aa:a5:98:9f:41:36:
9a:2c:d5:e5:8f:3b:5e:93:50:11:82:ee:4c:e2:f3:
d5:37:35:61:3e:0b:ee:fd:c8:c3:a7:38:26:77:c1:
e7:e2:b8:5f:f0:3b:f9:b5:03:f4:22:1a:81:0f:5e:
69:09:e1:59:05:f1:c3:02:6a:da:be:9c:86:98:68:
17:95:30:ca:22:88:b0:f3:66:6f:54:29:3d:b1:c6:
55:21:fb:55:5b:f5:e8:72:72:98:1f:b0:9f:59:83:
1a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2B:E2:FD:58:26:CA:8A:9D:6F:59:4A:31:84:C8:E1:84:8E:89:20
X509v3 Authority Key Identifier:
keyid:6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c5:bc:e0:8c:25:f3:ed:f8:0d:a4:0f:54:74:b4:ac:98:2a:
ae:a8:88:a7:57:9a:50:b9:f1:49:93:53:e3:fb:5c:22:93:81:
10:5b:e1:71:08:a1:61:64:b3:ee:9c:58:df:0b:88:bb:27:47:
00:3a:3d:88:c1:ea:0c:7a:34:34:af:7c:e4:84:f7:75:a5:79:
1b:0a:73:85:f4:d3:52:1a:8d:23:74:da:a3:a7:d5:a2:f5:47:
12:6a:4f:1a:82:2b:25:d3:1b:d7:81:d0:f3:bd:c9:46:8a:66:
a7:86:a4:cb:63:43:f9:f4:bb:ae:ec:05:41:77:c8:d2:60:f5:
59:27:50:52:e9:0e:8e:45:e4:2d:10:ca:21:e8:fa:34:d0:90:
0e:c5:19:55:a5:f0:da:15:e0:69:4e:a9:9f:22:7c:df:d8:c9:
b5:0b:99:a1:f5:66:e8:28:8f:53:6f:e2:d4:dd:15:de:3d:84:
3d:89:07:c9:f4:fb:94:2d:7d:7b:2a:71:29:94:a4:fe:d1:c1:
bd:a4:1a:35:62:e5:d0:62:cc:e1:c6:3e:bc:32:68:bd:f4:cb:
29:8e:d8:8c:3e:29:89:f0:6f:cc:e9:1d:07:9d:c9:69:97:e6:
2f:61:fc:b4:f0:f1:de:a1:31:9e:0c:b8:d4:63:47:4f:5d:50:
34:44:dc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 20:05:28 2025 by rpki-client