Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
File: 67Ulb-PgcwKrcye3R7jfOCRcTt8.mft (raw, json)
Hash identifier: ZpIX2M/JFk7IWGBmZwtKPRbkcrnnJFcRmOj2zbKvUBk=
Subject key identifier: 34:CE:A2:C3:5A:9A:E9:59:7B:84:BF:FB:00:22:46:9F:31:5D:4B:03
Authority key identifier: EB:B5:25:6F:E3:E0:73:02:AB:73:27:B7:47:B8:DF:38:24:5C:4E:DF
Certificate issuer: /CN=ebb5256fe3e07302ab7327b747b8df38245c4edf
Certificate serial: 01987C4080107A6363006F3CA69DBDAEEEF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
Manifest number: 013F
Signing time: Tue 05 Aug 2025 22:00:58 +0000
Manifest this update: Tue 05 Aug 2025 22:00:58 +0000
Manifest next update: Wed 06 Aug 2025 22:00:58 +0000
Files and hashes: 1: 67Ulb-PgcwKrcye3R7jfOCRcTt8.crl (hash: 2Ffyumti967dLkQVOjzY+f9nL7fdHFDKV6OVcA2ubrU=)
2: R2qc8xIB7ETeFtMUELFMOTQfjZ4.roa (hash: BfeJlxl1OQPY3ScyZzCp1zSxOdUPgq5TTtPThWNATH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:40:80:10:7a:63:63:00:6f:3c:a6:9d:bd:ae:ee:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb5256fe3e07302ab7327b747b8df38245c4edf
Validity
Not Before: Aug 5 22:00:58 2025 GMT
Not After : Aug 6 22:00:58 2025 GMT
Subject: CN=34cea2c35a9ae9597b84bffb0022469f315d4b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:35:ea:01:73:9a:e5:1f:0c:01:f6:17:1e:e0:
75:48:68:8c:0c:34:f4:d0:cd:b8:5e:95:5b:86:49:
47:7e:60:17:d1:63:a0:46:a8:b4:63:a6:04:3d:52:
bc:22:0d:22:46:54:4d:de:6d:6a:19:5e:9e:8a:d0:
b1:76:77:46:5d:4c:4e:46:59:e8:4e:ed:26:c1:74:
71:d8:0b:67:78:f0:db:3a:c7:1f:9c:b1:f7:35:2f:
24:f0:cc:2c:8c:07:2c:72:9d:4f:d4:bd:1b:2b:8a:
77:b3:93:af:39:15:26:41:43:08:c3:6e:68:3e:9e:
c2:b0:79:56:8c:65:81:da:4b:b2:d7:46:9e:6e:55:
3e:d4:e9:ea:23:49:f8:01:bc:60:76:ac:c8:d1:6e:
b7:48:33:97:26:12:f9:ac:7d:91:fb:0f:d0:5f:32:
89:5d:fe:89:9d:cc:f2:d8:2c:9e:14:7d:8b:86:5b:
3e:7b:d0:f6:81:79:e5:04:78:04:52:cb:59:e9:0d:
80:79:66:3c:c2:ff:58:0d:46:21:b2:ce:1e:40:4b:
00:6d:e2:38:ec:13:1d:67:2b:97:4e:db:ff:11:0f:
74:0e:3b:6c:48:34:e8:b1:41:11:b2:46:75:72:3b:
be:b8:18:e3:c1:b5:f1:9c:1c:e3:5d:fd:1a:a0:6e:
0c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CE:A2:C3:5A:9A:E9:59:7B:84:BF:FB:00:22:46:9F:31:5D:4B:03
X509v3 Authority Key Identifier:
keyid:EB:B5:25:6F:E3:E0:73:02:AB:73:27:B7:47:B8:DF:38:24:5C:4E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:78:14:54:e4:e6:82:ee:d0:c0:48:6c:95:9a:60:0a:4c:6a:
d4:4d:f6:0a:8b:4c:55:97:f2:d0:05:16:2c:6b:2b:17:6f:cd:
a7:c2:70:fc:13:78:a4:6d:09:9f:4c:ea:29:11:b4:d7:69:01:
6d:e4:3b:6b:b1:aa:ac:ae:eb:cb:17:bd:ca:d2:aa:9c:db:f2:
e6:d2:e3:fe:40:20:74:31:73:91:02:0d:4e:45:47:cf:73:58:
f8:c2:ef:4e:84:73:33:59:e3:90:d4:0f:1a:5b:86:bd:b4:7d:
a2:d4:79:64:e6:85:18:12:d6:76:6b:81:ef:00:35:0f:c5:3e:
89:b4:56:f3:ec:11:ae:fc:54:6b:4d:68:0c:74:d9:bc:34:dd:
ee:82:6d:10:8d:57:59:63:d0:de:9a:07:2a:b6:59:72:78:9e:
a3:17:c6:d4:8b:17:3f:20:21:b9:97:d9:75:d7:14:ed:dc:9d:
31:a0:03:af:c6:b8:b4:68:11:bd:98:08:34:84:a0:39:e0:b0:
b3:6d:24:f3:d0:74:92:36:41:86:7f:7c:d0:51:ea:b7:b5:1d:
0c:b6:db:e7:28:c3:ea:5b:63:b4:1e:54:07:e6:26:c5:79:32:
79:5f:c5:d8:ce:52:8f:b2:77:6b:6c:81:55:29:a9:b8:ee:07:
4e:d8:a1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:03:03 2025 by rpki-client