Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: AmTwtYRtRm6oydZRK2MLWdBcs6QlLVVNCBwXajsX7ek=
Subject key identifier: E6:0C:AF:31:E5:CE:77:BC:79:A0:17:4A:D0:EC:C6:6B:0D:81:D6:20
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 01976C99203C3320D0FE67DD6BC59B0EE144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 9A
Signing time: Sat 14 Jun 2025 04:01:03 +0000
Manifest this update: Sat 14 Jun 2025 04:01:03 +0000
Manifest next update: Sun 15 Jun 2025 04:01:03 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: 8KRHGOhjs+WCfUTgEsommqmR+mcN94/toFf028S2rlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:20:3c:33:20:d0:fe:67:dd:6b:c5:9b:0e:e1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Jun 14 04:01:03 2025 GMT
Not After : Jun 15 04:01:03 2025 GMT
Subject: CN=e60caf31e5ce77bc79a0174ad0ecc66b0d81d620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:f5:b6:b6:43:8b:d4:f5:85:de:20:8e:38:
6e:1b:78:c9:c3:97:1f:cb:ef:79:32:8f:26:66:04:
6c:d1:52:ea:81:96:e3:dd:d3:c3:29:f9:7a:9e:33:
cd:43:7f:96:07:ce:fe:b6:86:8f:c6:8a:8f:7b:da:
62:7c:31:01:41:3d:a3:99:12:0b:d3:eb:e7:e6:9d:
2e:56:91:ac:1f:75:6f:09:9c:b4:77:60:f1:c4:89:
1d:34:a1:f3:48:13:9f:2f:87:b4:62:ad:b9:37:b2:
3e:c3:cd:77:20:98:c8:1f:bf:77:f4:57:df:74:2f:
89:88:a7:fc:9e:e4:f1:44:b2:51:dc:b5:8b:81:ce:
13:50:43:bb:1d:3c:dc:8f:55:10:87:90:0f:24:c0:
e6:23:ed:5a:a8:30:e2:a8:3c:bc:33:59:2b:d3:10:
3b:66:ae:92:b8:13:8d:69:1f:cb:8b:09:ff:88:dc:
c4:7b:13:a8:07:1f:0a:f0:76:7e:da:06:74:04:be:
48:c4:f6:21:97:02:93:b1:93:f1:08:69:cf:bc:e0:
25:03:19:ce:ad:23:2b:a3:be:b6:a8:6b:e3:a2:20:
67:08:63:90:b7:1e:ea:ab:12:ed:53:7c:07:15:97:
eb:14:52:16:2e:ed:c9:b4:93:de:bb:04:90:3d:34:
33:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0C:AF:31:E5:CE:77:BC:79:A0:17:4A:D0:EC:C6:6B:0D:81:D6:20
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:e8:2a:13:f4:39:0a:bf:28:d8:23:21:e3:c1:b9:d6:53:db:
7a:ce:56:a1:31:ef:fe:1e:32:d9:8c:04:d4:9b:02:00:c2:4c:
5f:e8:3f:a6:88:2b:37:91:c9:90:01:24:d6:c6:8e:a3:40:7a:
09:a0:1e:1e:63:61:92:fd:6b:e6:58:08:66:d1:fa:46:a8:92:
32:26:52:ff:8b:4f:a7:42:16:36:47:f4:40:d6:59:ab:ca:6b:
7b:65:8d:60:e0:ed:9b:f9:89:07:c9:b8:fa:39:fe:8c:9f:d8:
09:5e:2c:22:a4:57:fa:f6:dd:6d:da:b6:1d:fd:68:f9:46:5e:
ac:aa:4e:cc:13:48:d8:f1:85:80:81:82:2d:0d:a7:01:b9:d9:
22:59:32:43:54:64:e4:eb:87:95:01:e6:c1:89:7a:7f:d4:5f:
1a:d6:df:4a:a4:d8:ce:7c:33:40:4c:28:36:33:f0:a9:3b:df:
19:8f:85:fa:9e:34:79:2c:77:51:f9:a0:c0:9d:20:8c:02:82:
fa:8e:7b:dd:32:af:06:ff:8d:0d:e6:df:76:38:47:0d:bb:32:
11:24:ce:8e:82:ec:05:5a:23:c8:2c:2f:8d:e2:48:17:85:fe:
ad:69:24:2b:2e:c7:8d:32:5d:7c:3c:6e:dc:c7:db:aa:fe:0b:
8a:8b:d3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:51:08 2025 by rpki-client