Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: IJZRzdT3pPVErOwzqiq4okadeARcEMvMnhpriyhbugc=
Subject key identifier: C7:3C:23:2F:41:CA:29:4E:0A:BB:13:21:B4:4F:DD:82:D0:7D:88:EC
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 019777F86F26C53DDC5BBDEE2D1334B58803
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 09D9
Signing time: Mon 16 Jun 2025 09:00:59 +0000
Manifest this update: Mon 16 Jun 2025 09:00:59 +0000
Manifest next update: Tue 17 Jun 2025 09:00:59 +0000
Files and hashes: 1: B1zjeI12z7rKzJjEV2xk7Kx6YeQ.roa (hash: r2WGLNl7mqhMqh1kFVBikeJbCxyFFZKze+pH0m8/Lxw=)
2: J0SmJvo_DblXKy-6WzDl514uI_0.roa (hash: q/+Q30dvsgavMpRf9kHRcZOPpYacKoQhzHpVoqSh0+Q=)
3: oE2klgKXcU6ZFBaxD5Ye5dFs4b0.roa (hash: xVrVcQ4eqe5NnaROnCloWgSzhvwXlAPv4n0sYt9CbFA=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: J+4rLpm+0Yy+1TuQIN5Q/Mtzqr23mpsUNRC/utsnLN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:f8:6f:26:c5:3d:dc:5b:bd:ee:2d:13:34:b5:88:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Jun 16 09:00:59 2025 GMT
Not After : Jun 17 09:00:59 2025 GMT
Subject: CN=c73c232f41ca294e0abb1321b44fdd82d07d88ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d5:b1:17:28:a7:3c:87:36:78:61:da:03:3f:
8b:79:ff:69:72:d5:35:4f:9f:dc:cc:fd:e0:f7:56:
2e:95:85:fa:c1:d5:dc:b7:30:a7:c0:f2:22:ef:07:
6a:f1:27:b4:67:03:40:7d:f5:ce:a8:4a:2c:8c:67:
6d:5a:df:d0:de:77:a3:c8:a3:c9:2c:c3:3e:b3:97:
05:e2:dd:13:5e:87:00:d3:14:c2:1b:73:be:5e:ac:
ee:41:88:2d:22:6d:5a:1e:b9:50:56:2e:19:87:c3:
31:c4:2f:ee:72:91:93:88:0f:27:15:cf:fe:10:25:
8d:8f:e9:6e:ed:c4:19:5f:82:f3:e0:19:f2:9a:2b:
c2:a2:45:85:d0:f4:2c:e2:1b:10:5a:0f:13:74:86:
98:46:d2:4e:c5:89:3a:e5:09:b3:a5:a3:f2:dc:83:
f2:a5:c6:75:af:4b:07:74:8c:6c:c7:a5:68:60:80:
9b:83:54:0e:4c:c9:b7:88:83:6b:39:49:4a:78:83:
be:80:02:a7:51:cd:48:8b:59:60:ae:1f:f1:52:eb:
4a:82:cf:8e:f2:4e:bf:03:16:81:c4:18:99:ef:d7:
3d:eb:90:c0:7e:47:44:c7:f0:e7:18:ff:10:d3:7d:
f0:f7:21:89:6b:0c:7c:1b:39:14:df:73:ca:f2:67:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3C:23:2F:41:CA:29:4E:0A:BB:13:21:B4:4F:DD:82:D0:7D:88:EC
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:bf:07:4b:61:d8:9e:e4:04:55:22:93:bf:13:3c:ff:82:f9:
48:e7:82:8e:2f:e2:da:18:44:d5:67:fa:30:58:ee:76:1d:97:
0c:48:34:14:30:5d:b3:17:c7:b8:cf:fc:ac:12:22:ed:bf:e7:
27:38:4f:af:5d:de:a8:0f:a1:f8:4e:9d:f4:2e:48:75:5c:ca:
bb:95:59:97:0b:3d:65:3a:e8:e0:32:ad:e4:c5:1a:b5:33:14:
89:ec:a2:b2:04:28:3c:d6:d4:ce:2f:48:b8:22:61:03:04:44:
20:30:97:55:bc:d9:c1:4a:6d:47:3b:fa:eb:3d:73:bb:c2:4d:
0b:5b:5d:bd:d9:51:76:1b:2d:17:8b:ce:63:1f:34:8d:e8:b1:
2c:26:00:5c:33:3e:01:bc:5a:2e:0b:53:f3:1a:9c:5c:b4:19:
4b:ea:28:51:fc:2d:c3:7b:74:0c:70:ed:56:e9:23:02:36:25:
4e:8a:b2:da:16:05:ae:3f:0b:db:7a:6b:3f:8e:80:b0:ff:51:
87:d3:0f:df:9c:ba:98:0a:8a:65:9c:7d:b0:a6:18:41:7a:d3:
9d:b2:57:ac:73:0a:27:74:54:31:db:a6:e4:9b:38:f3:68:40:
df:d3:f0:38:2c:3f:ac:28:f1:a0:e8:ec:fb:0e:2a:69:7a:bb:
d1:c9:61:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:24:39 2025 by rpki-client