Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: 8HCJb2BIYYb36g9shS4d2teXfxnDq9s479LtUUNvqw0=
Subject key identifier: 9E:66:37:07:15:4A:52:2C:71:72:78:36:C4:75:07:AA:AA:3B:39:2C
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 01976929C84802B3EBA27D464C1BABD21D1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1589
Signing time: Fri 13 Jun 2025 12:00:35 +0000
Manifest this update: Fri 13 Jun 2025 12:00:35 +0000
Manifest next update: Sat 14 Jun 2025 12:00:35 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: 5gZoZov3ft9Gj2Eb7iiZgZ4ce9SBq+SlDrgPfAB2dZk=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:c8:48:02:b3:eb:a2:7d:46:4c:1b:ab:d2:1d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Jun 13 12:00:35 2025 GMT
Not After : Jun 14 12:00:35 2025 GMT
Subject: CN=9e663707154a522c71727836c47507aaaa3b392c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ce:b3:30:4e:b2:c6:69:dd:11:47:f4:fd:52:
b0:2a:e2:c7:cc:ac:9c:6a:9c:09:6e:32:85:7e:58:
eb:f2:58:51:9d:b3:05:70:06:af:e3:b1:e9:4e:6d:
96:8c:fc:60:d3:19:42:c1:1b:10:cf:c6:4b:ce:f3:
78:ae:23:23:84:52:69:9c:1c:72:50:bc:2c:04:90:
36:9d:35:be:51:fb:02:eb:de:79:51:80:51:f0:e7:
8b:77:95:5a:37:ef:e0:49:4a:3f:4a:9b:23:c8:24:
8a:58:20:ef:6d:6f:f0:d2:46:ac:29:ab:8c:b7:47:
48:65:38:44:e9:9b:0e:87:92:75:96:a6:6a:93:c8:
af:a9:70:5f:ae:31:32:0d:76:d3:4f:9c:ad:a0:db:
5c:fe:b7:b8:ab:dc:ac:f6:78:27:3e:ad:22:58:7a:
2b:32:50:03:7c:5f:8d:54:72:a6:22:09:38:86:fd:
52:87:1d:a4:1a:70:b5:11:40:60:71:22:7a:03:4b:
1c:0d:82:f5:df:d3:6c:bc:eb:c8:c0:7d:96:7c:50:
fb:51:d4:42:38:b8:05:78:18:e4:47:ca:58:58:27:
5d:22:e6:24:14:93:f5:36:dd:d3:21:9f:f7:c9:2f:
03:09:81:8a:2d:c6:d7:cf:08:d5:45:dc:e9:0d:51:
be:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:66:37:07:15:4A:52:2C:71:72:78:36:C4:75:07:AA:AA:3B:39:2C
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:e4:fa:69:a6:21:bf:d1:91:42:91:d0:60:d6:c7:23:99:62:
f9:a5:71:15:52:b0:43:37:8b:a9:28:f3:3b:db:cc:84:9f:a0:
74:83:83:3c:86:46:d1:6e:27:95:50:49:67:b6:39:65:1b:8b:
07:c7:8d:d7:87:d5:98:83:97:aa:48:3a:59:5b:74:06:47:a3:
a2:e3:74:85:87:f9:30:60:18:07:81:5e:32:2c:a1:d5:85:99:
76:f8:59:a9:8c:e2:be:47:46:c2:6c:cb:a7:c4:c6:3f:c8:50:
19:7b:0f:7d:d1:14:07:20:15:6e:77:32:f4:db:16:e0:1c:26:
71:b6:75:41:33:20:1d:33:f8:c2:9a:25:99:bb:db:e9:dc:ca:
44:79:f5:3e:f0:f3:b4:1d:ec:81:3f:f4:38:0f:7b:f3:12:d4:
29:68:fd:b9:46:a8:b3:b9:ee:31:8b:fe:b1:6b:ca:c1:9d:a9:
ac:04:78:c9:16:85:25:26:7b:a1:20:95:53:df:a9:96:e2:04:
0b:51:1c:24:cd:df:b3:fe:1c:77:0a:47:e8:98:3c:6f:78:e5:
f9:41:b3:44:7c:aa:f7:ce:38:01:1d:93:f4:b7:92:a1:89:57:
82:59:c9:b9:3e:e0:4f:ba:6b:6a:25:7f:15:42:39:06:55:cf:
0d:06:ab:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:11:38 2025 by rpki-client