Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
File: CbtjJ836FlJNx9AzcTivMl-14tk.mft (raw, json)
Hash identifier: GPl4Xf98aCMch2Lq4P/kRtTsl1xAqDx/FlvdJ298z4g=
Subject key identifier: 2F:21:F4:6A:F9:38:76:51:D4:27:E9:24:56:C3:C2:07:F6:3D:8E:14
Authority key identifier: 09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
Certificate issuer: /CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Certificate serial: 0197711ADBCDDCA57DC1321D73F98D33EE2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
Manifest number: 1355
Signing time: Sun 15 Jun 2025 01:01:14 +0000
Manifest this update: Sun 15 Jun 2025 01:01:14 +0000
Manifest next update: Mon 16 Jun 2025 01:01:14 +0000
Files and hashes: 1: CbtjJ836FlJNx9AzcTivMl-14tk.crl (hash: RGT0Icp6Qn9uaKLycQyuxa5PP79ZmwK4y+8qIOPa7gg=)
2: o4Fd53Yi8gf1Z2E5SaQrj9OqD_Y.roa (hash: ju/o7BILnihNNjEqI90onU7QdzoVAl2fjP/NUv+3xWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:db:cd:dc:a5:7d:c1:32:1d:73:f9:8d:33:ee:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Validity
Not Before: Jun 15 01:01:14 2025 GMT
Not After : Jun 16 01:01:14 2025 GMT
Subject: CN=2f21f46af9387651d427e92456c3c207f63d8e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2d:95:08:8c:63:22:e8:f7:5b:0d:8d:aa:ad:
33:9c:7b:84:14:31:72:f7:a7:aa:85:de:cf:ec:0a:
e6:89:c7:c3:60:db:54:9e:76:4a:d6:6d:10:5b:15:
85:01:e0:9e:1c:18:e0:fa:2b:cc:66:de:a9:7b:1f:
a5:94:7a:a2:24:e9:1a:53:f9:c9:e1:6d:58:18:17:
66:68:db:45:9f:04:12:d0:35:03:38:00:a2:53:03:
dd:ba:0b:e8:1b:13:de:c6:86:cc:b5:fa:30:f2:d5:
b5:fb:a3:2a:69:b8:e3:20:00:9c:e1:e2:d3:76:e8:
0f:91:bc:4c:5e:da:b0:0d:03:e3:43:a6:ed:fa:e8:
7b:24:1f:4f:e4:f1:78:d4:d9:17:14:9f:c9:c1:b7:
ae:bf:19:de:8d:e1:cf:74:ca:c2:63:65:8b:5b:29:
e1:55:6b:33:57:67:63:ef:72:51:05:25:59:9c:41:
25:7a:e0:30:5f:b3:ad:2d:fc:a2:42:d5:dd:49:c3:
22:56:35:8e:bc:8c:6a:29:49:18:6c:28:6b:29:09:
cf:bd:ee:c5:6e:5c:98:fb:e1:40:7a:92:ee:87:50:
3c:6f:32:c1:4b:c2:94:d0:43:9a:22:29:14:cc:55:
03:4d:9f:ee:37:95:9b:ad:01:40:d8:79:33:c3:c3:
af:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:21:F4:6A:F9:38:76:51:D4:27:E9:24:56:C3:C2:07:F6:3D:8E:14
X509v3 Authority Key Identifier:
keyid:09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:df:27:ad:50:c3:9c:bb:2f:40:bc:ce:1a:f3:71:8f:56:7a:
93:0f:5f:65:a4:01:b9:a3:88:e1:75:81:00:d9:0c:52:3d:a1:
31:13:5f:07:93:20:44:6e:86:10:76:74:67:55:d2:da:ed:cd:
17:ff:ec:77:1a:24:c7:22:37:1e:ed:02:00:f9:fa:e7:77:44:
9c:73:d4:24:e3:9a:39:e1:43:e2:cb:ed:cb:fe:cd:9c:55:33:
de:05:50:97:8c:17:1e:d1:92:cd:e4:5b:21:3b:65:e6:92:51:
d7:55:4f:c4:16:64:96:2c:cd:73:a2:3e:99:5e:ea:2d:bb:21:
39:1f:b7:85:ad:fc:93:f9:38:36:93:71:de:a1:d5:f8:59:2f:
6b:46:3f:b9:a1:d6:35:45:25:d3:1e:78:79:18:89:cd:51:2a:
da:69:3e:8d:af:74:4b:b1:13:a1:00:9f:61:52:e4:15:ec:fd:
f0:a0:c9:c5:05:dc:df:65:1d:0b:d7:6d:8a:58:db:44:73:70:
d6:33:14:bd:46:c3:74:6d:f7:64:96:0d:09:35:f3:df:d5:e3:
09:84:a8:c3:ac:1d:22:e1:04:ef:a8:e7:e1:f7:b6:31:00:bd:
7b:8c:ca:44:37:d4:21:73:d1:cb:a5:68:c2:14:b8:72:d4:6c:
dd:76:12:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:36:24 2025 by rpki-client