Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json)
Hash identifier: Daiyb34UYXRiTK9CECloy8OI4EHlIjeBVOyU5lrCaTE=
Subject key identifier: 74:B7:41:24:F0:AB:47:02:10:F9:D0:C1:33:0B:23:53:5E:BE:A7:E3
Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Certificate serial: 01976BBD4596789859088CC0BFB3C8F2B4F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
Manifest number: 0F89
Signing time: Sat 14 Jun 2025 00:00:55 +0000
Manifest this update: Sat 14 Jun 2025 00:00:55 +0000
Manifest next update: Sun 15 Jun 2025 00:00:55 +0000
Files and hashes: 1: 8XxbJK1GWPrtjat_Lpe2HKly_9k.roa (hash: 1REGOqOGYIsLrmhSt5pZG4EmBpaR7Cf++uPRynahll8=)
2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: GaC8kOhGI1taNP7Cu6vTe8kmk7tKFSQQ+iTISo3ddNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:45:96:78:98:59:08:8c:c0:bf:b3:c8:f2:b4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Validity
Not Before: Jun 14 00:00:55 2025 GMT
Not After : Jun 15 00:00:55 2025 GMT
Subject: CN=74b74124f0ab470210f9d0c1330b23535ebea7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dd:8d:89:ef:38:26:9b:4e:bb:62:e7:c9:18:
b4:7d:3f:e4:90:6a:ff:02:ce:62:3d:6d:bd:c7:61:
be:28:69:84:fa:9b:84:e3:7e:c7:96:c3:9d:a5:0d:
c0:f8:61:f5:df:c5:6c:96:50:75:42:4b:0c:3f:1b:
28:f2:55:d3:58:0c:ea:bd:88:d4:bb:c3:80:d4:c9:
07:d4:d7:7d:b3:b6:59:86:43:6b:21:75:ea:88:64:
26:a9:1a:29:8c:17:cd:bb:be:e9:20:36:6e:e1:f8:
35:cd:a6:3f:1b:ba:0a:2e:48:12:3d:f3:ac:7b:c6:
13:77:75:3e:45:72:82:4a:f7:25:ae:ac:ca:f7:74:
9f:26:f1:b9:45:db:ee:d6:2e:99:40:99:ce:9e:64:
c6:0a:24:c8:da:f0:e7:c1:25:92:0b:f7:21:d4:7a:
1b:d1:96:03:52:4e:1f:28:cc:55:2f:28:42:28:06:
aa:ba:69:0b:7f:86:f0:69:60:2c:72:8a:00:01:a7:
c1:7d:ab:5b:e4:8f:f4:18:b5:bb:69:0f:a9:31:2b:
6a:a9:17:9c:40:ce:08:4a:58:3f:ab:a1:a5:5c:07:
25:95:7d:1b:82:92:2f:6d:f8:16:af:80:20:66:e1:
38:b7:87:49:bc:84:c7:74:ce:55:f9:e1:53:66:23:
53:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B7:41:24:F0:AB:47:02:10:F9:D0:C1:33:0B:23:53:5E:BE:A7:E3
X509v3 Authority Key Identifier:
keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:3f:63:75:2c:8f:ff:29:54:d3:fa:9f:61:07:97:a7:5f:fc:
18:40:77:56:9c:11:c2:75:4a:59:d4:62:f7:19:90:f2:fa:fb:
7c:7f:92:69:26:e0:ec:01:f0:49:19:8f:5c:60:38:1c:b6:e7:
e3:ac:0d:03:e5:f0:f9:5b:7d:b3:3c:d1:2f:f1:f5:0e:d1:71:
de:10:63:3e:42:00:f4:2c:d4:a9:6b:ad:87:42:cf:09:96:a1:
38:8f:d4:d0:a9:0a:38:05:fd:2d:f2:65:0f:f9:c1:37:6d:76:
a7:7a:b2:ef:09:1a:f0:19:60:ff:54:b4:a7:98:4d:25:57:b4:
75:14:d7:f7:e7:16:57:40:07:36:40:1d:3e:c7:15:e9:dd:fa:
f5:59:6b:0c:ba:b6:56:d1:ba:b3:a0:71:93:c3:53:5f:e0:7c:
22:3e:7e:4b:be:8f:73:3e:38:19:34:37:36:fe:0c:51:cb:7b:
41:01:8c:bb:69:a6:06:7d:5b:cd:42:f4:54:1c:4f:95:ab:3c:
bd:84:d2:ff:9c:af:ba:fd:21:6f:94:f2:06:37:68:3a:eb:d9:
83:6d:6a:df:25:1a:c2:08:ae:ae:d9:c7:bd:42:8e:91:ed:89:
45:9a:a9:0f:c7:13:64:d0:ad:e7:25:73:01:13:28:e8:6c:26:
5c:0e:13:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:51:55 2025 by rpki-client