Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
File: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json)
Hash identifier: vgxamFE1Cwtmm01ZE9ANN1N0UCrixDwo39gGjqsecCg=
Subject key identifier: 0A:63:5B:94:7D:54:88:35:96:39:89:6D:5F:73:39:FD:51:EF:70:A5
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial: 01977150F7FF812F912C8A6404A9888BAAE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
Manifest number: 0FCC
Signing time: Sun 15 Jun 2025 02:00:20 +0000
Manifest this update: Sun 15 Jun 2025 02:00:20 +0000
Manifest next update: Mon 16 Jun 2025 02:00:20 +0000
Files and hashes: 1: 5XEV-gEMIErGK0axVAW_a3kFgdQ.roa (hash: zrBYoY+XDrWBTYUlEabBJW1Q13TMvp0kauzANBjQtoQ=)
2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: YqGVLVbyo2x6z13HU4TfGub1NhCJKLuLFgBakyZ6txY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:50:f7:ff:81:2f:91:2c:8a:64:04:a9:88:8b:aa:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
Validity
Not Before: Jun 15 02:00:20 2025 GMT
Not After : Jun 16 02:00:20 2025 GMT
Subject: CN=0a635b947d5488359639896d5f7339fd51ef70a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b0:90:0f:c0:48:f5:b3:9b:87:17:c0:2b:f2:
bb:8d:97:f2:66:17:63:9d:04:5f:8e:67:7d:34:e8:
90:75:13:b2:07:84:e2:d5:38:29:4b:06:c9:61:23:
ec:6e:04:08:60:36:f7:15:d0:b2:5a:3f:71:f1:a6:
23:ad:0b:46:32:4e:e8:6d:ba:81:8b:6d:ed:1c:bd:
9d:f2:5b:b7:28:9d:4f:1b:a3:8e:ef:2b:9b:37:05:
23:f1:05:a6:56:ee:71:5b:e0:bf:2c:1b:60:5e:75:
62:fb:59:50:9e:c2:94:94:1e:16:2c:ed:cb:10:10:
d8:2a:bc:42:4f:1a:42:a4:e4:ca:3b:17:1d:3f:c1:
0e:9f:a3:5c:71:92:8c:be:95:7e:00:76:4c:9c:28:
cb:f4:d4:c3:97:76:df:da:90:23:f3:dc:c6:10:e5:
e4:84:cf:cc:db:43:77:37:c9:cb:3c:68:bd:8b:67:
cd:8a:80:a9:9a:8a:89:76:fc:cd:32:1e:b4:9a:cf:
ba:21:9c:02:d6:a7:a3:db:79:36:60:65:a2:0e:06:
66:b2:65:51:0f:33:3a:96:a4:58:8d:51:ff:37:b0:
85:36:af:67:f6:2a:83:6c:cc:7d:6c:85:36:0b:15:
80:44:fc:53:36:33:62:93:dc:f0:e1:61:bc:c0:7b:
10:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:63:5B:94:7D:54:88:35:96:39:89:6D:5F:73:39:FD:51:EF:70:A5
X509v3 Authority Key Identifier:
keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:b5:a8:19:0d:c3:a2:a8:2a:83:b7:87:23:58:a6:ea:0e:7a:
e6:4b:95:ad:79:22:8e:7e:15:4e:f5:94:01:7c:9b:b4:b7:44:
1d:8b:da:4b:db:bd:32:81:a2:67:94:60:6b:02:ab:ef:11:5c:
c8:3c:2f:12:f9:0f:75:90:17:5a:16:d5:80:5c:05:e7:99:bf:
20:a6:a0:29:a4:9b:25:3e:0d:34:f4:3b:b7:86:c5:8a:9e:21:
d9:8e:e8:de:8a:53:82:fe:21:e9:54:81:19:d9:88:85:89:11:
29:9b:7e:9f:6c:f6:1e:08:43:d6:c1:63:86:cf:1c:c3:73:7f:
17:a2:2c:7e:93:17:92:2a:84:98:b3:a5:40:91:bc:7c:dc:32:
cd:0e:26:09:66:7b:f0:68:c5:85:a2:f4:ba:58:8b:26:b4:cc:
2f:e8:8b:be:d9:41:1c:c9:ba:ee:6a:bf:60:00:d3:b2:9a:f9:
8f:b7:59:3e:70:96:86:3d:e2:cf:a0:8a:99:d9:ed:d2:75:d6:
86:01:de:73:3f:66:d0:1e:83:48:2b:dd:82:65:7f:be:21:6d:
18:bf:96:52:84:9d:a8:75:de:5a:af:6c:e8:6a:7f:0c:73:39:
ef:16:b9:c4:84:53:97:63:b8:33:7d:fe:31:37:84:83:76:9a:
f9:3d:a0:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:50:40 2025 by rpki-client