Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: UrZuE6KgFu1BTzoneSuVXfG5eYMsmNYQR+T5OgGs6T0=
Subject key identifier: DD:7D:7E:DE:23:AF:63:AF:C8:C5:E8:62:46:17:9A:9F:9D:85:A1:16
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 0197500F0FEF3CC9E5E926E200E66A958068
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 039D
Signing time: Sun 08 Jun 2025 15:00:53 +0000
Manifest this update: Sun 08 Jun 2025 15:00:53 +0000
Manifest next update: Mon 09 Jun 2025 15:00:53 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: cvdMxMj+4W3foZzipAbuPEJthzpu0pQ0jI/N4olguTs=)
2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0f:0f:ef:3c:c9:e5:e9:26:e2:00:e6:6a:95:80:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Jun 8 15:00:53 2025 GMT
Not After : Jun 9 15:00:53 2025 GMT
Subject: CN=dd7d7ede23af63afc8c5e86246179a9f9d85a116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ce:e6:c9:86:6f:79:f0:b6:af:dc:43:d5:b6:
52:c3:c4:e5:96:56:02:47:96:05:fb:95:17:a2:c9:
bb:95:60:57:4b:54:eb:b3:33:4e:fd:37:9a:c1:ad:
50:d6:d7:2c:2c:52:cf:11:6c:1a:e8:16:68:ab:de:
ac:a2:10:8a:d6:b0:56:af:53:e9:1c:1d:ea:db:fa:
d5:86:02:89:80:e6:2a:b8:f9:96:63:d5:b0:c2:ac:
f2:c2:b2:a1:45:db:74:df:ef:ac:e1:40:1a:48:ab:
be:4a:4a:2f:4a:d0:4a:63:40:aa:ad:65:38:37:72:
2e:26:bf:f6:5c:ef:c6:b1:34:eb:25:4e:c8:d5:5e:
d8:bb:28:0a:ff:ed:0b:d3:99:a0:ae:37:a9:0d:c5:
2c:86:e8:2d:64:b8:e7:5c:0f:61:f1:82:c8:2e:b8:
e3:ab:7f:73:3e:df:25:e1:38:7a:53:33:a1:3d:44:
3b:d0:1a:e4:40:11:f3:91:fb:8e:15:42:5f:b8:01:
3b:94:3b:f1:29:3b:e4:8f:0f:35:97:7a:c2:eb:b7:
21:8d:ba:20:5f:11:05:76:64:96:92:ea:b4:b7:02:
69:d9:13:51:9e:f8:cb:72:4b:f0:8e:f3:e9:69:4a:
3c:73:df:50:ec:ff:89:a2:e4:ac:8a:42:13:8e:62:
1c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7D:7E:DE:23:AF:63:AF:C8:C5:E8:62:46:17:9A:9F:9D:85:A1:16
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:9f:b1:11:a6:91:c6:7f:2d:2b:95:8a:00:19:99:db:7c:c3:
59:60:ab:e9:e1:fd:5c:83:30:87:d4:e1:a4:57:91:8d:e7:06:
95:82:89:54:11:a3:28:91:72:bf:1e:ae:43:47:b8:67:7d:c9:
c1:34:4a:c6:bc:84:e9:de:0f:b4:7e:0e:d1:88:b7:27:66:e2:
2c:f2:b6:3b:f3:e7:c0:cb:1e:5c:60:08:06:3b:67:10:d5:35:
65:3c:a3:0a:22:26:4e:66:04:a7:16:9c:91:4a:0a:e0:2d:0f:
cb:02:6f:c8:8c:be:37:2e:fa:8b:fb:8a:17:a1:2f:08:63:ce:
db:b8:68:79:ef:99:fa:18:62:2b:a0:36:79:ac:87:4c:2f:49:
df:c2:ed:01:c6:f5:69:5e:14:21:95:02:fd:a4:91:a3:0d:8a:
c1:e4:60:84:0d:23:02:62:81:af:e1:7a:59:46:ea:14:7e:91:
b7:29:73:c5:72:5a:07:df:9c:4e:2e:a4:d3:5f:22:52:94:83:
5e:c2:46:4c:ec:62:b7:a8:36:65:dc:05:3f:84:85:32:14:42:
21:04:5a:b3:f7:41:b0:a9:c7:89:f8:22:a8:4f:2c:28:6c:86:
2a:90:09:66:5c:19:40:10:5a:bc:bd:36:66:42:4e:71:6a:1e:
c2:e6:c0:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:16:40 2025 by rpki-client