Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
File: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft (raw, json)
Hash identifier: EbPkzSoV59uR/ZrmnW/H+jtIkZSTBUDIFlYiF/FF29I=
Subject key identifier: 7A:67:16:9D:28:66:7E:2C:0C:75:A4:C7:35:81:66:0B:8B:5D:30:1F
Authority key identifier: D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
Certificate issuer: /CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Certificate serial: 0197485543B3E881B55108610230E1376108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
Manifest number: 0DFE
Signing time: Sat 07 Jun 2025 03:00:36 +0000
Manifest this update: Sat 07 Jun 2025 03:00:36 +0000
Manifest next update: Sun 08 Jun 2025 03:00:36 +0000
Files and hashes: 1: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl (hash: L+xC+yKDNxk9m8+Qjd24b1BV1lHW2ToiNlF6gBfXIwo=)
2: tWrNNpvQLnIYXShcXDmxPXzlROA.roa (hash: rl7K0aTuna5/yne12oTJUAQ6OhB1j3YlRj4Y9PjqK84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:43:b3:e8:81:b5:51:08:61:02:30:e1:37:61:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Validity
Not Before: Jun 7 03:00:36 2025 GMT
Not After : Jun 8 03:00:36 2025 GMT
Subject: CN=7a67169d28667e2c0c75a4c73581660b8b5d301f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ca:28:50:e4:d7:e6:04:94:e3:fd:2f:0c:cf:
5b:56:4f:21:d0:62:5c:19:cb:38:71:76:30:a6:c0:
2f:3e:fa:51:d2:a8:e4:db:af:76:c6:a1:58:85:57:
8f:85:8e:4f:cd:f7:9a:4b:54:33:f2:3f:41:46:9b:
6f:4e:8e:2b:8a:3c:47:fe:77:4e:34:ac:84:2d:85:
19:02:7d:c6:8f:46:af:74:2b:c8:b0:b4:36:b2:ae:
98:87:74:77:bf:73:64:70:f1:41:b7:bf:77:73:66:
be:73:84:1b:e7:d6:25:bd:82:44:9a:5a:b0:a4:89:
e6:e7:19:90:50:3c:ff:d4:a0:4f:82:60:c2:fa:75:
1e:a4:e5:7e:89:69:d0:9e:98:7d:96:9f:23:04:4f:
8e:ce:e8:80:ec:4f:06:2b:55:9a:44:33:ad:6e:87:
3b:a2:0c:05:cc:41:a4:6f:e3:06:c1:74:4a:a8:10:
77:14:18:b3:be:25:6e:31:eb:28:73:89:74:38:a1:
46:95:e4:fc:c1:52:9b:1a:21:21:31:94:16:91:88:
89:bf:a3:18:19:59:7d:4e:c4:82:b9:57:40:cd:56:
6a:04:31:85:43:4b:ff:ae:a6:5d:b7:c1:ac:77:b2:
a9:94:59:93:7d:9c:f4:90:f2:7c:05:71:a4:d6:13:
af:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:67:16:9D:28:66:7E:2C:0C:75:A4:C7:35:81:66:0B:8B:5D:30:1F
X509v3 Authority Key Identifier:
keyid:D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:c8:34:0e:f0:85:8c:95:e1:0c:60:d4:3d:73:90:6e:a4:10:
e9:d4:a6:cd:1e:2e:a2:51:15:2d:2d:80:02:73:d5:9e:51:9e:
0f:d3:ec:08:73:0e:f8:9f:85:72:ab:2b:da:ff:d3:73:c9:b4:
23:77:00:dc:09:a4:1f:3b:08:3b:e0:33:14:b0:eb:0e:d5:c8:
b3:61:bb:f7:fe:28:f7:9d:d3:14:5c:19:77:6e:f9:aa:98:27:
47:41:fb:91:7b:16:18:e2:f2:c5:e0:f5:71:0c:fb:b3:f3:e9:
06:a9:75:8a:4f:c8:8a:68:22:47:ca:85:aa:44:c9:61:a9:a2:
c4:de:e0:20:3a:67:cc:07:48:87:eb:c2:2e:c4:51:b9:ad:17:
d2:1e:e1:46:48:f4:1f:4a:e8:9d:d6:95:ac:37:46:5b:05:d9:
4c:e9:51:53:2f:a6:9c:8e:21:e5:89:fc:02:93:f2:28:ce:1f:
a5:07:d5:06:e8:3e:40:ad:b3:c0:75:36:ed:e1:45:61:1c:89:
ab:3b:d7:9f:ca:6d:a8:c5:83:53:15:28:13:59:a7:ca:d7:df:
b9:7c:16:48:c8:08:10:3f:ed:02:d3:a7:45:ad:29:01:7f:5b:
56:03:90:4a:04:a4:7b:4b:e6:77:7d:b2:34:1e:b0:83:20:51:
10:2a:bc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:35:33 2025 by rpki-client