Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: HA3S59Wq/pvOcp+Xw8HYD4krnMjXoJTSA2B1kOoKb9o=
Subject key identifier: 42:E1:53:72:32:4A:ED:85:25:A7:39:73:EF:02:A0:C6:84:8A:6A:93
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 01974DB30EECF5F91C8D6ACC7B2374B3B282
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 0AF4
Signing time: Sun 08 Jun 2025 04:01:09 +0000
Manifest this update: Sun 08 Jun 2025 04:01:09 +0000
Manifest next update: Mon 09 Jun 2025 04:01:09 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: WtlkP0fNT5Sd0yhuR4u3iAjSqd/gIiztl9G423fMap0=)
2: FiLJrOB6VSbXcUW10ayq5u0-45c.roa (hash: SVzm6u7ARr2O1cZhcAUWJuayXj1RRfV/z3YIwyKiXZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b3:0e:ec:f5:f9:1c:8d:6a:cc:7b:23:74:b3:b2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Jun 8 04:01:09 2025 GMT
Not After : Jun 9 04:01:09 2025 GMT
Subject: CN=42e15372324aed8525a73973ef02a0c6848a6a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:39:45:4c:12:86:27:f8:3c:d8:88:f9:1b:
19:ae:cd:15:f9:af:3a:59:c2:e1:93:e4:29:f0:8e:
a2:3c:5c:9d:19:55:7a:19:21:ec:52:0c:69:f3:37:
7f:69:c8:80:26:41:c7:f7:75:07:9d:13:97:b5:b4:
70:b4:03:36:c8:46:75:a8:7a:6f:5a:04:de:c3:86:
f2:37:32:22:00:71:d9:27:3f:a4:39:2a:01:06:9c:
15:7f:f6:a9:55:32:8a:5d:f9:39:cc:4a:3e:5d:0a:
11:e9:7f:74:1f:ac:2e:6f:de:25:93:db:4e:f0:9e:
eb:c0:d8:07:47:6e:f5:47:8d:5a:c1:e8:63:fc:0a:
f7:7c:c8:ac:c1:ab:aa:25:4d:7e:03:59:ff:ef:f5:
0d:30:77:7c:e3:cd:61:00:79:a4:57:3c:73:be:03:
c4:3e:f7:ec:7b:e3:43:dd:72:ff:79:09:b8:2b:10:
2e:67:a3:e8:9e:4f:fc:04:74:fc:e1:23:53:a8:06:
15:ad:38:b2:06:64:ea:06:56:76:7f:b6:06:70:d6:
12:99:f3:db:c4:80:34:20:b5:34:70:87:b0:d7:1c:
4d:2f:76:22:7b:f6:ab:3f:28:c0:b3:25:07:cb:c6:
74:77:45:24:f3:2f:73:1d:8f:78:bb:77:3f:91:b8:
c7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E1:53:72:32:4A:ED:85:25:A7:39:73:EF:02:A0:C6:84:8A:6A:93
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:85:cc:7a:04:d6:f0:93:b3:21:ca:ab:bf:d7:8b:72:9d:a4:
2b:80:56:16:2b:52:1a:ce:bd:c6:eb:25:49:88:31:3b:5a:d7:
66:2e:ea:a0:64:26:ab:4c:48:4c:34:73:64:32:96:28:5c:72:
7b:ab:e0:d5:ad:1b:65:68:b0:87:0b:d8:b4:80:45:ed:3f:11:
0f:ce:a0:d8:1e:ba:d0:54:cc:24:ce:14:3e:d6:e8:6b:83:5a:
94:05:29:0b:3a:61:ac:ec:bf:60:73:c4:3c:6a:ad:24:df:02:
ba:0e:e3:8e:25:71:26:cf:70:9c:5f:cb:0b:fc:25:47:35:0b:
71:5e:bf:db:88:ab:4c:ee:6a:78:bb:eb:46:44:66:e4:9c:4b:
6a:93:73:55:4c:88:9d:b5:f3:f7:37:56:b0:04:0a:37:e9:97:
78:bb:3f:9c:a8:64:59:f0:8e:5d:c3:33:f8:be:ff:1a:11:c9:
58:77:83:6a:18:f1:93:da:7b:ba:9a:e4:8f:ea:e8:88:81:66:
9e:df:8f:56:d3:8f:d4:bf:8f:d0:9d:c1:d4:47:d0:43:6f:4c:
e1:71:d7:d4:d9:85:a0:02:19:93:5b:c5:08:f2:7e:33:56:76:
0f:28:2c:f1:17:da:f9:17:8a:df:1d:e4:fd:c8:9b:cc:76:9c:
4b:0e:f7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:36:49 2025 by rpki-client