Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: E7Bd4m30+82NNIPPZm8Zo0iiAvxhakfg9R5DmXQkBRk=
Subject key identifier: 4D:B7:95:4D:91:46:5D:7F:FD:99:46:3B:30:18:1F:A4:DA:65:90:63
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 01975D5CB46071F3F54832E48DE533DF266E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 08D3
Signing time: Wed 11 Jun 2025 05:00:45 +0000
Manifest this update: Wed 11 Jun 2025 05:00:45 +0000
Manifest next update: Thu 12 Jun 2025 05:00:45 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: rHkcIyCs/W7BJB4urfipM4+EkGCgqFpQiFM7xSuS7J8=)
2: 99RaY9xH4qOYuC0KdiJQrFMbC5E.roa (hash: TZUHN/mcHmz7AzTn504QkH94CMbEPlnfBvzJqjhXWtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:5c:b4:60:71:f3:f5:48:32:e4:8d:e5:33:df:26:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Jun 11 05:00:45 2025 GMT
Not After : Jun 12 05:00:45 2025 GMT
Subject: CN=4db7954d91465d7ffd99463b30181fa4da659063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:72:ef:40:9a:65:24:95:18:0b:a0:64:9b:a0:
1a:7d:78:44:79:52:95:b8:84:cb:2c:57:8f:2f:fb:
f1:2b:b0:89:dd:2e:e2:6b:9b:70:48:b6:76:07:7f:
41:b5:91:23:6a:86:9a:a2:ab:b5:47:3e:94:e7:2c:
62:f3:6e:0d:5d:c2:65:0f:0b:e0:d2:51:6b:55:f3:
d6:63:28:d8:91:c2:b1:af:47:f7:44:c2:46:ad:32:
8f:e8:12:d4:fb:33:e5:01:65:48:97:48:48:38:3d:
26:8d:b9:d8:3f:ba:0c:fc:69:d0:d1:6e:cb:1d:f5:
48:d0:42:b1:f3:13:8f:86:12:9a:ef:36:43:f0:0f:
68:85:2e:4a:84:60:5b:37:04:de:ff:c0:a9:2a:b6:
df:b3:83:05:bb:6a:66:ab:71:29:d7:aa:e9:c3:f6:
eb:34:aa:ac:0a:b2:73:a0:4c:2a:ba:fa:fe:68:20:
fe:6d:dd:2c:0b:63:bc:d2:91:22:4b:f1:47:b7:af:
b7:2e:4c:a0:90:ea:c6:f2:47:58:7b:97:0e:c2:ac:
9c:ba:63:09:50:fa:ab:d0:54:34:28:8c:c6:8f:60:
e2:ad:ba:06:88:37:ee:da:8a:82:fc:a9:f1:e2:81:
ba:3d:4b:ef:4d:b6:b3:12:b3:35:7e:60:28:30:90:
00:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B7:95:4D:91:46:5D:7F:FD:99:46:3B:30:18:1F:A4:DA:65:90:63
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:b8:ee:15:3b:28:46:fc:78:69:e8:e1:c8:15:ff:99:f3:ca:
61:de:04:32:29:47:bf:b8:07:a8:2c:b7:d3:15:ae:36:30:d1:
46:23:1b:b9:59:e4:78:f0:f4:9e:6f:a7:a6:f4:da:d2:d1:9f:
1a:fc:3f:c6:70:24:4e:2b:df:0a:49:ab:6d:48:57:1a:5a:24:
e4:dc:64:95:64:a7:5b:b9:f3:20:8e:63:f3:49:f1:a5:0a:0d:
bc:e1:96:ef:19:00:d6:70:85:d7:02:04:f8:a4:f3:26:54:27:
36:20:a9:8a:b9:97:f6:f7:b8:6d:23:01:80:7d:e2:ae:49:37:
05:32:df:8e:3b:6b:71:6b:ff:30:6c:d8:65:f3:9f:f0:82:2a:
fc:72:e0:ed:35:6f:67:84:f3:35:3c:46:ce:c2:e5:46:6c:76:
24:a8:1e:db:23:7b:03:5f:39:a4:d6:3d:21:a7:dc:3b:8e:ec:
8f:c4:54:e9:f6:a1:36:1a:9f:bf:6c:40:f2:65:66:91:40:85:
05:03:e5:07:7b:b8:e7:9f:4f:db:3b:6a:43:ca:41:2b:22:d0:
c2:2f:56:4c:90:ab:94:38:38:1c:8e:5a:94:06:db:85:f0:da:
df:66:51:d3:a5:6a:c6:85:61:41:66:44:30:e5:ed:df:34:48:
2a:fa:66:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:29:56 2025 by rpki-client