Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
File: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft (raw, json)
Hash identifier: fYvjpgf/SUDfk0ltP250EYg9YttVyxm+KUOxMjc+w1g=
Subject key identifier: C5:86:14:8D:27:68:2C:F0:DE:60:40:D8:3D:A3:DC:C0:13:08:51:2B
Authority key identifier: D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
Certificate issuer: /CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Certificate serial: 01974A438AFE9C9D91AC4B46A1A4CB929965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 12:00:29 +0000
Manifest this update: Sat 07 Jun 2025 12:00:29 +0000
Manifest next update: Sun 08 Jun 2025 12:00:29 +0000
Files and hashes: 1: 0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl (hash: OM0RceqBqTSmNum9V0YUYUOHxk4bRqzEmYOzoFqiQPc=)
2: AddwdaQYSDgJ_-W9pipGLPibD4Q.roa (hash: YjKAFD6jnw8P32xCITagf8KVgpNGeRxCswidFmsKIOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:8a:fe:9c:9d:91:ac:4b:46:a1:a4:cb:92:99:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65bec5c765c850ee8ff97cc41b38031d1d83a
Validity
Not Before: Jun 7 12:00:29 2025 GMT
Not After : Jun 8 12:00:29 2025 GMT
Subject: CN=c586148d27682cf0de6040d83da3dcc01308512b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f5:18:28:fd:4a:bd:6b:d1:df:86:f1:ab:1b:
b1:f3:d1:eb:5d:6f:bf:9d:d6:8e:48:8c:47:f2:62:
5d:53:5d:eb:10:ef:f9:8b:79:bc:11:b1:96:7c:c0:
a9:09:fe:76:69:c3:62:33:53:e7:40:20:b2:f4:7f:
18:e6:01:de:52:6f:60:74:df:07:3f:38:e1:71:9e:
53:5d:11:dc:87:c1:14:64:96:e5:f4:c5:51:84:a1:
d3:ff:a4:d5:4b:49:63:d7:1d:e7:ac:b4:e6:4a:8f:
d7:80:dd:99:4c:03:35:ed:60:06:59:ca:eb:be:a0:
32:ca:92:84:c0:e6:81:71:49:ca:c2:84:57:2e:28:
bc:73:82:7d:f2:92:a3:ad:9e:97:aa:c5:f5:7d:cb:
00:1a:cf:78:8a:53:74:b3:05:4d:10:c9:6a:5c:c0:
56:c4:6a:60:a7:7a:dc:e4:be:b8:7c:22:2a:ec:82:
d6:7d:bf:c7:76:45:86:30:b8:98:ef:90:27:91:37:
4c:7b:a6:74:47:f3:92:a3:2d:72:f2:37:11:03:d4:
88:81:bf:b1:27:35:4c:44:7a:d1:e5:a8:f1:57:0d:
82:bd:d4:11:fd:df:fd:ca:0c:e8:60:41:af:f3:36:
c9:81:c2:0b:c8:12:1d:41:cc:76:bd:a7:54:bd:66:
73:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:86:14:8D:27:68:2C:F0:DE:60:40:D8:3D:A3:DC:C0:13:08:51:2B
X509v3 Authority Key Identifier:
keyid:D0:E6:5B:EC:5C:76:5C:85:0E:E8:FF:97:CC:41:B3:80:31:D1:D8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6bb7cb-d0ed-4650-ad0a-27a474505499/1/0OZb7Fx2XIUO6P-XzEGzgDHR2Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:51:51:2b:ce:9a:ba:53:7b:47:2c:04:b7:d9:af:62:86:6c:
e8:23:e3:d3:84:80:5c:63:db:23:ee:90:13:d8:63:99:5a:bc:
a8:e5:4d:73:ad:6a:90:31:f2:2a:2f:a8:4e:0a:97:47:4e:4d:
81:80:91:f6:c7:63:f5:f2:5e:b2:7a:0e:ee:b2:89:7c:08:ad:
ca:38:5b:5e:65:a5:c0:53:c8:68:59:28:5f:d4:f7:4e:8a:31:
60:fe:89:14:37:9d:f0:f8:e5:8e:7d:df:a2:7c:f3:41:6d:d1:
f2:ca:2d:dd:cb:b1:72:3c:19:04:e8:de:bf:fe:c8:12:70:cc:
0d:2a:c9:94:58:a8:02:c4:62:c0:88:c5:9b:24:45:24:da:12:
26:f6:62:2e:4f:c9:db:f4:27:8b:22:d2:ae:13:1b:79:08:b5:
c2:f3:a4:f3:7c:a4:d8:8c:38:4d:34:b9:fe:91:22:e6:d5:7d:
1e:96:6b:34:9d:7a:0e:c1:33:6b:c8:24:6c:f5:22:02:aa:d6:
b8:62:49:ca:5e:44:37:e2:c1:2e:42:ad:c5:89:42:a4:3b:b2:
ed:d6:11:e8:17:d2:2e:4b:52:73:23:f8:67:6e:01:73:77:a2:
e0:a6:18:f4:00:80:d6:c9:dd:10:47:d1:99:dd:f1:95:78:09:
e7:29:40:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:34:46 2025 by rpki-client