Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: zs5VLNN+YRI7zq4z6XIz6AM42PcuiNu6tMIGb4e77WU=
Subject key identifier: 52:47:86:D6:B0:36:7F:29:72:77:C7:07:F9:71:19:85:13:21:30:41
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 0197499F50D4BC78956566C889894AAD2FDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 09:01:06 +0000
Manifest this update: Sat 07 Jun 2025 09:01:06 +0000
Manifest next update: Sun 08 Jun 2025 09:01:06 +0000
Files and hashes: 1: Obsiy3NGEoUjL-DLQo0yhLx4KAI.roa (hash: p9j2sVfI93AXLXtc3YNcT/Xcs3W13x3825+kRDw3Ko8=)
2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: Vwk38anlBUdeGYUVIoteTJTz1/VGf8LRLQ72bH5fd7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:50:d4:bc:78:95:65:66:c8:89:89:4a:ad:2f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Jun 7 09:01:06 2025 GMT
Not After : Jun 8 09:01:06 2025 GMT
Subject: CN=524786d6b0367f297277c707f971198513213041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:19:9e:c2:31:39:ee:4c:b0:84:bc:85:3d:8d:
14:18:68:c6:a5:50:af:44:fc:34:f1:f4:c8:be:2f:
92:5d:2d:2b:fb:a2:91:b5:55:c5:6c:04:d6:1d:fb:
3d:b0:2c:ca:62:a8:b8:f5:83:53:de:65:aa:2f:9d:
d5:6e:98:6f:84:e4:6b:b4:39:9a:9e:a2:d3:f8:d8:
24:26:69:2b:3c:c0:e7:c9:25:45:a9:54:f9:ec:59:
b9:26:89:24:1e:36:ed:24:62:bd:ab:f4:f9:4a:ee:
5d:fd:26:7f:37:00:c8:a5:4b:bf:24:32:5f:96:a7:
25:8b:c5:7e:46:c0:99:65:12:8a:4f:c4:dc:bc:70:
5c:9b:60:cf:16:f3:30:84:5c:d9:a4:c1:d4:44:46:
43:58:6b:3b:7c:e8:09:44:c5:98:b6:34:5e:ce:0f:
dd:d2:7b:91:73:e0:59:e1:0d:f7:a5:9f:f0:2f:ba:
8b:03:15:6e:42:8d:78:d3:81:ed:13:5b:cd:34:87:
3a:4b:5b:20:1e:17:d5:5a:d7:6d:1d:0e:bd:60:ac:
4d:cf:ba:c7:b3:a9:75:61:00:58:e1:17:56:aa:4f:
0b:3c:55:58:fd:14:f1:41:59:3f:c1:45:68:cd:7f:
6f:11:2d:c0:7d:5f:10:ff:d2:5b:33:6d:81:47:55:
70:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:47:86:D6:B0:36:7F:29:72:77:C7:07:F9:71:19:85:13:21:30:41
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a2:79:00:5a:74:4c:2b:61:8b:c1:43:95:f9:8e:a8:4d:90:
87:5b:df:4c:ae:5f:50:d6:3c:ff:9a:be:e9:85:3d:a8:df:83:
f5:1f:28:e5:90:0e:7b:80:0a:d3:4f:62:9b:98:a9:2f:18:13:
0a:95:9a:78:ec:f0:d0:c5:81:ca:73:32:82:92:54:61:f3:c6:
e0:52:0c:3c:33:1b:ba:3d:fb:f6:87:83:89:57:4f:61:39:3e:
40:93:cd:16:6c:fd:75:d6:38:d5:31:09:34:40:d8:5a:0c:ac:
fe:1f:80:1c:5c:25:73:dc:26:21:15:40:a6:80:bc:07:51:68:
c7:c3:d2:4a:df:13:06:6e:0a:06:aa:77:1b:82:0d:de:52:2a:
da:68:0e:62:6f:1e:cc:d0:bd:3a:56:2e:49:3e:5f:e6:ad:2c:
6a:6a:40:98:87:d1:93:e8:40:67:a8:1f:89:38:b6:ce:39:18:
9a:05:fe:fb:2d:c6:cd:6b:2e:1b:6d:2f:28:d6:eb:eb:3f:fe:
bb:7f:35:bb:ff:7c:de:ca:28:43:9e:75:37:4b:ad:48:9a:91:
dc:69:0d:b1:0d:c1:6a:fd:76:65:7b:3e:4c:a0:86:e5:4c:94:
bc:41:5f:8a:35:26:e8:ab:55:68:c0:33:27:48:79:2e:c1:20:
df:ef:b8:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:59:10 2025 by rpki-client