Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: 97xPo8zK37nwGvMkrtfXqc/4Wj1xyek2R1aSGim9HcA=
Subject key identifier: 14:41:6A:3F:64:93:DF:06:3D:6E:22:D0:56:46:64:CB:13:F6:B2:AA
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 019748C34BEAF8B94D022392375659E573A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 12C0
Signing time: Sat 07 Jun 2025 05:00:47 +0000
Manifest this update: Sat 07 Jun 2025 05:00:47 +0000
Manifest next update: Sun 08 Jun 2025 05:00:47 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: 7T/Cjy9oceqBdAxj/trCGbvzsCWwSe6DcT5CYBLmAKs=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:4b:ea:f8:b9:4d:02:23:92:37:56:59:e5:73:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Jun 7 05:00:47 2025 GMT
Not After : Jun 8 05:00:47 2025 GMT
Subject: CN=14416a3f6493df063d6e22d0564664cb13f6b2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:88:4b:4a:df:6a:77:b7:11:83:b5:f5:af:6e:
dc:26:90:00:d8:d8:d1:a7:13:d4:60:0e:3e:e7:45:
13:99:60:87:f4:65:6c:5e:59:bc:8d:ae:28:7a:96:
09:89:24:6d:86:92:2c:2c:1b:79:8a:9e:1e:03:f7:
a0:d8:f7:ed:0a:58:2a:e4:a7:f2:c9:81:f4:74:2d:
38:ee:60:92:83:fb:69:da:86:84:cb:89:74:58:bd:
88:35:18:5b:de:cf:58:a8:36:ca:69:73:06:1d:53:
29:3a:86:cd:96:a9:e1:98:61:af:76:2a:53:ed:a5:
fb:82:df:f0:6f:8b:23:b7:b3:91:d5:77:33:c9:56:
5e:0a:7d:44:7e:0d:b3:32:ef:57:85:ac:08:35:fb:
11:16:2a:97:86:73:a2:da:cf:e0:18:36:81:d1:f4:
24:d5:79:e5:60:2d:d8:1f:29:6f:8c:f1:b4:5f:39:
0e:33:62:65:c8:74:2e:82:52:84:55:b0:23:0b:27:
d6:15:58:1b:f8:b9:90:25:88:0c:72:08:4d:bb:93:
2f:99:ac:d4:6f:16:92:cf:54:90:d1:b8:81:4d:29:
dc:7e:f2:a9:12:49:b1:c0:5f:ca:a1:e3:64:ae:5c:
ee:45:c7:10:51:5c:b0:6c:33:88:a5:93:a5:a3:ee:
f8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:41:6A:3F:64:93:DF:06:3D:6E:22:D0:56:46:64:CB:13:F6:B2:AA
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:42:16:31:db:c0:d2:f0:2c:7b:41:88:fa:1d:f0:4b:5c:95:
ef:56:48:df:db:f7:df:0e:04:5a:fd:e3:30:52:df:50:ff:f2:
3e:86:22:31:9a:cb:e6:1f:c6:83:fb:21:4b:34:67:82:1b:e4:
27:c4:d1:d3:05:40:c1:e6:a9:e7:3b:83:98:61:19:54:f1:1f:
0f:b6:f5:87:21:d6:bb:58:ce:0d:7b:cc:96:77:f7:58:5f:03:
38:0e:78:4a:66:06:89:51:68:05:e5:e4:53:cd:8c:9c:df:ec:
72:e3:df:2d:cc:33:7b:5d:22:05:a6:95:ed:4a:bc:9f:6f:f6:
70:92:c1:c9:d2:31:03:b8:7a:1b:0f:a5:84:dd:05:38:73:b2:
c8:57:8b:22:93:24:e8:fc:16:60:68:7a:83:68:ad:2c:76:9b:
98:f9:c0:e3:0e:02:44:6b:bf:9e:21:2f:b0:94:30:d9:19:a3:
25:1a:32:4c:b6:65:d8:52:76:2c:11:7e:b2:b5:a7:a9:18:31:
37:8d:72:bf:e0:58:88:78:11:ff:d9:83:b3:6c:b3:f3:06:a8:
a6:73:ac:cb:3d:b5:3a:f5:78:f4:e0:78:cd:1c:c6:fa:60:f4:
49:68:cb:1d:d6:2c:b4:76:4a:74:a0:99:1b:5b:bc:44:c1:c7:
5d:72:38:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:14:08 2025 by rpki-client