Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: bogVsGO7suCc6lKTg7eC0x0Vc/+eHNFHltKls4+AXC0=
Subject key identifier: 18:6E:F8:86:EA:22:21:28:65:82:FE:53:81:A1:39:78:C2:0B:5E:04
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 01974DE9ED1F477D0D1A207B93CF3AA95585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 157D
Signing time: Sun 08 Jun 2025 05:01:05 +0000
Manifest this update: Sun 08 Jun 2025 05:01:05 +0000
Manifest next update: Mon 09 Jun 2025 05:01:05 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: UAs97warHcTPNz20p2qDc8QvGh+Pu2wKFK2xRtX9QxU=)
2: uFIkyOKWSzQfZzP96vWM093yaBY.roa (hash: TWsqJU2I8/yV3h8FtJmMbNc3AlR1EJP1BU5hPExE0mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:ed:1f:47:7d:0d:1a:20:7b:93:cf:3a:a9:55:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Jun 8 05:01:05 2025 GMT
Not After : Jun 9 05:01:05 2025 GMT
Subject: CN=186ef886ea2221286582fe5381a13978c20b5e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a3:56:63:5b:27:e4:39:27:1b:fe:70:bc:19:
61:c3:b4:49:82:35:2e:c0:82:09:47:2e:3e:72:25:
2d:70:28:6d:9b:3b:18:b5:80:d3:c0:48:3e:71:80:
25:fb:3b:db:28:74:11:68:09:fa:b8:9f:0e:cd:a7:
a5:0f:23:b1:e4:de:2a:8b:e6:97:1f:52:20:64:cc:
7b:4f:08:51:88:a9:9d:98:7e:fb:e6:b2:eb:15:39:
be:41:f1:05:f5:f3:ff:2e:7e:66:59:ef:a5:c7:66:
1a:d8:85:90:24:fa:99:49:09:92:fd:27:c2:7f:39:
f6:4b:f7:dc:50:c3:90:80:01:0e:2e:29:22:8e:58:
f2:21:d8:40:70:c0:9b:a3:ba:dc:15:53:df:e6:1a:
6d:93:75:2e:61:d9:07:b9:5f:8e:51:e4:9e:1f:27:
d7:1d:27:d5:84:41:c3:df:a8:1c:da:9a:09:f7:10:
ea:bf:9c:e9:f8:33:92:c4:15:14:3c:42:74:87:63:
14:0e:a8:08:48:f3:5a:5f:19:f6:14:fc:2b:6f:9e:
62:8e:f6:9a:0c:17:19:42:ef:81:75:dc:3e:e7:12:
0d:db:47:98:3b:e9:f9:12:b8:eb:7d:b1:d4:d2:11:
3d:78:92:a4:f7:2d:d9:93:6e:2c:d6:0c:d4:9e:99:
b8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6E:F8:86:EA:22:21:28:65:82:FE:53:81:A1:39:78:C2:0B:5E:04
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:46:f5:5e:13:36:24:ad:17:ba:91:b3:df:f6:98:5d:d0:37:
2b:c6:1b:9d:e2:02:aa:f3:7f:4a:1c:f1:33:26:18:56:a8:fc:
04:6c:a8:66:3a:6a:11:17:25:a6:be:9b:58:51:40:40:2e:f1:
da:45:7b:7b:6e:4e:05:14:31:6d:17:b9:34:08:7c:54:6b:e1:
19:c8:61:c8:fd:84:f1:3b:4d:4d:79:b5:f9:43:f2:12:e2:3a:
35:ff:fc:b1:ac:7b:28:5f:2e:33:50:5a:c8:69:50:af:91:fa:
60:06:5d:00:90:1e:5b:65:63:5e:83:9b:5c:58:83:33:dc:8f:
26:58:63:69:67:8b:4d:36:66:1f:7f:75:5e:34:47:d7:f7:23:
34:59:8d:52:0e:e6:33:fa:07:13:cc:ea:e5:6c:3f:2d:a6:33:
12:72:ee:d6:3e:39:08:3a:3f:04:5c:cd:5a:7a:a2:7c:a5:a9:
77:63:df:0a:78:f3:48:a6:1d:db:90:bc:4f:38:ab:f1:71:18:
c7:fd:c4:30:45:15:b7:a8:cc:d6:e9:b9:cd:86:9d:2b:c1:61:
e6:8b:46:b1:f2:f5:17:56:44:2a:23:9b:f9:76:24:02:0d:f1:
c9:3b:d8:10:1b:f7:0b:21:98:c4:29:6c:b4:a7:92:e2:19:6a:
cf:92:27:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:51:37 2025 by rpki-client