Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
File: 0vONSutNAojbuFTR6uC9itP4Qfo.mft (raw, json)
Hash identifier: rRa9Djdp9V8d7GH6Ivk/2vOyvSGcFCvFA17b5NqQmm4=
Subject key identifier: BB:98:10:D8:9F:A9:3D:06:DD:26:E6:23:E7:69:9F:4B:53:47:BA:43
Authority key identifier: D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
Certificate issuer: /CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Certificate serial: 01974D453E8587BCAC9A784C6F2CA5933CD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 02:01:13 +0000
Manifest this update: Sun 08 Jun 2025 02:01:13 +0000
Manifest next update: Mon 09 Jun 2025 02:01:13 +0000
Files and hashes: 1: 0vONSutNAojbuFTR6uC9itP4Qfo.crl (hash: Ty442XvUQXjHMuRZN/72YxwH4s4OYEAQy9XjXYoSNNY=)
2: ERnL-2TcZrO4tJF-sDDaVNlMYnY.roa (hash: +H0qLZUs9MIqoA3GO45JQCdAhU27Z3D/QbaTtfRGmIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:45:3e:85:87:bc:ac:9a:78:4c:6f:2c:a5:93:3c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2f38d4aeb4d0288dbb854d1eae0bd8ad3f841fa
Validity
Not Before: Jun 8 02:01:13 2025 GMT
Not After : Jun 9 02:01:13 2025 GMT
Subject: CN=bb9810d89fa93d06dd26e623e7699f4b5347ba43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8d:7f:4f:e0:c1:2c:d7:6e:d0:4f:64:58:2d:
b9:c4:14:96:5c:05:09:fd:d8:de:bb:88:28:91:74:
b1:e6:a9:6c:dc:ab:6b:84:df:cd:e5:e0:de:3a:33:
41:1e:18:76:7d:d4:85:91:b6:0a:3d:dd:77:3e:7f:
29:f4:e3:5d:21:a6:b3:ac:e3:ba:d0:0c:42:17:dd:
d6:e2:57:51:b1:c1:c6:fc:cb:74:fe:89:2b:d9:a3:
b1:7a:2e:14:82:ff:57:9a:ee:f6:f9:4b:9c:6f:22:
88:a3:dc:2f:d0:35:b1:e6:74:6e:7a:8b:90:94:cb:
d5:ce:76:1c:cb:46:3f:4b:d5:e7:8e:8d:42:32:e0:
89:13:9f:19:ba:07:39:af:ec:4e:c3:6b:10:e3:aa:
6c:66:39:f5:7f:70:6f:e3:eb:f8:8d:65:35:fa:bf:
95:73:c7:a9:fc:71:4e:cd:06:f9:fb:92:08:a1:34:
63:4b:b6:1c:83:32:f9:63:fb:18:0d:ee:fb:5a:e7:
23:55:51:fd:47:02:45:7d:2d:de:9f:be:c8:33:86:
0f:ab:72:37:88:1e:cd:15:79:85:73:73:da:6b:db:
fd:e6:08:6f:f2:8a:e7:f2:50:57:0b:e8:c4:37:3e:
22:b7:86:a5:a5:c7:db:c0:54:b5:c1:c0:50:ea:2a:
4f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:98:10:D8:9F:A9:3D:06:DD:26:E6:23:E7:69:9F:4B:53:47:BA:43
X509v3 Authority Key Identifier:
keyid:D2:F3:8D:4A:EB:4D:02:88:DB:B8:54:D1:EA:E0:BD:8A:D3:F8:41:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0vONSutNAojbuFTR6uC9itP4Qfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/48ef27-5858-424b-add1-0f6455f05276/1/0vONSutNAojbuFTR6uC9itP4Qfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:28:1b:ad:0e:70:ae:32:f9:fd:f6:7a:23:72:3f:d2:b4:14:
f5:c4:bc:b6:27:9a:b6:d0:74:9d:74:3a:54:41:1d:ed:a4:47:
ed:bc:e8:4e:c2:a8:54:66:c2:9d:0e:50:53:48:f2:6d:2f:f4:
0a:f6:c9:f2:8c:a7:61:05:4c:f4:39:e1:3e:79:43:aa:a4:f3:
4c:51:c6:df:1d:ad:12:6c:19:ac:e9:ad:12:08:66:0a:d8:66:
6c:d2:39:b8:e4:02:5d:56:05:d4:7e:79:2f:d5:26:30:71:7b:
9c:25:d9:14:eb:0f:e8:03:3b:24:63:ae:cf:91:d9:6d:aa:fe:
75:36:94:07:7d:3c:18:22:cd:b5:56:a3:c8:cc:45:98:6c:b8:
99:6a:e6:ba:88:46:24:bd:14:31:94:fa:43:2c:7a:be:cc:b5:
64:f7:03:1f:91:81:3b:75:e6:8a:5b:e1:83:86:d7:08:75:4b:
8f:12:70:8c:2d:8f:09:60:f4:d1:35:02:6d:e3:b2:a9:65:15:
99:f3:ac:41:53:54:a8:17:71:3e:4c:67:db:e2:7c:30:67:35:
9f:89:32:b7:59:a7:c5:03:df:60:67:82:93:29:4a:51:26:c7:
5c:bc:d7:36:bc:b2:9f:62:a5:3f:46:7c:a7:89:79:1c:e1:bf:
f1:bd:f7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:28:53 2025 by rpki-client