Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json)
Hash identifier: BGm9hb5LWk95g2LtvC6sFp5vx0fHXwZepW/QyizlXkQ=
Subject key identifier: 02:F7:31:B7:09:6F:ED:23:D2:BE:C4:A5:1E:02:C7:47:6D:CB:A8:37
Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Certificate serial: 0197469EF30123B10AEB29E1380B3D054617
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
Manifest number: 056E
Signing time: Fri 06 Jun 2025 19:01:51 +0000
Manifest this update: Fri 06 Jun 2025 19:01:51 +0000
Manifest next update: Sat 07 Jun 2025 19:01:51 +0000
Files and hashes: 1: ZRVv1QEy1kLLZIQQzKY3v_cBQvM.roa (hash: dP4rVEZl+sj+rbeXk/M+iHEaNgIv2c4UoqRTeljUbU8=)
2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: 88X1Gc53M5/0zTrbSDP+r2ZT2iNeb6NN1tsFyBiLcGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:f3:01:23:b1:0a:eb:29:e1:38:0b:3d:05:46:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Validity
Not Before: Jun 6 19:01:51 2025 GMT
Not After : Jun 7 19:01:51 2025 GMT
Subject: CN=02f731b7096fed23d2bec4a51e02c7476dcba837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:19:18:94:58:68:4f:10:dc:62:e1:ea:5b:7e:
f9:ce:ce:41:15:38:f5:b9:1a:3e:52:96:db:e4:4a:
d8:dc:f5:6d:90:31:de:92:5f:53:c1:fe:83:b3:0a:
22:94:e9:89:64:8f:7a:04:78:d0:47:03:f0:1e:68:
e3:fc:48:c6:a1:a4:a4:e7:02:fd:d9:50:dd:5c:12:
db:e5:bd:1a:d5:2c:7b:88:4c:72:76:c3:73:0f:f8:
8c:8f:14:e1:a1:51:62:e7:b3:f5:cc:c7:db:9d:da:
14:f3:07:d9:67:eb:df:c0:0e:3e:56:a0:c7:e1:49:
53:4f:04:44:a7:05:f4:63:61:9a:cb:28:60:0c:a9:
c4:be:f2:17:5d:ca:2f:8f:ff:84:bf:b6:2d:e1:99:
be:09:d1:49:6d:db:aa:fa:b5:93:fc:18:3e:f3:74:
d8:1f:bf:d8:be:3b:01:1d:38:3e:3a:e0:c0:7b:b7:
bc:ce:46:e8:45:f9:e2:6e:a1:13:ad:c0:4b:4f:cb:
b0:c9:31:3b:30:40:0d:71:46:cb:3e:e5:7b:91:d6:
74:66:fc:6a:dd:77:95:43:f0:cb:6e:a3:4d:00:b6:
bc:47:65:b9:8f:a5:2a:3b:7a:38:11:33:51:74:88:
bb:a2:d7:ee:2e:12:dd:00:48:a6:8e:1f:50:97:1a:
03:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F7:31:B7:09:6F:ED:23:D2:BE:C4:A5:1E:02:C7:47:6D:CB:A8:37
X509v3 Authority Key Identifier:
keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:16:44:0e:9e:e0:ab:c9:69:92:25:85:07:c1:b8:47:9c:35:
cd:3c:ff:5a:c2:e1:4e:3c:ed:c9:37:c1:e1:c8:d0:5f:ca:99:
f5:db:2d:b0:26:55:d6:37:76:a5:65:6d:ee:90:16:20:0f:48:
05:88:d3:23:3c:09:96:af:53:c3:b2:73:6f:17:53:3b:08:a4:
c9:47:ad:8a:8e:62:d3:8f:e2:cb:ae:77:7d:10:cd:da:be:e5:
86:e2:8f:c1:df:de:59:c3:98:c9:b3:e4:5a:65:ce:df:d6:64:
a9:10:51:60:f5:df:4a:7a:c1:d8:61:7b:87:dd:74:48:31:88:
ce:40:4a:32:88:fc:a4:74:01:12:0a:85:c7:c0:e0:12:34:50:
21:4e:37:18:b4:1e:f2:e4:a8:2b:92:5a:5d:99:47:9e:c4:bf:
8a:d2:f6:c1:75:ae:9a:0b:a7:73:5b:83:81:ed:91:5d:5c:fb:
5d:9c:02:e5:a3:10:2a:95:4d:dd:65:bf:40:ca:23:2e:0b:73:
3d:b7:f1:89:85:0b:ee:e5:3a:39:aa:37:60:82:0d:b0:92:d0:
4f:90:94:cb:4c:0a:19:be:e4:59:78:c7:c4:de:2e:fe:ae:5a:
4f:fd:b8:41:8e:1b:69:15:17:24:7f:8f:4c:60:b2:da:e4:f9:
80:df:71:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:50:19 2025 by rpki-client