Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: zmr/twi/Iu/+MWb1XddHE+tSf+UHzw8D+nk9oG1AQpo=
Subject key identifier: BC:46:CE:18:C8:0F:DF:91:08:AF:19:DA:56:22:8E:87:C2:01:86:2D
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 01974C9FAE984D1685CE95A1FFFC9CEEE5BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 01ED
Signing time: Sat 07 Jun 2025 23:00:22 +0000
Manifest this update: Sat 07 Jun 2025 23:00:22 +0000
Manifest next update: Sun 08 Jun 2025 23:00:22 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: Eniht4XfB2wLy+lqpuZlCuPzmJrfGBSGo2x/QO8ssLI=)
2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:ae:98:4d:16:85:ce:95:a1:ff:fc:9c:ee:e5:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Jun 7 23:00:22 2025 GMT
Not After : Jun 8 23:00:22 2025 GMT
Subject: CN=bc46ce18c80fdf9108af19da56228e87c201862d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:74:37:d3:32:a6:c4:44:f2:0d:c6:94:d9:d5:
9e:99:46:a2:25:61:1b:cf:64:28:bb:9e:23:ec:ce:
5d:87:e1:50:77:7d:ee:27:bf:a4:5f:2c:09:97:0e:
ca:80:10:d6:66:a2:e9:25:37:af:9e:a5:ba:4f:00:
b9:5e:f3:f1:a8:d9:96:df:4e:99:ef:8c:09:b8:0e:
22:74:96:4a:f1:bb:c6:a0:9b:c1:71:95:9d:f8:09:
e6:f7:20:b2:e7:a7:ca:13:cc:c4:92:45:a5:0a:a2:
eb:9c:95:2d:e3:81:4b:e9:79:85:a7:ca:31:6a:74:
23:c4:99:ca:13:38:7b:12:f8:2f:e1:e5:e3:e8:19:
95:d2:19:b5:30:a0:a6:c5:5d:a8:5e:33:86:8a:ff:
43:25:af:e6:3c:06:6d:2f:c0:67:c3:d9:d8:77:e9:
aa:5f:cd:47:ac:a8:f7:4c:ca:dd:8d:63:58:0d:be:
7d:3c:9c:d9:d4:af:66:49:a3:2b:37:56:b5:80:7c:
4a:d6:a2:d1:76:98:b8:74:8d:53:34:0f:b8:35:aa:
0d:73:98:8b:7b:11:b7:a1:09:ba:43:9f:ff:60:f6:
a3:9c:8f:3b:1f:02:15:d9:e1:1a:45:9b:71:2b:a5:
fd:38:5c:94:91:b5:54:73:f8:f6:5e:d3:a1:54:b0:
b3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:46:CE:18:C8:0F:DF:91:08:AF:19:DA:56:22:8E:87:C2:01:86:2D
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:2e:fa:a4:89:f1:6b:b6:7a:ad:dd:ff:4e:27:97:37:31:7e:
60:34:d7:15:27:99:81:6e:cb:84:58:9f:c1:fd:83:37:10:24:
82:94:9e:f4:d7:8f:5a:20:d3:56:f3:eb:30:43:2f:7c:40:ce:
e7:77:75:92:42:a5:08:41:46:b0:97:34:28:ea:95:73:44:c7:
4b:d4:41:a8:51:03:2d:2b:6a:c8:b0:a7:7c:de:57:ca:4c:e1:
c0:77:de:55:2e:fa:35:1d:98:aa:87:db:9e:19:78:8e:d1:fa:
4b:92:4d:e0:1a:58:9b:99:56:4e:0c:d3:45:8f:60:b5:2d:e0:
c3:51:0b:20:8f:86:25:ba:34:cb:14:30:85:b3:01:b4:b7:77:
53:d4:56:65:c8:3d:d2:7a:5e:58:11:f2:2e:19:bc:55:00:99:
90:d7:0f:3e:74:1c:64:9b:b5:a6:ad:b1:78:33:92:1b:39:ad:
c5:4b:10:b5:b8:46:63:8d:c2:b8:97:27:49:3a:85:7d:8b:a4:
6d:b9:26:e5:6d:b4:27:82:27:07:66:4a:a5:87:43:68:92:19:
0a:98:88:1a:b0:31:02:c1:a1:ba:cb:bd:dd:93:f4:f3:47:a7:
a3:ac:39:8b:12:51:ee:76:3c:88:bf:78:0b:b1:b1:75:6c:a7:
d8:1f:7d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:20:40 2025 by rpki-client