Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: 7YeqkUNqKm5FooFFqtWv4LOAVeXcul0B+Fxz4VUHNoU=
Subject key identifier: E4:5F:3B:65:6D:7F:A8:0B:FC:1E:B5:F8:88:76:08:6F:11:6D:89:18
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 01974EC5962A760868C98A69277975C2F654
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 01CD
Signing time: Sun 08 Jun 2025 09:01:01 +0000
Manifest this update: Sun 08 Jun 2025 09:01:01 +0000
Manifest next update: Mon 09 Jun 2025 09:01:01 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: kP5ulqCW47QIdt8tLhY5Aywq8CNkkAXXp8Ghsx05SQM=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:96:2a:76:08:68:c9:8a:69:27:79:75:c2:f6:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Jun 8 09:01:01 2025 GMT
Not After : Jun 9 09:01:01 2025 GMT
Subject: CN=e45f3b656d7fa80bfc1eb5f88876086f116d8918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d2:31:7b:a4:6e:0c:80:3b:c3:10:3c:3d:92:
ed:a4:5c:09:65:fe:e7:b6:44:e3:58:01:10:a1:16:
75:ef:21:82:c6:44:ae:8a:1c:e3:37:5d:9e:5e:d9:
f6:b1:65:05:94:2e:08:8b:dd:29:fd:6f:3f:32:89:
c5:a0:03:9e:5c:68:27:8d:c3:0b:90:9c:05:47:e2:
70:d1:eb:57:a4:77:53:3f:06:20:d7:c2:bf:fd:6f:
95:8c:0f:66:b6:59:98:a4:84:73:bb:e1:3e:81:cf:
ba:1b:e0:37:26:09:e3:a9:02:3e:b6:9c:46:c7:64:
6d:9a:f3:dd:85:ef:f2:02:12:e2:e1:e5:c9:4c:7b:
99:09:ca:3c:3f:62:2e:0d:af:b4:3c:f7:fe:a8:85:
ed:8a:1e:96:6e:29:ca:ce:9d:2e:4d:de:61:7c:41:
e5:8c:52:38:df:18:3b:b0:11:63:3f:67:76:43:af:
ec:a2:a7:f7:af:11:a0:72:42:22:66:a2:68:de:b9:
b2:1c:96:e5:10:e8:23:b8:79:85:d6:23:3c:c4:7a:
5c:e3:ed:63:02:7f:be:d1:6c:ab:5c:2a:79:60:5d:
65:e7:c6:24:d6:47:ba:32:35:28:5d:54:a8:ec:33:
b8:29:c9:2b:04:ab:e0:8c:e8:53:da:ca:bf:f5:7d:
7f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5F:3B:65:6D:7F:A8:0B:FC:1E:B5:F8:88:76:08:6F:11:6D:89:18
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:9f:ca:03:71:a6:73:1d:b6:b5:23:fc:ec:ab:3a:45:ab:bc:
df:40:0f:0f:81:ea:bc:19:1c:96:3b:f9:e0:20:d6:df:a6:47:
d9:09:c2:12:e8:e5:da:5e:d9:67:c1:8f:71:bb:18:cc:f1:83:
1d:57:58:53:58:57:48:34:6e:92:ca:c7:45:d7:bc:47:4d:e6:
c9:72:cb:be:d7:27:47:59:de:ff:db:8e:7b:83:23:58:98:59:
08:fe:36:6b:e9:ed:13:c7:1c:da:da:c8:43:96:a7:f4:2f:87:
88:b9:b7:de:1c:66:c0:a5:6b:46:58:14:df:d8:51:d8:57:d2:
64:9b:b7:18:39:06:2f:18:24:df:78:e9:b7:21:e0:a6:78:76:
3d:a9:9d:94:da:3d:4f:f9:51:0a:6f:bd:ff:4b:a9:cd:99:d8:
86:9c:69:2a:0f:38:6d:b0:9b:cb:25:b0:f7:f6:d4:23:46:11:
01:00:fb:c5:e0:f1:d8:52:90:90:9a:c4:82:2f:5a:ea:e8:8e:
3e:3a:cf:3a:0e:df:7a:53:8a:2a:f4:d3:a0:65:4d:af:92:be:
51:f0:47:ba:71:33:91:79:7b:f8:a5:c0:9e:81:d8:5e:35:66:
07:75:7a:0e:66:e4:05:d4:66:fd:d0:1f:b7:52:83:f3:54:b0:
99:32:9a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:29:50 2025 by rpki-client