Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: gSAc4XMfGcFvSkzO20RxbCQkIwvW2JIEj4nvoT7FK2Y=
Subject key identifier: 73:E7:B6:42:97:2B:4D:7E:D0:52:E4:5C:3C:68:22:15:CE:DB:AF:87
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 0197C9F078B4020B97D48E9DB673C95258A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 0A16
Signing time: Wed 02 Jul 2025 07:01:09 +0000
Manifest this update: Wed 02 Jul 2025 07:01:09 +0000
Manifest next update: Thu 03 Jul 2025 07:01:09 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: rjO5+7NNky04BS1GgcfaqP06tzBKFQZZqviMUThvegI=)
2: empYwKrx4ABahFY0k2CZXZft5Pg.roa (hash: lQyRrUFjZRPH9Yib0Mwz+z/3ALSf5u0tcJRbBn2hjqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f0:78:b4:02:0b:97:d4:8e:9d:b6:73:c9:52:58:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: Jul 2 07:01:09 2025 GMT
Not After : Jul 3 07:01:09 2025 GMT
Subject: CN=73e7b642972b4d7ed052e45c3c682215cedbaf87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4b:6b:4c:fd:0b:5e:1b:4a:89:0e:e0:19:ce:
a9:f9:f8:e5:72:e6:84:e0:2b:ec:b5:6b:78:67:d0:
91:21:58:51:86:31:da:39:21:bc:79:c8:ad:04:ae:
ed:23:cd:4d:02:57:c1:5a:ef:f1:33:23:a7:a8:90:
a1:bc:4d:58:3a:43:81:25:81:94:0c:6e:2c:b6:60:
54:f5:81:82:c3:12:1f:42:a5:65:f9:19:d2:f2:36:
f8:e3:4d:23:c8:8a:51:93:7c:77:b4:b0:e1:07:ec:
96:89:ed:1e:28:f7:9f:4d:aa:30:b7:b3:0b:ba:5a:
b0:6a:92:7d:62:31:af:49:4f:f1:a0:ca:dd:6c:1a:
22:1e:02:24:4f:4d:1d:8b:69:f6:18:03:6a:bb:6b:
77:64:bb:98:b2:bf:f5:c7:7d:b7:ba:0e:8d:31:b5:
78:00:ac:63:0d:f7:d4:61:fe:4f:7a:7f:0e:ad:5d:
3d:c7:bb:9f:23:36:d0:34:2f:af:f1:b8:8f:8d:1b:
bb:47:24:bd:f0:97:31:65:3c:66:2c:78:7b:08:ab:
e5:ad:30:8b:6f:6a:c9:6f:d3:e1:43:6d:69:a0:2a:
d5:a4:65:0f:b0:89:fc:9c:79:ed:67:1a:21:98:ef:
8a:82:5c:f8:7b:60:33:cd:0c:1a:0d:f7:e0:8c:d2:
6d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E7:B6:42:97:2B:4D:7E:D0:52:E4:5C:3C:68:22:15:CE:DB:AF:87
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:db:00:c5:d0:39:71:00:2b:e6:3c:04:0c:8a:28:f6:ad:36:
05:a4:12:98:31:c7:98:3b:68:cc:1e:21:b5:11:0b:0c:3b:f1:
45:89:9d:c7:0d:68:ff:d1:fe:7a:c5:3a:9e:ac:43:be:d8:5e:
61:02:b7:ef:9b:8e:7b:1a:e2:cc:8c:e2:53:37:e3:31:54:fd:
e0:5f:28:85:f8:d8:d5:00:dd:6e:f9:f2:6e:10:eb:01:29:6c:
1f:31:8f:95:fd:4a:09:fb:10:65:db:8f:2e:62:28:02:78:ee:
f9:9f:69:fc:21:6b:12:a9:ef:e5:fa:80:28:92:dc:05:38:3d:
06:83:41:f7:86:e7:1e:ca:89:56:f0:3c:f6:aa:0a:81:86:da:
f2:54:39:4d:61:4a:d1:b2:e2:55:ec:1b:6a:ee:9a:5f:ee:1e:
37:44:65:54:bc:02:e8:bc:fb:63:21:30:0d:47:0f:2f:ba:55:
6f:c6:b4:5d:19:34:a5:4f:9d:bf:3e:de:ed:5d:21:dd:b1:ec:
4e:a4:92:73:ce:6d:53:33:19:ba:f6:a2:34:11:50:3a:a8:38:
64:55:21:37:fc:27:e0:37:70:91:eb:9a:e9:97:07:7e:33:3c:
b2:5b:cb:0e:bd:48:df:37:99:2a:38:a3:9a:31:be:ea:d9:15:
55:17:87:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:21:14 2025 by rpki-client