Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json)
Hash identifier: ETNx8F/ikdogkY9CJlhL34O7ZvfNNDdDAmzAQNBylPs=
Subject key identifier: CA:D0:A7:08:58:DC:26:03:55:39:89:49:1E:05:9C:05:B4:84:C6:BF
Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Certificate serial: 01974A43E4C316A5E0E55BCAAD4420DC13F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
Manifest number: 0235
Signing time: Sat 07 Jun 2025 12:00:52 +0000
Manifest this update: Sat 07 Jun 2025 12:00:52 +0000
Manifest next update: Sun 08 Jun 2025 12:00:52 +0000
Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: Vr5iwx84TYGDA1nhJA/rzEmORL/BFblD7uyuOUh0p6w=)
2: LkbZ9NbuqV8kVwW0R6t_W7E36SY.roa (hash: OFwtZ8nR+nHbeTcy4UO/g/3elRZlu1GMxchq0zT/W/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:e4:c3:16:a5:e0:e5:5b:ca:ad:44:20:dc:13:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Validity
Not Before: Jun 7 12:00:52 2025 GMT
Not After : Jun 8 12:00:52 2025 GMT
Subject: CN=cad0a70858dc2603553989491e059c05b484c6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:95:4a:5b:95:54:b9:d3:de:54:43:0e:67:
b2:51:42:57:31:dc:58:f8:98:c2:a3:54:9c:90:4b:
41:f1:4d:7b:27:0f:dd:13:44:80:58:88:f7:3e:68:
82:13:56:b1:f9:ef:ed:fd:82:8d:f1:ed:d1:96:91:
7c:a9:d6:fc:77:c2:c0:a3:13:e3:08:d7:09:6b:e3:
11:c4:a3:56:bb:d0:e1:bc:e6:ab:a1:4e:52:ad:3f:
92:7b:c3:56:38:ad:40:ad:49:63:00:6c:73:e2:3a:
7c:4b:9c:d1:88:5f:89:25:e1:4d:5d:b1:6c:84:0a:
8e:5f:1f:b0:d0:49:4e:9a:e2:c1:2a:e4:d2:09:7d:
21:27:7c:dd:00:cb:d7:59:ee:01:c3:60:4d:aa:f7:
26:24:b5:a4:20:dd:a3:78:79:e2:a7:99:1a:47:db:
ef:55:24:f1:39:b9:00:32:ff:42:2f:4f:5b:b1:cd:
ee:a5:ea:fb:e0:e2:f9:b7:94:f4:39:8b:f0:e6:58:
b3:4c:b0:d7:77:c3:7f:8a:f6:e7:68:20:f6:67:6f:
a2:b0:ea:f2:b6:ec:54:44:92:b7:ba:cf:18:5a:fa:
26:21:39:3b:6b:b6:9e:27:21:0a:4a:2e:f1:ba:c9:
04:bb:b8:ef:67:04:23:d0:ec:1d:58:e8:fd:2b:38:
ee:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D0:A7:08:58:DC:26:03:55:39:89:49:1E:05:9C:05:B4:84:C6:BF
X509v3 Authority Key Identifier:
keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:19:bd:72:3f:f0:8d:46:23:91:73:ee:a6:0b:8a:f9:ad:97:
6f:e7:a6:b1:5f:0a:c1:ab:38:ea:f1:2a:82:82:52:31:7b:d8:
40:aa:43:17:55:7f:a7:e2:e4:a2:59:ec:25:cc:cd:6c:4c:e5:
3a:c4:f3:26:f7:16:fb:ac:18:57:07:4e:bb:55:e5:4f:c0:0f:
51:ef:db:80:18:9d:2d:31:17:8c:35:3c:45:80:b4:2b:bd:b1:
7d:32:5b:6b:81:38:11:d1:83:47:ef:e4:f8:ea:23:b8:8c:4c:
52:2b:f1:2d:6f:a0:10:0c:41:7f:8b:c5:b1:29:bd:97:1d:43:
2d:5d:66:5f:f3:64:bb:2a:66:90:cb:40:51:e8:e9:23:20:f4:
dc:65:4c:3c:19:9c:9f:81:34:99:d4:0c:b1:c5:fc:cd:3f:c4:
1e:1d:d7:39:63:0a:82:f8:fe:dd:82:f6:00:1d:33:86:00:ee:
78:b6:6a:65:8a:15:03:79:43:01:93:9c:aa:2c:21:f5:23:c1:
7c:43:6d:b5:d4:24:d8:ed:53:0d:66:1f:b9:d2:4f:53:e9:c9:
f3:a6:e0:a5:68:63:22:40:54:ad:bb:b7:d4:65:22:29:75:0d:
66:11:34:6e:4b:31:cf:45:c5:83:4a:38:58:a2:d5:7a:ac:49:
b7:e2:06:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:06:42 2025 by rpki-client