Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
File: 0dMLd0soDDfhxe1dimnLmvZIsGU.mft (raw, json)
Hash identifier: Jxhq/kX6e6ihHLFaAVzpSL25wLOOT30isEQLwjUGJdo=
Subject key identifier: A0:B5:58:56:60:25:83:9F:1D:DC:7A:92:77:DD:BB:4E:5D:6C:FF:C8
Authority key identifier: D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
Certificate issuer: /CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Certificate serial: 01974C696E052584368C5A88129EC00C467D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
Manifest number: 09EB
Signing time: Sat 07 Jun 2025 22:01:07 +0000
Manifest this update: Sat 07 Jun 2025 22:01:07 +0000
Manifest next update: Sun 08 Jun 2025 22:01:07 +0000
Files and hashes: 1: 0dMLd0soDDfhxe1dimnLmvZIsGU.crl (hash: /FLCM7+kQUB8wyVONPnb5MrvjmqvPk3Twz3+AZ59f5Y=)
2: Z6jijp-NqGecwIu65j-qEMAm0nw.roa (hash: 19TQbomnm0YTugnf3c9Z0fKykpuT1EtKWHuZ0GsZG+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:6e:05:25:84:36:8c:5a:88:12:9e:c0:0c:46:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d30b774b280c37e1c5ed5d8a69cb9af648b065
Validity
Not Before: Jun 7 22:01:07 2025 GMT
Not After : Jun 8 22:01:07 2025 GMT
Subject: CN=a0b558566025839f1ddc7a9277ddbb4e5d6cffc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e5:5d:41:c0:99:0b:27:fc:6f:eb:94:30:c7:
80:ea:3d:bf:39:32:5a:50:c6:ba:2a:94:97:61:c4:
6d:0d:5f:97:9b:4d:2f:81:e5:92:ee:c3:5e:a5:64:
02:9c:47:c3:8d:86:c7:1f:26:7e:fa:c3:e0:80:25:
60:1a:dd:5f:a6:c4:2c:14:bc:95:07:61:1f:9b:c5:
c6:b3:6f:05:fd:4e:14:c4:e8:4c:d8:c9:39:e1:fc:
bb:58:38:06:b6:4d:e7:ad:ed:a5:f8:f5:78:e0:a7:
45:14:fd:86:4a:cb:09:90:ed:fd:83:d2:28:f3:b9:
eb:9d:3a:41:7a:36:05:58:5f:96:28:2e:a7:72:3b:
8c:69:fd:8d:ab:8d:93:b0:43:78:c5:d1:71:83:fb:
d1:1c:29:8d:be:48:0a:8e:d2:8d:4a:19:f2:21:7c:
76:bc:85:a7:b6:b1:62:da:e8:d6:3c:bf:26:8d:16:
37:b1:a9:62:31:92:bd:c0:a6:54:24:ad:e3:27:e2:
f1:40:cf:59:c0:b3:41:da:36:b3:3c:43:f4:59:28:
44:df:e8:59:67:38:4a:e1:ac:0c:55:c0:82:9d:df:
bc:ca:b0:da:06:f0:6a:99:54:7b:7e:3c:6e:b7:f5:
5b:2d:c9:fd:2b:f2:01:a9:82:ff:c5:44:52:02:0a:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B5:58:56:60:25:83:9F:1D:DC:7A:92:77:DD:BB:4E:5D:6C:FF:C8
X509v3 Authority Key Identifier:
keyid:D1:D3:0B:77:4B:28:0C:37:E1:C5:ED:5D:8A:69:CB:9A:F6:48:B0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dMLd0soDDfhxe1dimnLmvZIsGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b069f9-f146-4247-bacc-be6304c252c7/1/0dMLd0soDDfhxe1dimnLmvZIsGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:d1:b4:c2:f4:2e:98:91:e5:16:32:0a:f3:29:39:0c:c6:54:
40:11:b2:dd:e1:72:3d:ed:ae:e0:24:45:7d:15:62:49:a3:b7:
04:3c:79:15:ad:21:05:67:1f:99:aa:8d:f2:e0:5c:55:c2:7e:
0f:e2:ab:25:c0:9c:6b:a1:32:60:92:63:24:0b:23:c7:44:17:
62:26:e9:1d:4c:a7:68:95:70:25:12:38:2a:36:86:e3:79:3d:
0b:ef:e8:86:a3:9a:8f:64:24:3b:86:86:f9:56:b7:a8:aa:42:
86:f0:88:6b:7b:91:63:40:f3:66:42:be:e1:ff:84:f6:0e:e9:
2c:2d:6c:5e:41:d4:db:6c:9e:c0:4f:84:12:e1:4d:36:38:de:
74:35:f7:67:e8:d8:18:67:51:fc:e9:2b:1f:91:99:8d:90:8a:
29:3e:c6:2e:05:1d:95:7a:9c:eb:13:99:67:49:a6:4e:78:2a:
21:e9:b6:28:5b:1f:f9:24:01:03:1b:25:49:e7:5f:eb:32:42:
5f:f9:c7:1e:3a:7f:91:bc:e8:d2:73:93:fb:86:f7:52:91:51:
77:d0:25:9a:1e:e8:df:e6:d5:78:ee:0a:6a:30:19:4c:e3:9b:
15:1c:8a:50:c3:60:11:04:25:3f:8c:0d:37:ed:e2:19:a6:4b:
8c:81:cd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:39:52 2025 by rpki-client