Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
File: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft (raw, json)
Hash identifier: 5WsJG/M5weX26asK3aXj1IcIs9BjFkStwfrHHoV9+UY=
Subject key identifier: 42:1B:FD:84:B4:1F:61:04:74:78:B7:A8:BF:09:CE:E9:DE:2B:87:15
Authority key identifier: D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8
Certificate issuer: /CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8
Certificate serial: 019749D599510B088AD8E55F2DD5AEF48D2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 10:00:24 +0000
Manifest this update: Sat 07 Jun 2025 10:00:24 +0000
Manifest next update: Sun 08 Jun 2025 10:00:24 +0000
Files and hashes: 1: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl (hash: LrM321p8j8rT4PXrl8rA/6xO7pHDhJpG6cgklty0Rpk=)
2: OCcJDhB4OQ1X-MIeEHbwYqPSbys.roa (hash: bYb4Alf329H7/hgxf3+yXtwxwALKiQ1xJi7nvHZupTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:99:51:0b:08:8a:d8:e5:5f:2d:d5:ae:f4:8d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8
Validity
Not Before: Jun 7 10:00:24 2025 GMT
Not After : Jun 8 10:00:24 2025 GMT
Subject: CN=421bfd84b41f61047478b7a8bf09cee9de2b8715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2e:f4:8b:9a:fe:00:96:90:a2:08:45:10:0a:
5d:53:0d:d6:e9:07:62:71:3b:77:0d:3b:79:07:68:
dc:6f:69:2c:57:b9:d9:3f:d6:56:6f:27:72:fc:58:
f2:e9:d2:86:96:9c:8e:d4:0b:34:3b:1f:56:2e:17:
e8:65:ac:bd:cc:42:22:97:4e:b8:66:90:60:18:3c:
03:dd:ea:8d:8f:ba:ae:1f:b4:e6:35:9a:b6:e0:85:
4c:66:08:1f:f6:f5:fa:a5:55:0a:96:15:4a:14:96:
1b:ae:ed:bb:2f:95:82:91:c8:7a:ed:96:61:e5:76:
69:fa:07:cb:8b:3b:a1:32:b0:8b:70:60:73:32:c6:
16:33:75:35:ba:cd:57:0c:c4:49:c4:85:7f:a8:9d:
6f:de:9a:b2:cc:6e:fb:25:16:19:2e:9c:53:39:1d:
fd:fa:90:c7:0f:33:cb:04:dc:2a:27:96:82:dc:08:
3a:64:a4:b2:da:5e:2c:b7:54:95:6c:24:79:3f:c1:
ce:34:60:d5:a3:f2:d0:44:dc:d6:59:75:65:d3:f0:
a4:56:ec:d7:ff:03:e9:07:79:1f:12:4a:2c:bc:dc:
2b:c5:d9:24:41:25:0c:5a:7d:99:ae:63:15:48:dc:
71:1b:cc:0b:c5:80:2f:52:e6:87:ed:b0:9f:24:e6:
3b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1B:FD:84:B4:1F:61:04:74:78:B7:A8:BF:09:CE:E9:DE:2B:87:15
X509v3 Authority Key Identifier:
keyid:D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d0:0a:44:08:ce:aa:d7:2e:d0:b3:1f:44:ac:cd:87:c9:f6:
12:f8:2e:d6:f1:1a:68:9b:70:3f:7d:68:41:b6:1e:90:b4:03:
df:91:20:18:69:6c:f0:4c:5d:ee:88:a0:ef:3c:f0:aa:69:2f:
c5:55:d6:1e:5b:66:88:09:0b:d8:48:8e:c8:4c:25:bf:5a:24:
95:97:1d:de:eb:ac:68:43:28:ed:55:5d:99:d5:76:3e:a0:5a:
e3:8b:1f:6c:e6:dc:33:bf:1a:de:7d:b3:6b:b8:aa:81:d0:91:
b8:45:74:38:16:9e:6e:54:e0:41:c3:a7:26:74:00:7b:1a:41:
0e:2f:16:f5:5a:3e:65:80:9e:2b:dc:82:d6:28:68:cd:3f:c0:
36:be:8c:1e:2a:23:12:21:e1:7d:47:f6:58:b9:b3:a8:61:98:
4c:1a:87:ba:74:df:57:3b:6d:8f:93:67:2c:84:fc:11:a7:d3:
1f:d6:1a:47:55:f1:a4:c8:f8:9a:e3:8a:aa:30:e3:05:d1:b5:
3f:ee:74:18:b2:90:da:1a:12:bc:3e:b6:1e:f1:3c:16:0f:66:
80:b5:64:75:0f:ef:72:99:18:73:3a:b6:65:26:e4:80:ed:50:
1a:60:87:67:fc:fe:00:ec:0d:e4:6b:c0:26:39:25:59:44:99:
81:ac:c1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:24:34 2025 by rpki-client