Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json)
Hash identifier: EBOWkoNF06Ijg51p4ywOkOHIUWK0gWwj7H6frf0mjd4=
Subject key identifier: D6:37:17:15:85:4B:87:A5:05:D9:7F:86:4A:EE:CE:4D:8C:FE:F3:04
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 0197D775E4E0AF62CAD9EF87C38C2320B338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
Manifest number: 1248
Signing time: Fri 04 Jul 2025 22:01:57 +0000
Manifest this update: Fri 04 Jul 2025 22:01:57 +0000
Manifest next update: Sat 05 Jul 2025 22:01:57 +0000
Files and hashes: 1: AbAz97rI6RXbeaGg0ju1UGvv4xM.roa (hash: 6SJubAUNhK59Bg5EEa587Nx4giyrDXi2DFXXzhtFznQ=)
2: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: N88fn/tJexUKxxzBmsp80Q0PrP2y4fTgcA63dCIcoAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 22:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d7:75:e4:e0:af:62:ca:d9:ef:87:c3:8c:23:20:b3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Jul 4 22:01:57 2025 GMT
Not After : Jul 5 22:01:57 2025 GMT
Subject: CN=d6371715854b87a505d97f864aeece4d8cfef304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7f:1c:69:f4:5a:83:57:88:bd:e8:42:8b:d5:
29:72:dc:98:45:3f:94:ef:10:b3:22:a7:27:d2:0b:
16:51:ff:24:bb:d4:b1:76:3e:6c:b8:21:60:2f:8f:
4b:4d:4c:73:88:5f:af:b4:da:12:e1:62:ef:8f:08:
b0:0c:06:6b:16:f1:64:40:f0:c6:16:f8:86:78:9d:
18:9a:b9:12:2a:13:4f:83:fc:b2:88:5e:b5:bb:f3:
df:f9:62:94:8f:3c:07:d6:c6:84:b3:2f:31:2e:2e:
fd:2d:13:ea:f0:10:a4:9d:d6:77:5e:b6:d0:79:07:
27:b9:d8:40:6a:3e:5c:d0:ff:43:46:d1:c9:fd:9c:
76:96:b7:f2:bf:a8:a4:03:b7:c0:e6:ba:93:cc:75:
92:15:06:c8:00:2c:57:a6:2c:4d:65:8b:d9:23:fc:
82:b7:4c:49:f9:ff:5a:86:e5:02:63:f0:a3:74:81:
15:62:13:da:85:06:99:d8:8c:4a:5c:b1:79:d4:4b:
70:50:31:5c:92:60:2f:35:19:1b:68:dd:ec:e0:87:
36:3f:7d:df:91:83:5d:98:53:f9:ca:28:0a:78:76:
dd:7d:dc:f7:f2:b9:36:e9:62:87:d4:3f:f5:11:4c:
33:e7:d2:82:1d:dc:7b:0a:8e:d7:8c:dc:fa:59:6a:
09:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:37:17:15:85:4B:87:A5:05:D9:7F:86:4A:EE:CE:4D:8C:FE:F3:04
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:69:3c:ec:bf:3a:ea:c0:4b:48:25:ad:e7:2c:e9:8b:ed:e1:
a3:c8:40:74:fe:96:04:45:2c:e8:5c:41:3c:d1:ab:53:a7:7a:
7a:2a:5c:8b:29:91:fb:bc:ed:66:91:03:85:a5:6a:22:52:13:
8b:67:35:d2:e2:34:b9:83:08:95:3b:37:f1:de:9e:8b:2d:87:
10:ab:8f:46:45:4d:0d:55:e3:c1:a6:f6:c6:27:dc:ce:96:7e:
bc:b0:e4:5a:3b:1b:6b:2b:8b:27:9f:4b:98:13:f9:f0:72:b9:
39:86:80:b3:b4:28:80:50:67:6e:50:f0:c5:fd:82:da:46:08:
f7:9f:27:e0:cc:ea:cb:45:28:0f:50:81:55:ac:9e:24:32:3c:
1d:05:e4:a5:01:c0:81:99:1b:23:64:19:fe:6e:ab:3b:aa:8c:
a6:d8:31:df:06:c6:68:4e:ae:af:d8:a1:25:27:76:38:c0:62:
6f:b4:31:72:dc:3e:e2:ff:c7:e7:aa:54:67:0c:38:b9:32:e1:
2c:23:ff:c5:04:c3:82:df:de:f6:ff:34:df:6b:82:40:c0:0a:
07:d0:92:87:2a:79:64:07:24:b1:c6:d4:65:cd:5b:17:8f:80:
2b:64:c9:24:3a:6f:17:84:a7:6f:37:6c:b8:23:1c:35:7b:9d:
bf:90:63:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 05:46:44 2025 by rpki-client