Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.mft
File: roNVKZN0KXkz0oH1HrdLpcLJHME.mft (raw, json)
Hash identifier: 8BaCnOCR4vG22DmYLNWRbvKfUbf4gSImys8/4hV7YVU=
Subject key identifier: B7:A7:F9:23:3E:33:E4:17:07:C4:47:51:FF:EA:21:24:6B:2F:B8:79
Authority key identifier: AE:83:55:29:93:74:29:79:33:D2:81:F5:1E:B7:4B:A5:C2:C9:1C:C1
Certificate issuer: /CN=ae8355299374297933d281f51eb74ba5c2c91cc1
Certificate serial: 01974C321E0C7324A24C9D2CC62137BCC062
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roNVKZN0KXkz0oH1HrdLpcLJHME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.mft
Manifest number: 10D1
Signing time: Sat 07 Jun 2025 21:00:42 +0000
Manifest this update: Sat 07 Jun 2025 21:00:42 +0000
Manifest next update: Sun 08 Jun 2025 21:00:42 +0000
Files and hashes: 1: RaM_OWQwVXsafD9lAhumGxuaVJ0.roa (hash: 9wqEU77JRh8FONfv1sMAYtuNvig1s1ZaVt3dre8RnDg=)
2: roNVKZN0KXkz0oH1HrdLpcLJHME.crl (hash: DPIzfiGH2Ge9fu/XE9IwmnSVKYyqK+bom1WqU7qEqsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.mft
rsync://rpki.ripe.net/repository/DEFAULT/roNVKZN0KXkz0oH1HrdLpcLJHME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:1e:0c:73:24:a2:4c:9d:2c:c6:21:37:bc:c0:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae8355299374297933d281f51eb74ba5c2c91cc1
Validity
Not Before: Jun 7 21:00:42 2025 GMT
Not After : Jun 8 21:00:42 2025 GMT
Subject: CN=b7a7f9233e33e41707c44751ffea21246b2fb879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ed:f3:00:17:34:f3:f6:93:64:27:ae:c5:b1:
52:35:d2:f0:50:2e:3e:21:8e:f6:14:96:97:02:9b:
41:99:80:68:f4:7f:de:97:27:5f:e9:ac:b3:90:f6:
42:f0:b8:e9:33:ec:23:0f:9a:cc:8b:91:83:ac:51:
8f:1d:a0:ed:8d:89:71:69:b8:7c:1d:ce:58:c0:0c:
20:38:e2:c3:95:de:fb:62:02:d0:16:c2:41:92:23:
28:45:52:f7:63:28:b2:5c:16:d6:a3:8e:64:fb:42:
f5:8a:bb:67:11:df:de:78:6a:40:c9:c5:69:8f:0a:
e3:05:38:19:bb:59:88:d2:fd:61:0b:82:5a:7e:a4:
56:4e:bf:48:62:3f:42:16:85:0f:7c:ce:6c:37:dd:
e0:04:2d:a4:9e:94:14:a5:8b:0a:22:b7:5a:9f:3e:
d1:2a:cc:5e:ee:5c:71:e5:9f:72:24:4e:97:5e:b2:
d4:73:9f:f1:c6:1f:86:b9:98:17:a6:b0:8b:5e:80:
95:19:9b:70:d1:35:0c:d1:81:92:99:62:a6:af:55:
26:82:c8:b7:c7:d9:00:ae:36:7d:da:cf:da:c2:0b:
38:94:a7:79:4e:66:75:c5:1f:25:76:c5:a9:f7:81:
0f:c2:0d:e7:69:01:27:d3:b5:26:48:95:cb:be:6d:
d7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A7:F9:23:3E:33:E4:17:07:C4:47:51:FF:EA:21:24:6B:2F:B8:79
X509v3 Authority Key Identifier:
keyid:AE:83:55:29:93:74:29:79:33:D2:81:F5:1E:B7:4B:A5:C2:C9:1C:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roNVKZN0KXkz0oH1HrdLpcLJHME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0f2eb8-9800-4621-b674-3b4d02a61ec2/1/roNVKZN0KXkz0oH1HrdLpcLJHME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:1b:2d:bf:8f:f6:eb:a2:d6:a4:66:24:db:2a:7b:e0:bf:55:
22:31:91:92:9d:36:5c:b1:26:71:1b:43:92:7a:4d:8b:d8:70:
01:c9:63:45:88:0c:7d:65:61:b8:0b:21:8f:e5:8a:8c:9e:de:
0c:5a:81:ec:b4:be:f0:c1:91:13:45:e0:dd:fa:34:80:3b:7e:
b6:29:91:f1:a0:f4:9e:55:9a:f9:20:ec:22:d6:fb:e9:74:6c:
a0:d3:73:41:3c:4f:38:71:40:be:d1:7b:2e:25:5a:af:7a:98:
ad:80:3c:7b:72:25:3a:27:46:14:61:3c:3d:53:a2:52:f1:08:
e3:45:c9:b4:5c:aa:e5:c0:03:6d:3d:f4:67:13:b6:0c:f7:a1:
d3:60:78:7d:e1:3f:60:90:f9:64:54:51:69:67:1e:b8:a6:2c:
54:ab:f2:e9:ad:44:46:33:05:0b:98:83:77:62:bb:89:dd:27:
67:54:05:d1:11:91:a3:42:3c:44:45:37:5e:b0:c1:d1:4e:85:
80:2f:e2:0d:fc:56:25:ec:a4:d2:bb:09:c0:ff:8c:da:8d:0e:
ad:8f:cb:00:f9:fa:58:0f:c3:e9:5a:f3:12:8b:e5:fd:2c:65:
0a:10:31:42:27:81:90:36:a6:f5:14:e0:79:16:13:4d:98:d2:
bc:04:f0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:17:21 2025 by rpki-client