Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
File: doFcfQ6GPCF4D4v0uezDqcZFkpg.mft (raw, json)
Hash identifier: ZP0dTTw+RhAdVfBCpKaGh1ZuCDQihOh2ZMP9u4OXC/o=
Subject key identifier: E6:63:66:7C:C6:0F:65:EC:C5:B1:D5:DC:D0:9F:BA:92:E3:F1:1F:76
Authority key identifier: 76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
Certificate issuer: /CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Certificate serial: 019748FA54EA34B1758AAAF58497DA5B97D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
Manifest number: 0272
Signing time: Sat 07 Jun 2025 06:00:54 +0000
Manifest this update: Sat 07 Jun 2025 06:00:54 +0000
Manifest next update: Sun 08 Jun 2025 06:00:54 +0000
Files and hashes: 1: doFcfQ6GPCF4D4v0uezDqcZFkpg.crl (hash: OGBoWnKOljHhBFqB+LaQFktDw4Duxz2n729wTFLZ1fU=)
2: pTTtPKmhE713zQ-lNSyfapckqck.roa (hash: Z4OXgVLMtdMbDgwAv+QfBL8XpAweOau33nbHajpmsxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:54:ea:34:b1:75:8a:aa:f5:84:97:da:5b:97:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Validity
Not Before: Jun 7 06:00:54 2025 GMT
Not After : Jun 8 06:00:54 2025 GMT
Subject: CN=e663667cc60f65ecc5b1d5dcd09fba92e3f11f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:62:8a:48:f1:17:37:cd:60:db:51:3f:29:e0:
56:70:15:50:6d:c9:e9:d3:d1:c2:88:5a:3e:0b:94:
ef:22:65:9a:a4:58:ed:63:9a:b3:a1:1c:13:77:d5:
93:95:85:b3:47:8f:15:b0:36:5e:b1:a5:df:c1:54:
3c:98:56:ec:d3:b1:a8:24:3a:9f:37:8d:de:88:e3:
93:9f:55:95:34:79:ce:d9:61:e4:44:fc:44:1a:19:
cb:fc:a1:10:b7:6f:02:4f:86:85:a8:53:39:ec:23:
c0:f0:91:a0:04:d3:59:1c:dd:ca:c9:5b:f9:1c:2b:
eb:b3:aa:3c:a2:e9:da:1a:9f:a4:56:9b:8e:75:b0:
48:e2:73:3a:b5:50:05:5c:af:92:ec:f8:73:4d:21:
03:5a:3f:89:7c:94:d2:0c:2c:83:5b:9e:f9:f9:8d:
da:46:3c:bc:0f:bf:30:a2:ac:ad:8d:2b:e9:7b:7b:
87:91:01:e7:0e:0b:45:11:a5:5e:4e:65:d6:7b:58:
87:87:9a:8a:ab:0c:50:e1:84:e2:87:96:2c:0a:04:
bd:b2:0f:c5:fd:46:93:53:6e:57:13:54:46:35:3f:
e6:0a:49:1a:77:2d:62:fa:24:0f:3c:f1:48:3f:6f:
62:c9:73:d6:43:a8:94:44:7a:8e:d7:55:f4:ac:b6:
fd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:63:66:7C:C6:0F:65:EC:C5:B1:D5:DC:D0:9F:BA:92:E3:F1:1F:76
X509v3 Authority Key Identifier:
keyid:76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:71:9a:df:d7:20:8e:5a:36:15:84:d0:32:96:f2:ce:13:ee:
e6:e6:53:5c:9b:19:bc:c6:f5:c0:4a:6c:ba:db:21:80:5f:1f:
e8:a5:0d:80:fb:8a:d6:34:1b:04:e8:0a:f0:f8:23:65:99:ed:
fc:76:db:53:fa:e9:6c:d3:bd:09:51:b3:3b:44:bd:dc:d6:87:
10:c9:7b:75:78:64:b5:af:88:cb:51:66:65:4a:95:f9:fd:57:
2c:ff:e6:88:b8:8e:fd:89:34:54:ad:fc:8f:36:6b:f6:d4:05:
8e:4d:1b:a8:fd:9e:bd:a1:5a:08:c5:6b:d8:7e:30:e7:e3:fd:
58:54:b1:83:08:27:f7:fe:ba:a1:41:51:46:fa:7f:25:3b:93:
5d:e8:a8:c7:31:29:5b:3e:1e:b5:d4:51:a9:d9:34:be:ed:6d:
2e:bd:32:87:1b:a8:ec:f6:53:3f:ef:9c:56:50:a9:31:05:32:
3e:cc:ed:9a:4f:17:51:62:81:5c:04:9a:d7:5d:54:be:3b:03:
76:e1:8f:a4:2b:06:59:cc:d5:a9:20:4d:97:84:3e:89:0b:a0:
44:9b:f5:8c:06:3d:6c:45:c0:d3:be:48:90:c7:74:ae:53:ac:
8b:c5:63:75:81:64:3a:f6:06:bb:e7:02:b9:26:0a:5c:b2:b1:
04:07:a0:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:23:06 2025 by rpki-client