Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json)
Hash identifier: wo0V90ZHrDmylTQqwkV8w9I5ZmfeJ0wqQd5JzgniHtY=
Subject key identifier: 5F:3B:EE:6A:11:0B:D7:18:8E:65:FD:77:A2:AD:07:4C:E2:18:99:C0
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 019748FA6CEE4C7F19E73862FB32F5D8ABD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
Manifest number: 1430
Signing time: Sat 07 Jun 2025 06:01:00 +0000
Manifest this update: Sat 07 Jun 2025 06:01:00 +0000
Manifest next update: Sun 08 Jun 2025 06:01:00 +0000
Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: RdPPQimY+zJv+KUu7uGgVo82Kb7jpUSJHFj+1AdldD8=)
2: 24F3NWEaUDo-ywzWotAmlAOE0aY.roa (hash: ERf1+Eo8kcPOcjF9iXtlxaEqblrqJRaC4jpu9Wj4DSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:6c:ee:4c:7f:19:e7:38:62:fb:32:f5:d8:ab:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Jun 7 06:01:00 2025 GMT
Not After : Jun 8 06:01:00 2025 GMT
Subject: CN=5f3bee6a110bd7188e65fd77a2ad074ce21899c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c8:02:22:39:1b:e6:94:c8:fd:da:8b:fb:e7:
b7:92:51:f2:d5:e4:6e:ca:3b:38:b3:cf:1e:92:7f:
cd:2a:63:48:16:66:57:f7:3d:7e:5e:12:4b:9c:de:
34:db:46:33:db:74:ac:b6:ec:e1:74:d7:29:a2:9c:
ff:d6:ab:19:e1:45:ac:35:df:d3:56:60:fe:a7:ae:
e9:b8:08:bb:66:0e:1c:4a:14:24:3f:0e:00:74:5e:
43:26:a5:05:09:4d:c7:e7:eb:41:6a:99:33:18:62:
ff:81:04:be:2f:ab:c2:41:14:45:1b:7c:fa:2f:89:
0e:09:72:88:8e:17:2f:fa:e5:d2:09:d6:e0:ce:c5:
3c:a9:b8:01:34:58:f6:8a:56:f2:24:9d:b8:05:d5:
95:ed:1f:c6:3e:db:fe:24:05:7b:1c:b8:a2:72:23:
c3:ec:66:20:a1:0f:e3:35:a3:4b:fb:d8:8f:7a:06:
10:d2:6c:30:49:7b:a9:e9:da:98:37:fb:b6:19:49:
45:3e:72:85:88:01:46:c4:b5:aa:af:e4:b0:ea:6f:
07:e2:77:99:9f:5f:35:54:b4:79:a2:4c:a3:dc:0c:
56:fb:65:0d:5e:92:54:9d:a8:95:7c:c9:6a:7d:be:
ab:37:3b:fe:d6:c3:25:f3:d9:89:0c:ee:1e:17:e3:
4b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3B:EE:6A:11:0B:D7:18:8E:65:FD:77:A2:AD:07:4C:E2:18:99:C0
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:61:28:af:3e:e3:c8:a4:c6:c5:f9:3e:23:43:00:0c:fa:58:
1e:be:e1:74:df:6f:c8:ea:9b:c2:c2:98:25:29:1f:71:71:60:
70:25:3c:94:16:b8:13:6c:42:5e:41:35:33:0a:26:6c:49:23:
e6:ec:85:4b:50:f7:7b:b6:ac:79:bc:1a:63:bb:2d:2f:8a:e9:
a0:50:e2:72:70:5b:3e:90:c4:88:78:e4:93:cc:96:57:ca:dc:
94:c1:e6:78:e0:bc:21:5d:ed:a0:8d:13:37:4c:df:af:ab:8a:
e1:f7:f9:a3:98:41:2d:1e:96:b9:4e:5f:f7:9f:be:08:7e:2b:
1d:11:7f:a0:f2:6a:6c:77:36:15:2a:a9:c6:7f:3d:d9:83:51:
6e:9c:ae:00:36:4c:c6:68:b1:cb:ec:09:ae:96:ca:97:48:03:
17:90:c7:41:7c:e5:1d:a9:7b:87:f4:ab:65:df:ea:7d:45:95:
99:dc:7b:d8:12:27:4b:f1:2e:93:27:2d:32:16:2c:15:30:1c:
81:72:01:9b:0b:ec:eb:88:03:dd:a2:04:49:c3:d2:eb:cc:0f:
47:2a:b7:c6:02:35:f8:1a:12:9f:f5:0c:bc:6c:57:b3:d0:51:
dd:95:45:71:b6:9b:3a:29:d4:0b:3a:8e:65:ce:8d:a7:8e:7c:
e1:29:a7:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:26:01 2025 by rpki-client