Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
File: 0QZfT7a2eefxy92ANflnRnAQ6pk.mft (raw, json)
Hash identifier: G3RQd8VNHf4RSUr8NoHTtKAwWRsp10HMWwvHq4iZw00=
Subject key identifier: D4:6A:0D:20:32:31:BF:EB:AB:84:E7:89:F0:55:FA:F7:10:6A:1B:4D
Authority key identifier: D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
Certificate issuer: /CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Certificate serial: 01975D5CEF9B84903A5740369922A0F73BAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
Manifest number: 0C00
Signing time: Wed 11 Jun 2025 05:01:01 +0000
Manifest this update: Wed 11 Jun 2025 05:01:01 +0000
Manifest next update: Thu 12 Jun 2025 05:01:01 +0000
Files and hashes: 1: 0QZfT7a2eefxy92ANflnRnAQ6pk.crl (hash: 0EDr9spOrD8LOEN1tBcTZFvp6UpEpP34N5GPE7X7O8Y=)
2: TLgddA3CgmtAKo-fV94OuzSavi4.roa (hash: tQo/EK/pm7RsFTI12Ej+RxeB7S+rUphRTa4aWGCPu7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:5c:ef:9b:84:90:3a:57:40:36:99:22:a0:f7:3b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Validity
Not Before: Jun 11 05:01:01 2025 GMT
Not After : Jun 12 05:01:01 2025 GMT
Subject: CN=d46a0d203231bfebab84e789f055faf7106a1b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:16:ab:eb:81:b4:ac:c1:db:33:2a:09:2c:05:
56:6b:76:38:4a:91:7e:d2:04:bb:13:26:e7:5a:59:
a0:4d:47:1e:af:16:d0:fb:98:bf:c3:30:cb:a8:2f:
54:bc:af:f6:48:6a:c3:7e:ae:a0:a1:3e:62:ec:56:
b5:b7:f5:b8:d6:99:6a:72:bd:b9:4b:6c:be:ec:fe:
f9:4f:81:24:64:da:82:7d:eb:dd:99:cc:b5:c7:c8:
9f:78:5c:cc:22:ae:42:84:07:40:36:9f:5d:1a:0c:
14:4d:e9:7a:e9:44:0f:e4:36:c1:36:18:9b:6b:e8:
48:17:78:fe:8e:25:b6:e1:45:c4:ae:a5:ca:b6:c1:
89:ea:eb:ea:eb:72:31:e2:86:81:dd:fc:16:b6:4a:
54:bc:0e:2f:c1:4c:2b:16:4a:9f:db:8c:d5:ff:60:
70:14:5b:f9:da:43:a8:a9:08:c4:8a:2a:3e:a7:04:
99:ad:d0:91:c6:da:0d:e6:e3:aa:b0:47:31:6b:1e:
47:0c:db:bb:2b:f1:df:84:d7:eb:f9:a8:ed:1b:45:
f8:fd:b1:e5:52:a0:82:8a:95:6c:75:a3:a5:15:95:
ef:a2:0e:d0:69:60:00:7a:81:ac:b4:6f:19:6d:48:
2e:9b:00:9b:aa:f6:b0:aa:d9:74:ae:70:d1:cf:53:
00:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6A:0D:20:32:31:BF:EB:AB:84:E7:89:F0:55:FA:F7:10:6A:1B:4D
X509v3 Authority Key Identifier:
keyid:D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:fb:3e:9a:20:39:22:e3:ce:8c:a5:15:60:e9:b7:1a:d5:34:
7d:55:6b:8b:dc:1f:45:67:ae:18:a5:47:68:c9:8d:6b:0c:37:
9a:60:55:2c:62:99:f9:f6:0a:fe:63:c9:47:86:16:f9:b2:1e:
2c:10:21:4d:ca:fe:0a:71:11:e9:9c:4d:48:5b:05:c5:f9:a5:
ed:66:a6:69:52:46:13:97:74:5e:27:c0:70:9a:5e:16:09:f2:
85:39:c3:13:d8:9d:72:84:00:cd:c4:ad:cc:57:49:4d:b8:55:
f9:ad:3f:2a:aa:ea:fd:f6:e4:16:57:04:f5:46:b0:eb:95:81:
9b:69:e1:1b:0f:48:12:c9:58:94:20:72:2b:4a:b3:e2:c4:95:
a4:e7:05:f5:b8:9a:e5:5e:54:7f:33:07:46:ee:cf:98:07:86:
19:ec:3c:04:62:87:77:c6:eb:2a:91:36:0b:79:ce:93:b6:9c:
55:19:96:03:9d:82:f2:1b:e0:69:38:d7:5c:58:1b:a7:c7:3b:
04:fa:55:4c:57:33:18:cb:ca:af:f2:67:fe:be:c6:54:c7:06:
1f:9a:bb:76:bc:e4:77:63:f5:24:28:33:62:f4:34:10:06:26:
78:b6:e8:3d:38:53:dc:75:1c:50:3c:9a:27:8e:b1:a3:d0:d4:
9c:e2:48:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:32:48 2025 by rpki-client