Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
File: 0QZfT7a2eefxy92ANflnRnAQ6pk.mft (raw, json)
Hash identifier: 0EHnNMgeub721c4dxQYMdqRQDj7BqB1Su1ss7MTC9xI=
Subject key identifier: E9:3C:B4:48:7C:89:78:2F:B1:61:73:42:B4:65:7D:92:FF:D8:5C:37
Authority key identifier: D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
Certificate issuer: /CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Certificate serial: 019753B46E40DEF59654139ED94F6721AC53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
Manifest number: 0BFB
Signing time: Mon 09 Jun 2025 08:00:22 +0000
Manifest this update: Mon 09 Jun 2025 08:00:22 +0000
Manifest next update: Tue 10 Jun 2025 08:00:22 +0000
Files and hashes: 1: 0QZfT7a2eefxy92ANflnRnAQ6pk.crl (hash: IJM7iIwvDaUGQW9upojppMGtVBZ8tloatV3hoco0IUs=)
2: TLgddA3CgmtAKo-fV94OuzSavi4.roa (hash: tQo/EK/pm7RsFTI12Ej+RxeB7S+rUphRTa4aWGCPu7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:b4:6e:40:de:f5:96:54:13:9e:d9:4f:67:21:ac:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Validity
Not Before: Jun 9 08:00:22 2025 GMT
Not After : Jun 10 08:00:22 2025 GMT
Subject: CN=e93cb4487c89782fb1617342b4657d92ffd85c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b4:09:e6:3c:b2:ea:27:2e:ec:de:65:10:10:
4b:ae:7e:3e:8e:75:8f:08:a3:91:8b:75:9b:3b:61:
09:de:e5:67:b5:e7:e3:44:e1:4d:d7:ce:cc:1c:f6:
0e:ee:70:fb:95:f1:aa:1b:04:39:dc:ef:02:ea:ab:
36:0e:34:02:2b:e0:7d:23:73:7a:61:d4:d8:53:40:
c4:d6:e2:47:88:ce:71:bb:34:90:04:bd:05:bf:09:
f6:cb:a5:ba:b7:b3:cf:39:9c:89:32:e8:79:28:9e:
49:18:89:17:53:36:ac:46:7f:ae:ed:4a:de:b5:fe:
94:be:48:c0:4e:d3:83:7b:c0:ea:0d:53:e0:21:db:
af:12:71:17:54:52:e3:c2:39:45:77:97:05:b5:70:
96:ab:aa:95:91:19:5f:76:57:3d:79:84:ab:84:4d:
3e:a6:d0:88:89:7d:06:86:36:91:91:f6:6b:3f:7f:
7c:83:f4:f8:05:d8:00:8b:69:a9:f5:0e:6a:c8:59:
24:14:f0:7c:cd:15:e1:ef:b9:1e:54:04:1c:b4:c8:
de:ab:22:34:bd:ed:c7:42:d7:00:d8:b9:20:27:29:
f7:3a:e0:bc:33:e9:72:89:78:49:c6:e3:94:a2:6b:
cf:94:94:c5:e3:a7:21:75:24:ac:0a:03:c1:3b:33:
bb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3C:B4:48:7C:89:78:2F:B1:61:73:42:B4:65:7D:92:FF:D8:5C:37
X509v3 Authority Key Identifier:
keyid:D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:80:07:f4:70:40:7c:18:ae:d5:e6:75:fe:85:30:51:aa:d5:
3f:4f:7e:dc:cd:c4:4c:f8:d2:45:12:bc:3a:c8:10:12:21:29:
cd:f5:96:87:22:9a:b8:fe:2f:65:06:c6:67:b4:e1:88:b8:ca:
e6:e9:0e:b5:83:55:5f:31:e7:95:18:9c:ae:42:7e:8a:76:59:
aa:ff:da:b9:aa:cf:01:8d:52:a7:6e:f6:cb:13:80:1c:26:af:
8e:62:67:c0:ce:b8:ec:54:b8:16:98:16:1e:1f:80:3f:3e:0d:
cf:0d:09:dd:b0:39:5e:8c:c3:60:08:d4:27:fa:d3:f9:bd:a2:
32:71:90:39:35:99:49:32:90:00:b4:f7:0e:ce:70:9f:5a:3a:
83:7c:4b:3a:55:45:43:72:8b:a2:38:9c:ca:78:7a:0a:6c:de:
d5:56:56:06:17:62:8c:0b:4f:05:bc:8a:21:b3:30:17:d1:0a:
8c:6d:0e:00:7e:71:33:e7:cd:38:3d:48:56:0c:56:39:78:fa:
8d:a8:b9:ac:89:48:65:9c:21:57:0a:a8:ba:2d:82:44:98:7b:
c5:33:9d:ab:92:2b:ab:53:4a:a7:17:25:26:82:f7:a6:a7:a0:
92:9c:b1:75:df:c5:7e:94:53:b2:14:60:06:52:9d:12:0f:90:
b4:21:91:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:37:57 2025 by rpki-client