Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: 1XjNiWox5QSOOCc98hIRrRftpIw0eL0jz2XyvmuillM=
Subject key identifier: 73:43:B1:47:0E:27:D8:9B:93:3A:48:8F:7E:E7:26:3F:C4:F7:8F:03
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 01974A43CB07832BF0EB4011985643CE0261
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 12:00:46 +0000
Manifest this update: Sat 07 Jun 2025 12:00:46 +0000
Manifest next update: Sun 08 Jun 2025 12:00:46 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: gADXvXzNVkJ+MKHzegcHXKGeNFE5wN1Px0zbX9x3xIg=)
2: 4RiMrm8aaExTJ5NxhFCCQc-LTfQ.roa (hash: xT77mBm76fvxQ/4syBVoQsoquUiDMD7RefgDewlMNII=)
3: O84I_LAanBtJYvSSTZhnAsP3iQA.roa (hash: 6ivMoGITrJjRBuEurkZGNP+0M6whX3cvNI3NRDFJ7b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:cb:07:83:2b:f0:eb:40:11:98:56:43:ce:02:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: Jun 7 12:00:46 2025 GMT
Not After : Jun 8 12:00:46 2025 GMT
Subject: CN=7343b1470e27d89b933a488f7ee7263fc4f78f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:20:89:fd:fa:46:89:79:7f:0a:cd:91:83:
68:d3:64:38:e4:4e:1c:17:7d:46:af:2c:9d:10:7a:
c0:03:98:3d:ab:77:ca:5f:1c:54:c0:c3:86:03:2e:
28:d1:8c:89:83:e4:05:b0:96:1b:2a:e7:c2:1d:74:
cb:0f:d9:9c:82:ac:4a:af:51:a3:b8:e8:29:f1:54:
78:77:cd:f2:3f:ab:c6:68:1c:fe:a4:b6:04:11:a3:
e8:a7:13:b5:25:2e:d7:a5:7a:86:05:d7:cf:86:06:
7b:38:03:89:21:14:fc:a1:7d:1a:af:67:1e:87:d4:
3f:63:be:ca:63:1a:77:d8:c4:c9:73:df:bf:65:62:
a1:7e:c2:8b:5b:fc:74:d0:fd:6f:32:2d:96:66:2d:
d4:03:e6:5f:47:8a:53:26:8e:ba:bf:7d:45:41:59:
78:b1:15:dc:6b:95:ff:5e:02:d8:b3:7e:9c:d8:95:
77:12:51:be:cf:55:12:89:38:a6:03:6c:cb:09:7d:
ae:de:ae:76:d3:24:f9:15:39:57:4f:bf:f4:b5:8c:
d4:8a:44:65:d8:24:63:6f:e8:93:00:7d:ba:c1:a2:
99:05:5b:79:58:ad:ad:ff:35:17:74:a7:02:73:37:
cc:c8:7d:19:e3:36:b3:4c:67:d8:f6:48:26:07:40:
05:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:43:B1:47:0E:27:D8:9B:93:3A:48:8F:7E:E7:26:3F:C4:F7:8F:03
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:b7:79:54:15:15:f1:2a:d3:07:ae:45:4e:9e:a8:92:48:92:
49:a2:85:cb:50:4d:51:a0:53:f4:97:9c:0d:73:a1:bc:07:6e:
4d:67:cb:86:b2:c9:f6:2c:1c:d7:b2:49:91:e8:fe:bd:fa:a1:
59:01:f0:dd:91:ec:e4:2f:91:a1:d8:68:7f:b8:2a:0d:ce:5b:
39:f5:81:ff:21:55:93:89:11:ce:e6:f8:56:39:49:0d:7f:66:
c9:9d:cc:62:3d:b8:0f:48:4a:2b:58:dd:da:20:22:a6:94:eb:
d1:0a:3a:b4:67:25:59:ea:85:04:6d:57:17:c1:58:81:81:0b:
28:66:88:da:0f:bd:e0:af:c4:e2:d3:33:0e:2d:9f:80:f8:ff:
b7:b9:2c:1d:db:e5:08:bf:07:eb:38:81:e9:87:17:c5:5a:fb:
a3:26:10:0e:74:1b:ad:ec:97:b7:7d:6b:ed:c7:0b:8d:7f:2b:
15:a0:1a:96:24:37:cd:d5:92:ab:41:ed:3e:45:9f:7f:41:8e:
da:7e:56:8e:42:db:49:c0:89:da:d2:c0:1d:4e:77:15:a6:43:
cb:d8:97:00:38:46:06:53:f6:f2:b0:b0:15:d7:8d:a1:d2:cf:
4b:0f:ee:5a:54:27:d0:9c:6e:3d:16:48:31:c4:ae:cf:70:55:
02:e6:08:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:09 2025 by rpki-client