Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
File: a0dcb7gDO14R19tfLJl8hLpyXKI.mft (raw, json)
Hash identifier: CURFPTplDlACPxHNR93o07SWg3tVIlh09eXe4KFKW/0=
Subject key identifier: D6:78:F0:0A:39:FB:FF:3C:7D:A7:39:01:1E:23:3E:39:7C:E0:1C:E6
Authority key identifier: 6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
Certificate issuer: /CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Certificate serial: 0197488D36EBA1514D0BA862C8895F0BE963
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
Manifest number: 150E
Signing time: Sat 07 Jun 2025 04:01:43 +0000
Manifest this update: Sat 07 Jun 2025 04:01:43 +0000
Manifest next update: Sun 08 Jun 2025 04:01:43 +0000
Files and hashes: 1: OVBxJN_E7KClOVOyQO1dITqXrDc.roa (hash: gtF4A20X0QOWLiRvuhbFqEg7fy+sAd/zI+eINNfliv0=)
2: a0dcb7gDO14R19tfLJl8hLpyXKI.crl (hash: 2gBMsxNqtAz4b543TeWN6asHHfrVLc4VDSaTEiOIh8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:36:eb:a1:51:4d:0b:a8:62:c8:89:5f:0b:e9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Validity
Not Before: Jun 7 04:01:43 2025 GMT
Not After : Jun 8 04:01:43 2025 GMT
Subject: CN=d678f00a39fbff3c7da739011e233e397ce01ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b0:10:fd:c1:16:c5:3f:ab:ee:bf:d2:01:39:
59:92:3d:41:16:cb:51:99:13:48:e4:c2:83:23:06:
5b:2f:83:ec:3d:04:15:c7:e5:35:71:c0:72:40:ca:
4c:8d:e1:6e:64:da:e7:cd:25:b0:18:c8:e1:86:36:
cf:b8:05:db:df:25:65:62:ca:27:d3:c0:59:7a:d9:
15:54:87:c8:04:73:ae:46:fe:e3:a9:c7:31:e0:9a:
23:d6:0e:64:78:6a:9c:94:73:c9:48:bb:df:e7:ea:
30:0c:ce:fa:c9:cd:ff:59:fa:13:0e:f4:a4:6f:48:
4d:71:5b:55:ca:c0:c3:3a:ed:1b:27:e7:fb:87:d5:
60:cb:02:9d:96:a5:34:f6:10:69:ab:e0:31:a6:9b:
27:c0:24:bd:9b:64:2a:82:1a:fc:6a:41:76:11:6b:
73:77:be:a5:b7:7e:5c:26:7c:d2:90:9b:8b:28:01:
28:da:79:ec:80:a8:b6:41:7e:fa:30:e2:f5:39:41:
e4:ab:e2:cb:e2:df:04:31:f2:54:74:8a:95:35:64:
c1:70:52:b7:9b:86:16:e7:d6:2d:e1:bb:e4:b8:57:
13:75:81:9b:f5:18:60:87:bf:0a:24:39:ec:79:cf:
d4:a8:fc:d0:41:be:98:2d:19:0b:f7:be:f4:07:88:
bd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:78:F0:0A:39:FB:FF:3C:7D:A7:39:01:1E:23:3E:39:7C:E0:1C:E6
X509v3 Authority Key Identifier:
keyid:6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:bf:25:32:9c:0b:56:b1:01:e9:b0:ed:bb:18:9c:af:90:f3:
49:73:c0:4c:39:3a:c4:4e:d7:25:c0:26:03:c4:27:be:70:69:
2a:37:c2:d4:f5:fe:13:14:db:2b:f3:eb:03:22:b8:db:43:df:
11:f4:5e:82:5c:ef:ca:55:93:4b:82:63:ae:d0:9c:23:9a:d9:
cf:22:fb:01:77:8d:32:83:06:a6:96:6b:c1:ad:21:cd:bc:ab:
66:ac:13:e1:f3:72:97:1a:57:ca:04:79:a8:95:24:cb:78:cf:
7c:d4:12:44:e4:a8:e3:75:c6:ed:06:38:8a:23:f6:f3:98:00:
45:f3:50:13:e3:75:38:6e:4e:20:b9:32:21:38:19:eb:77:8d:
6c:0a:d0:93:01:5d:33:e2:69:b7:8f:00:91:a0:54:39:2c:67:
d4:d9:5f:fe:f0:bc:a3:7a:4f:42:cb:fb:62:1f:fc:7c:ba:c6:
c7:16:35:81:c2:a3:67:cb:2a:5c:95:78:19:5b:3f:85:eb:35:
26:de:5a:63:dd:93:14:89:7a:db:6a:2f:53:c0:dd:ca:10:f1:
ea:60:41:03:d0:fc:0d:e7:c1:84:6e:bf:0d:bf:31:ae:9d:f3:
19:5b:04:f9:11:22:44:85:6a:c5:61:dc:d9:1f:74:72:d0:08:
8d:f1:9d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:11:57 2025 by rpki-client