Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
File: 7pzNOKXWSWiAvAlHBuaPoE-izZY.mft (raw, json)
Hash identifier: ySPFJUE1saoo33j6MOB5SB1obymBtNB/AD9/2/EJn6k=
Subject key identifier: 0A:B0:95:22:D3:19:61:89:53:26:17:33:42:21:47:5A:81:60:20:09
Authority key identifier: EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
Certificate issuer: /CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Certificate serial: 0197469EC06209BFDE12419EDDF3FD78A45C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
Manifest number: 0136
Signing time: Fri 06 Jun 2025 19:01:38 +0000
Manifest this update: Fri 06 Jun 2025 19:01:38 +0000
Manifest next update: Sat 07 Jun 2025 19:01:38 +0000
Files and hashes: 1: 7pzNOKXWSWiAvAlHBuaPoE-izZY.crl (hash: 6zWSPFso/Rv/+CGRbRBZkp447dIIfC4qJ+S53j0qrt4=)
2: QSjkZq8_AJ0B8g7dlzd0nA4JsWQ.roa (hash: YMcvfk9S0D5BI+lBDXlsaUm2v/yIEV2HtkKOAQ1Y0Xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:c0:62:09:bf:de:12:41:9e:dd:f3:fd:78:a4:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Validity
Not Before: Jun 6 19:01:38 2025 GMT
Not After : Jun 7 19:01:38 2025 GMT
Subject: CN=0ab09522d3196189532617334221475a81602009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d7:f1:93:3c:de:af:fc:63:58:29:a8:16:9f:
e1:79:6b:a1:c6:92:76:3c:4a:98:4c:09:49:ac:6c:
dc:55:8a:2e:35:fa:e6:63:15:55:4b:4a:4d:98:5d:
6a:0b:63:fb:07:02:09:29:e0:e2:f7:56:5d:0e:fb:
7e:37:a2:ee:c1:e0:52:6a:dc:07:53:42:8a:a0:73:
ca:d2:41:a5:d0:b7:32:c0:89:80:c1:84:0d:b1:d6:
f6:24:c6:18:32:fb:31:eb:88:62:2c:85:92:40:b8:
b3:d9:07:06:c4:3c:90:b8:fa:8d:a0:4c:9e:fc:9f:
2c:11:02:db:ee:c3:d0:e4:52:6e:3b:11:19:1e:40:
ea:66:6d:a3:ab:20:5d:62:ea:8f:bd:9e:68:70:c1:
2e:d3:6b:81:d0:94:c6:6c:1a:9d:e7:13:0b:93:56:
79:d4:55:16:04:bd:66:74:cc:45:ca:2f:73:96:cd:
45:df:a5:fb:1e:21:18:37:84:ff:f1:e6:0c:ab:f0:
37:89:b7:41:e0:50:f3:4f:2e:5a:bd:e2:8a:86:e5:
27:52:73:da:06:10:0d:65:64:9c:83:95:3b:8f:87:
f5:f5:0f:db:41:6d:d5:64:ed:e2:be:d9:84:2f:99:
d3:58:39:fc:aa:be:b1:b8:15:e6:1c:8d:e9:31:05:
9f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B0:95:22:D3:19:61:89:53:26:17:33:42:21:47:5A:81:60:20:09
X509v3 Authority Key Identifier:
keyid:EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:d9:55:d7:e7:16:40:34:ed:65:fc:d6:57:50:aa:6a:cb:07:
4b:f6:18:6c:79:a5:c4:1e:96:f8:5d:f4:10:b7:73:3e:22:1f:
88:bd:0b:2d:72:2d:14:9d:76:54:26:be:39:8b:f1:00:a4:b9:
b6:3b:8d:9a:34:4a:91:5a:ca:ba:a7:b2:5c:52:d4:14:16:03:
15:c9:bd:2a:4f:3e:67:85:e4:dd:bc:d4:c8:68:83:16:59:04:
65:e0:08:66:b4:41:9a:e1:44:9b:af:cf:2c:39:95:51:d9:19:
d8:d0:9c:92:f1:bf:d3:89:57:ea:08:21:0f:31:72:72:f8:36:
be:9e:ca:ab:2e:87:ec:43:53:90:88:62:ec:01:92:3c:df:5d:
aa:94:d8:3c:cc:9d:0b:1e:8e:f1:b7:4b:bf:ff:d8:be:2a:2d:
c2:ce:f5:0d:67:2e:4d:62:e8:c2:c3:67:ed:5d:1d:64:95:3d:
ba:4d:c5:e2:85:53:6b:33:8f:f2:86:14:1f:57:68:71:fa:0a:
0e:c5:58:13:b2:65:57:08:0d:e4:69:99:be:df:ff:d7:c3:fd:
ff:86:3b:b6:e2:d1:a6:e2:a9:50:7c:cf:0a:c1:ce:63:20:3e:
4f:59:be:ff:c5:9f:96:b3:d6:72:30:03:01:54:bb:4b:41:f5:
61:52:d0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:52:43 2025 by rpki-client