Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: vGgxPDeTorEC+GU0H5S2UlK2EJWLK8bc54cpzF7RtsE=
Subject key identifier: 1A:BD:3B:8C:04:09:34:79:23:C9:15:40:FF:8F:BE:C8:65:3E:00:2B
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 01974C68D4786213F215FF2C962EE8B8AAFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: E9
Signing time: Sat 07 Jun 2025 22:00:27 +0000
Manifest this update: Sat 07 Jun 2025 22:00:27 +0000
Manifest next update: Sun 08 Jun 2025 22:00:27 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: yhzgR2iLo32Bbm+Pffm+Azso3L7B55NacX9pwkFcPbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:68:d4:78:62:13:f2:15:ff:2c:96:2e:e8:b8:aa:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Jun 7 22:00:27 2025 GMT
Not After : Jun 8 22:00:27 2025 GMT
Subject: CN=1abd3b8c0409347923c91540ff8fbec8653e002b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f4:2c:2f:da:48:71:55:2e:c9:7a:7a:69:9a:
1c:8c:00:5b:97:2e:61:0d:98:d8:b5:5f:4b:35:01:
35:89:e3:83:d9:c6:b4:77:00:94:f9:de:0a:04:b3:
87:f8:63:be:0b:8c:7f:b9:9a:67:c6:23:4e:9e:dc:
d8:05:c0:4f:b1:65:5e:52:1c:41:4e:6a:9b:94:28:
51:2b:43:84:2a:f4:a1:85:a6:31:e7:a4:de:b8:f0:
3d:89:6b:57:66:58:1c:7e:e4:4d:a0:65:9f:d9:ba:
3d:57:96:a5:cc:f5:67:54:83:54:70:16:fa:c5:a6:
2d:84:c3:c0:69:77:62:37:cc:c3:b0:41:67:a7:a6:
ff:bd:e9:00:da:e0:e3:7a:8c:d6:a1:b5:25:08:e5:
5b:a9:2f:cb:c1:84:c4:f8:c5:cc:7e:85:c7:16:ca:
d9:e5:de:b0:ee:14:77:7a:68:26:f2:25:f3:93:4c:
a8:56:c6:2a:76:2f:79:04:4a:0e:a1:56:3c:e8:f6:
28:1f:d8:58:d4:cf:7d:27:24:e9:74:7a:0d:09:a6:
87:ab:20:a9:0f:9e:fb:33:e0:dd:5c:62:40:b4:f9:
a6:d0:74:c2:ca:8a:13:8c:a8:74:34:5d:84:a0:30:
d6:4f:fa:ac:43:6e:88:9e:53:a1:8a:84:f7:96:61:
cd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BD:3B:8C:04:09:34:79:23:C9:15:40:FF:8F:BE:C8:65:3E:00:2B
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:d2:68:90:1a:1a:85:71:07:a0:e3:0e:3a:11:52:34:bf:f1:
dc:51:e1:27:b6:18:c6:05:62:f2:4c:be:af:dd:c6:ed:53:cc:
85:bc:74:82:fa:81:80:45:34:2d:20:3b:00:ef:ba:99:a4:a5:
d4:d4:60:0e:fb:4a:93:c8:9a:bc:06:0b:e2:5b:42:06:ca:2d:
b4:53:21:e6:ab:35:3c:14:88:86:e0:f6:29:cb:d8:b2:53:b4:
93:f6:8a:06:e4:07:b1:84:97:f0:30:ce:46:44:83:41:fe:20:
49:01:fa:98:2a:0d:68:cd:74:94:5d:ea:fd:f2:22:e0:9e:39:
c9:ff:32:26:c0:5c:7c:c2:a0:3a:f7:38:f7:ff:bc:41:61:00:
e9:48:7d:dc:be:e5:07:72:b1:0e:62:55:2b:cc:05:1b:db:c1:
4a:bf:bd:9c:21:8d:35:94:6f:db:1e:60:27:f7:de:ea:26:da:
31:dd:48:1f:4c:37:db:68:26:09:00:d3:de:e8:96:78:a5:bb:
9c:b1:10:13:ee:4f:58:99:32:ba:1d:77:68:98:c4:8e:50:7a:
3b:49:07:82:69:06:e8:9f:a8:bb:09:65:0e:ac:77:c6:52:e7:
26:46:3e:6d:b9:c6:b5:2c:3c:d9:1b:74:cb:9e:65:12:d7:21:
ce:eb:12:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:34:25 2025 by rpki-client