Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
File: 0tzocORzw1QnPonF5OLtPgwGk1Y.mft (raw, json)
Hash identifier: OIkeY9qpx/FSU0gg7qU25vopxk4J82jICuabzh4+EWk=
Subject key identifier: E1:86:FB:83:4A:79:0B:A6:62:FF:5F:DC:9E:A6:FE:66:FB:45:D0:C1
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 0197470B85D9A186A39217FDAA780A67D9CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
Manifest number: 09D3
Signing time: Fri 06 Jun 2025 21:00:26 +0000
Manifest this update: Fri 06 Jun 2025 21:00:26 +0000
Manifest next update: Sat 07 Jun 2025 21:00:26 +0000
Files and hashes: 1: 0tzocORzw1QnPonF5OLtPgwGk1Y.crl (hash: A+Ss9d54Gf35v1tl3AILxtIMr5MWV43perE87em0o4Q=)
2: tTZ8ChHVIsV9vssdJRRwpvt77Ic.roa (hash: vUfunefLZb2Jpmp53yxYY0pVxR49oq3Pwb2HHqDzrlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:85:d9:a1:86:a3:92:17:fd:aa:78:0a:67:d9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: Jun 6 21:00:26 2025 GMT
Not After : Jun 7 21:00:26 2025 GMT
Subject: CN=e186fb834a790ba662ff5fdc9ea6fe66fb45d0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d2:87:2c:4a:33:bc:c1:8f:1b:f8:e2:41:93:
f5:7d:e1:f8:a8:1c:ef:b9:21:67:f6:4a:e1:96:12:
05:c8:df:00:a4:18:74:8f:77:92:3a:48:64:a5:77:
7a:d2:41:16:bc:bb:d6:24:48:56:5d:12:14:36:ba:
5e:36:5b:56:94:59:a3:d8:82:94:f2:0b:e2:29:2c:
a1:2d:f2:71:5c:0b:14:f4:76:d5:6b:09:b9:90:54:
63:82:d7:54:53:08:91:8a:73:09:3b:a5:0e:b4:e0:
6c:54:b7:58:f3:e8:1d:c0:85:b5:46:e8:e0:ec:e0:
42:9c:3e:3d:3a:e1:dd:ba:cc:68:61:7a:bd:9e:a8:
0f:48:9b:f3:11:8b:82:1c:28:7f:50:ef:dd:a1:ee:
50:77:ee:e8:8f:48:57:c8:f1:c0:06:04:14:38:62:
17:a4:9c:6b:b5:ae:89:86:3d:36:6a:a0:c9:68:6f:
64:be:43:96:f0:82:20:8d:7c:bd:e4:e3:8a:62:45:
57:57:5e:0f:d5:8c:77:6e:5f:ee:1d:78:05:03:02:
e1:bc:62:f5:79:0c:7c:c1:e5:18:d0:c2:27:bb:28:
55:0b:73:cc:7d:34:12:62:85:42:6f:b8:1a:50:2f:
d8:2e:19:56:f3:14:f3:8e:0a:f2:e6:3d:5e:71:bc:
0c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:86:FB:83:4A:79:0B:A6:62:FF:5F:DC:9E:A6:FE:66:FB:45:D0:C1
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:11:94:65:ea:9f:af:76:f4:c3:29:fb:a2:6d:61:5b:7a:4e:
62:c9:d9:67:fe:8a:f8:fb:63:00:28:60:e6:03:93:40:6e:98:
45:cd:dc:b9:ec:e0:f6:0f:1d:09:78:4b:dd:e9:8a:e6:f6:c9:
22:26:85:49:2f:76:bc:7e:d7:a7:44:f2:cb:61:46:26:8b:c8:
f1:c7:56:5c:06:48:18:4e:6b:4d:92:e5:37:3c:2e:c0:f8:c6:
12:af:a0:db:08:87:87:1d:81:90:ab:3a:a2:6a:31:cd:2a:76:
f3:b9:97:5c:12:99:c2:b8:84:77:c3:a9:89:00:fd:95:e6:f0:
2e:4f:d0:a8:15:f0:b5:ef:3c:d8:c4:c6:14:d7:8c:2c:3e:9c:
97:0d:12:52:af:e2:54:dc:0e:82:e3:77:ff:49:59:b4:9b:af:
3e:f4:c7:c9:44:41:52:bd:03:03:e6:65:e1:4c:94:55:e5:ba:
30:39:41:8a:07:fb:a4:4e:a0:cf:cd:a3:c1:f1:90:36:27:61:
37:35:c7:87:79:2e:e6:bb:f0:a0:62:da:27:c8:76:7f:a1:ac:
49:93:d8:2a:a9:34:dc:79:bd:37:9a:b9:04:8a:c8:c4:ca:13:
c1:2f:ea:a6:98:0c:6a:e6:c3:f7:f0:ed:13:a2:3d:c8:34:de:
32:b2:22:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:18:22 2025 by rpki-client