Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json)
Hash identifier: 4BSKzccjmbmWYffgCstFDEuWRlPEcc9XDXFE+vYg0oI=
Subject key identifier: 85:00:1B:53:C9:AB:FD:DD:37:57:C4:2C:19:33:E9:9B:9D:2F:34:A4
Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36
Certificate serial: 0197499EDFFFE03FE51DF8BC2EF74212C870
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
Manifest number: 150F
Signing time: Sat 07 Jun 2025 09:00:38 +0000
Manifest this update: Sat 07 Jun 2025 09:00:38 +0000
Manifest next update: Sun 08 Jun 2025 09:00:38 +0000
Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: Nq/QVI/k1DZ/NTqxUQgDIci4mQNqQSFLHxjXOCV4DNA=)
2: CUxoxoHUFgCcWdXLBL1XTZtblHU.roa (hash: nuVV0ajPUp0XSEkxw4hsRxKF9YmW1aG+8tY3rAw4VUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:df:ff:e0:3f:e5:1d:f8:bc:2e:f7:42:12:c8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36
Validity
Not Before: Jun 7 09:00:38 2025 GMT
Not After : Jun 8 09:00:38 2025 GMT
Subject: CN=85001b53c9abfddd3757c42c1933e99b9d2f34a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bf:4e:3a:46:55:07:9d:18:96:93:9b:ee:cc:
92:00:e7:20:2d:8b:6a:d6:03:67:99:60:8d:ba:2b:
4c:28:e8:a7:f8:d1:5c:7f:a1:f3:d0:b7:52:9a:62:
0c:00:79:e8:08:1f:6c:db:07:c1:d0:24:c4:7a:43:
3d:29:a2:cb:e0:ca:30:e8:ef:cb:4e:ab:e7:f4:15:
21:18:59:aa:a7:08:c6:95:31:c0:f1:76:11:95:fc:
10:7c:22:f7:28:49:3d:55:8a:9f:a3:ff:6a:d4:01:
1f:a5:7b:30:42:9e:f4:d6:21:e6:03:8c:9b:77:ab:
2f:67:af:52:a2:bb:12:c8:60:23:c2:da:62:36:76:
3a:6b:06:3d:24:19:41:fa:3f:db:ac:d9:ca:7c:49:
ee:aa:86:91:00:47:b5:6a:69:f3:ad:0e:5d:36:e3:
1b:02:c8:f1:78:5a:11:c9:49:7c:9a:5f:18:87:26:
f8:36:fa:dc:ed:fb:61:f8:e0:cd:a5:f0:68:c1:a1:
12:9b:ad:28:63:11:9a:79:9a:40:78:39:e6:92:98:
2f:e1:00:3c:94:e2:de:8e:27:27:23:eb:8f:07:55:
13:d0:bf:89:67:d1:a5:76:d7:0b:bb:cd:08:1e:8b:
2b:5b:c1:c9:90:cc:c6:bf:a0:f0:67:0c:33:6b:1d:
1b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:00:1B:53:C9:AB:FD:DD:37:57:C4:2C:19:33:E9:9B:9D:2F:34:A4
X509v3 Authority Key Identifier:
keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:ad:49:1b:9c:2c:a8:6b:1d:99:65:3f:82:74:93:a7:56:ea:
27:72:d4:e1:ec:86:fa:0b:e0:ae:d1:49:e0:31:cd:6d:51:c5:
2e:8f:b3:cb:ea:96:38:a4:94:19:74:5f:cd:50:89:81:e1:4c:
20:c4:58:bc:22:7c:98:73:c2:6e:01:80:ea:00:e0:c5:0a:e3:
9c:7e:6c:22:fe:6f:51:6e:16:e7:bc:73:a9:45:a1:21:dd:3d:
30:49:41:30:c6:b7:ab:9f:4c:21:26:65:96:1f:f9:4f:06:38:
d9:76:6e:72:e5:69:ad:31:32:74:60:3e:9a:43:29:55:06:5d:
c8:f7:b6:1a:dc:5c:c6:ee:5d:fb:0f:39:6f:a3:26:38:15:41:
cd:7d:90:e5:cb:1a:fb:6a:e2:ef:21:f6:bd:89:99:aa:77:66:
41:22:ec:9d:34:ed:8e:12:bf:e9:e9:bd:92:7b:48:e8:69:7d:
8c:16:21:b1:4b:53:76:ef:96:41:fc:bd:9a:c0:e6:f0:3d:51:
37:10:57:14:f8:95:cb:60:d1:43:17:ec:b9:c1:db:bc:67:61:
94:96:44:d8:90:15:0e:2a:14:59:da:33:a6:fe:b9:d6:6d:f5:
4c:e4:19:7f:c9:a9:a3:ec:73:c2:82:f5:68:d2:83:2e:5a:84:
af:3e:c2:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:29:18 2025 by rpki-client