Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: EeubuHBx2M5fpa4+MUkW5NIBEUv08tZLwwiip0kkMt8=
Subject key identifier: 11:85:E9:61:ED:73:0A:A6:85:96:B3:D9:87:5F:14:A1:46:93:CC:F2
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 01974B1FB3CDA45549C2D8E897F0DCD2F681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 111B
Signing time: Sat 07 Jun 2025 16:00:58 +0000
Manifest this update: Sat 07 Jun 2025 16:00:58 +0000
Manifest next update: Sun 08 Jun 2025 16:00:58 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: LDy5aOMRoOXcHa7edyKeK7AlTT1QBhNuOVp5fr1u+60=)
2: TOVvXCIC74IHLFRv_ul3iwknpsQ.roa (hash: zJz6AFqjm/jIozAn4oJXfbnU0gPG3STkN62e2ij/+7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:b3:cd:a4:55:49:c2:d8:e8:97:f0:dc:d2:f6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Jun 7 16:00:58 2025 GMT
Not After : Jun 8 16:00:58 2025 GMT
Subject: CN=1185e961ed730aa68596b3d9875f14a14693ccf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:52:29:b7:2a:3c:df:c4:cf:ba:8b:f6:8c:4d:
25:e3:c7:21:92:75:95:b5:1c:6f:42:83:d5:ff:11:
d9:13:76:32:fe:3a:a9:ac:95:68:08:d1:6a:f3:6a:
79:d6:b4:76:f4:4f:3a:f9:c3:a1:44:a1:6e:35:69:
5d:28:66:c6:ee:8c:94:dd:74:a9:e7:a9:1c:61:1d:
d7:02:5a:69:1e:dd:25:df:14:99:12:b9:f4:ec:a9:
55:00:1f:c3:df:11:f3:87:c0:d1:dd:66:7a:09:29:
32:f2:69:7b:00:de:63:a4:20:04:80:34:37:09:69:
6e:bb:0a:f6:f1:7b:67:61:36:e1:42:71:34:f4:f5:
ac:38:37:fe:b7:f0:41:d8:ed:cf:ba:7a:c8:c3:c8:
92:72:a9:b1:87:c4:6a:ae:70:aa:e9:d5:78:44:2a:
bd:47:3a:28:68:4e:bc:4b:4f:ad:9e:db:64:54:11:
d2:04:15:a2:38:78:8e:54:10:7d:be:f4:35:12:53:
6d:7a:00:32:16:94:26:49:69:ce:62:40:94:14:6b:
93:4a:4f:b7:98:57:46:5d:b8:42:ea:1f:50:c2:95:
38:de:5e:76:89:1e:fe:9a:46:00:1d:20:46:2a:15:
42:09:25:47:f6:3f:4e:59:08:bc:52:a0:b1:84:aa:
8d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:85:E9:61:ED:73:0A:A6:85:96:B3:D9:87:5F:14:A1:46:93:CC:F2
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:04:3a:27:40:37:d6:8d:82:b9:9a:a1:b8:85:aa:02:cd:32:
76:27:36:6c:07:d4:d2:04:7c:bf:12:04:33:63:5c:9d:83:f0:
07:f1:42:9b:9a:be:59:53:49:0f:56:af:b4:c4:71:51:11:3f:
cd:11:7d:e3:0f:d9:6c:b3:69:2f:3f:34:62:4a:04:21:f6:0f:
c1:a9:37:d9:16:10:81:30:15:11:0a:d2:75:79:61:18:c4:f5:
bb:55:0d:5c:c9:5c:2e:30:0c:22:23:ab:b4:8b:74:e4:b3:21:
7f:46:f0:97:ec:d9:04:09:43:fc:2e:1a:0c:9b:83:06:58:4b:
30:8d:4f:64:9b:b9:72:14:8a:7f:e3:92:55:0f:70:2e:1b:32:
55:00:5f:53:dd:9a:23:11:be:15:8b:46:f9:6f:da:d3:f7:c4:
21:03:e6:3a:65:df:0b:bf:08:58:5c:7e:51:09:8e:65:5a:f7:
b4:e9:6b:2e:bf:d1:6b:4f:df:7e:ad:96:b5:89:67:22:82:8b:
d8:fe:e7:8b:c6:60:4d:59:b5:6e:32:a4:75:83:5f:b2:31:ba:
96:bd:b4:b3:d5:6c:99:4f:7e:25:4c:00:a0:63:25:38:53:3c:
84:57:38:08:09:04:88:9c:43:f3:92:de:3a:93:79:14:f5:78:
0f:6d:79:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:21:53 2025 by rpki-client