
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: 6jnPCp0i2mngbheoUng1ZrPKtnqEm/9C8NxuQwiCtZ0=
Subject key identifier: 5F:C4:E0:E8:4F:2F:66:D3:29:EB:90:CD:75:43:65:40:66:DE:2C:4E
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 01975C13551654B2B0950E1B7FCA2B251601
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0C5D
Signing time: Tue 10 Jun 2025 23:01:00 +0000
Manifest this update: Tue 10 Jun 2025 23:01:00 +0000
Manifest next update: Wed 11 Jun 2025 23:01:00 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: Lmo43nKLHPijIxeaeJ6o3bS5Lk2rhIqdY3h8FiFebOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:13:55:16:54:b2:b0:95:0e:1b:7f:ca:2b:25:16:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Jun 10 23:01:00 2025 GMT
Not After : Jun 11 23:01:00 2025 GMT
Subject: CN=5fc4e0e84f2f66d329eb90cd7543654066de2c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:88:20:ed:61:a9:91:c6:53:09:e2:1e:7a:ea:
57:92:a8:54:fd:80:3f:2b:1d:93:17:57:ed:7b:18:
f7:57:40:ef:d8:55:a3:9a:e7:8b:4b:89:4d:37:93:
ce:2e:ec:97:5a:fa:18:b9:04:1d:99:bd:ca:6f:63:
34:9a:42:7e:ce:9b:d5:6f:b0:6a:60:0e:8e:7b:3e:
5b:fc:c8:06:eb:d5:3e:95:5d:03:e1:73:bd:e3:18:
c7:bf:63:e2:0c:24:97:04:76:d3:18:e4:83:bd:c6:
be:4a:8c:17:4c:7c:0d:ba:f8:e1:1f:93:84:a6:d4:
37:0f:69:c1:95:4c:67:4b:3f:2a:16:00:0c:67:fd:
43:87:1d:22:1e:57:cb:10:c9:8a:a2:5d:4b:c7:93:
3b:c1:a8:cd:3d:a2:9d:05:c8:ff:e0:3c:d3:d7:66:
3d:0c:2c:a5:a1:56:00:6b:56:6f:03:6e:dd:46:d2:
c5:ed:ea:74:0e:31:a3:2f:32:63:41:4d:69:a8:5f:
e0:66:8f:12:b7:c0:93:ab:90:4b:7a:cb:4b:a0:c5:
f6:13:a2:44:a3:f1:b0:86:cf:d4:b8:d3:a6:67:56:
8b:24:42:6c:ed:6f:66:6d:59:a0:27:5e:44:43:8d:
26:43:19:35:b6:4d:b8:d9:4b:ba:e3:f1:4b:ed:1e:
4e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C4:E0:E8:4F:2F:66:D3:29:EB:90:CD:75:43:65:40:66:DE:2C:4E
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:6f:e0:ff:15:c2:dd:57:75:76:38:b6:3f:2a:26:5c:f7:7f:
41:b0:9d:0d:f0:ff:c6:e5:59:22:65:61:1b:e8:43:7d:20:ad:
09:65:a4:10:b3:c9:fe:b3:73:44:76:06:94:37:cd:ae:22:db:
d8:04:f8:e9:0e:63:5f:26:f9:3e:47:96:89:83:26:4d:13:94:
23:1e:27:6e:c0:33:7a:0c:63:68:ed:cc:46:8d:88:ff:2e:35:
b3:13:0c:3f:86:71:c3:03:02:9e:ec:de:6c:c7:98:ab:bd:e7:
12:30:d5:b8:c9:98:e0:a0:57:e8:e2:c3:ca:db:46:a5:66:ba:
90:29:19:6a:42:bd:45:b2:f6:b5:29:7c:e8:14:14:38:0d:46:
f5:07:bc:8a:45:6c:5b:a9:27:eb:c0:ce:7d:e1:54:8e:a1:c4:
49:9f:ee:df:3d:5f:09:e6:bb:62:31:56:d2:a2:95:a7:66:d2:
70:2f:3a:a6:a8:a2:42:3f:0e:7d:02:0f:21:bd:1d:0b:6d:bc:
1a:c2:96:04:a4:1c:6c:6e:59:76:4d:38:b9:57:a8:09:2d:21:
1c:a1:73:19:64:b3:60:d3:76:74:35:1e:87:88:73:9a:af:a4:
62:c0:15:96:ae:66:73:73:6e:72:f5:09:19:9d:d3:11:9e:7e:
ff:84:be:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:06:01 2025 by rpki-client