Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: 20t5IpTdikUNY5IemqDkXYa5F/1u7qvojhSY0eunFu4=
Subject key identifier: C4:F6:FD:03:5E:20:0B:5E:97:26:16:59:3C:E9:C3:0E:94:0D:C6:DE
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 01975E01B25FCBDC148A6400F17D0AA36C3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0C5E
Signing time: Wed 11 Jun 2025 08:00:58 +0000
Manifest this update: Wed 11 Jun 2025 08:00:58 +0000
Manifest next update: Thu 12 Jun 2025 08:00:58 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: Y3Bl/gAkbOyPeo4rPBuYvrJdX7gk0uUbXU23rATOAdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:01:b2:5f:cb:dc:14:8a:64:00:f1:7d:0a:a3:6c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Jun 11 08:00:58 2025 GMT
Not After : Jun 12 08:00:58 2025 GMT
Subject: CN=c4f6fd035e200b5e972616593ce9c30e940dc6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b1:2c:06:e9:8a:86:b7:6e:bb:c5:21:59:08:
62:67:50:1e:f8:95:b8:e0:f0:9d:d5:40:ac:00:69:
aa:13:76:4a:50:c7:2e:fe:17:51:bd:82:9e:fc:5a:
0f:6a:2f:bc:3f:49:64:02:37:80:db:5e:98:06:56:
98:38:2e:95:fc:0d:d0:b9:b9:fd:86:2f:c3:2c:14:
e4:67:28:4b:fb:68:4d:4d:20:77:b6:b4:6d:82:79:
e0:68:d8:5b:19:25:95:ba:04:b2:ff:7d:a2:b1:30:
e7:08:cc:58:5d:a7:c4:c6:e2:01:17:02:cd:37:26:
4d:f2:be:14:a0:2f:0f:86:01:b8:a4:13:e5:3c:f9:
94:f4:04:40:ed:b1:96:8a:86:d2:7e:d2:83:69:ef:
4e:83:47:c7:88:18:35:27:a3:96:52:22:7b:25:05:
04:0b:f3:04:d0:e1:b6:c7:f1:37:ec:3e:4b:0a:84:
02:19:5e:5c:66:63:a2:f1:59:c0:ce:98:b4:94:09:
ea:36:cb:19:c1:e3:e7:93:c8:d3:77:07:5f:20:40:
3d:10:bd:44:66:21:9d:59:0e:47:27:1b:89:78:fb:
d4:f6:98:21:ab:73:99:75:d4:0e:7a:67:35:df:45:
0e:0d:27:99:ee:72:e2:f4:d3:20:0b:e7:16:f3:79:
76:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F6:FD:03:5E:20:0B:5E:97:26:16:59:3C:E9:C3:0E:94:0D:C6:DE
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ef:16:2c:3c:e1:36:46:e6:47:4b:d9:63:b0:1b:12:2a:37:
36:f0:e1:db:6e:ea:3f:fa:b6:08:6d:d6:7d:0f:a6:b1:a9:a5:
f1:63:ec:1a:15:dc:43:97:dd:e6:8d:68:93:9c:e8:41:d4:b7:
3a:89:17:98:a3:91:cc:96:84:59:c4:c2:f2:ba:ac:dd:ab:bc:
5d:7c:e6:08:a6:34:94:4e:c5:34:4a:40:fc:3d:fe:7f:70:0b:
7a:78:21:ee:0d:23:c8:fb:cc:b8:0f:57:54:9f:2c:1d:83:ef:
00:26:ae:21:87:5d:57:e8:b0:63:88:18:91:30:fa:c8:71:f0:
23:57:86:c9:46:d0:2e:12:16:8a:31:35:37:6c:52:b6:93:46:
60:4e:1e:21:86:6e:8e:2c:99:2a:b7:3e:9d:54:26:e2:7e:56:
01:db:f4:51:3d:2c:f9:09:ee:97:0b:be:2f:62:06:92:d5:c2:
84:a2:60:83:57:4b:83:8f:e2:48:9c:4d:b7:a2:1c:a9:8b:55:
50:ac:e8:36:ba:7c:1d:a7:ca:e6:68:46:09:88:cd:6e:08:02:
8b:7d:70:39:07:12:96:64:fa:de:f6:77:30:21:ba:ff:e9:78:
8c:c7:86:4e:4a:69:3b:17:e5:e1:0b:54:73:e8:54:fa:86:4f:
f5:3f:c8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:11:27 2025 by rpki-client