Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier: fXk6gvgL3dVkZFweUsrTnCTvOub0McbpMzIGRs6I2ug=
Subject key identifier: 28:DC:C4:9E:C9:B7:0A:7C:73:5C:AC:C5:F3:42:5C:53:94:B9:96:7A
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial: 01975D5D0727DB7A28BF580DCCF5CEC55517
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number: 0FE5
Signing time: Wed 11 Jun 2025 05:01:07 +0000
Manifest this update: Wed 11 Jun 2025 05:01:07 +0000
Manifest next update: Thu 12 Jun 2025 05:01:07 +0000
Files and hashes: 1: 89qbXuP3JJGKzWaNZO3dqnt1pdw.roa (hash: obr33L2CB/OVnTXprqPZCOQ9LeK6vQA821ilRu8qFT0=)
2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: jm7fW8XqxMHdw0PhXVzYT9JHewUIAin+lRw6Os7vpbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:5d:07:27:db:7a:28:bf:58:0d:cc:f5:ce:c5:55:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Validity
Not Before: Jun 11 05:01:07 2025 GMT
Not After : Jun 12 05:01:07 2025 GMT
Subject: CN=28dcc49ec9b70a7c735cacc5f3425c5394b9967a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f5:27:97:57:12:02:c2:f4:08:ae:b7:54:f4:
b4:dd:dd:ff:0c:a0:d4:54:38:88:ad:32:59:d9:df:
cc:a2:2a:04:c8:23:0f:84:67:2d:26:43:c7:16:b5:
d0:03:86:7b:1c:00:d5:86:70:7b:67:66:e9:64:1b:
66:a8:1e:bc:7c:5d:8b:26:0d:56:34:89:a8:4e:71:
b9:ce:99:4a:2c:45:5f:7c:9d:aa:3e:9d:b4:29:d7:
04:8c:88:4c:66:d8:94:e7:9d:7b:36:ef:6a:8c:76:
6e:ad:19:4c:35:c2:0a:c9:a4:bf:d1:9e:37:1b:25:
75:34:8a:74:2a:dc:3e:af:2c:86:95:d2:3b:96:41:
07:2e:c3:2a:59:49:17:88:7d:8f:2b:7b:4d:d0:e5:
1e:2c:a5:b2:2a:28:d9:70:19:04:ac:e8:7e:ee:15:
7f:c3:ba:d1:33:3b:d1:70:15:8a:21:5c:06:4f:5b:
2b:ce:dc:86:09:f4:eb:aa:4b:e5:f0:ef:8b:9a:bd:
5c:18:09:00:12:59:b8:c3:d5:b3:26:00:62:6f:de:
85:b5:d1:88:53:7d:3a:63:f3:8e:d6:7c:cc:7b:89:
a9:5a:bc:d0:ea:31:77:74:e4:ab:0f:fe:07:e1:94:
20:3c:62:e8:88:31:cf:d8:fc:a4:60:0d:cd:cc:a4:
3f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:DC:C4:9E:C9:B7:0A:7C:73:5C:AC:C5:F3:42:5C:53:94:B9:96:7A
X509v3 Authority Key Identifier:
keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b8:26:4a:46:fc:a6:7c:f2:be:cf:ae:98:d1:15:bf:eb:40:
65:df:ce:10:10:8d:04:1a:23:b8:e4:9f:b0:21:b6:36:c1:c1:
61:e9:3b:23:ae:51:e5:9d:a4:47:38:c1:6c:fa:aa:46:ad:cd:
3d:71:3d:14:8a:1d:52:0e:eb:f0:57:f3:a7:70:86:67:bc:93:
7b:70:64:39:28:f6:b4:f6:f0:dc:80:96:03:63:63:70:76:23:
9c:ac:00:64:07:46:8d:e6:db:06:07:9d:3b:9a:a0:7e:94:a0:
7c:82:96:3f:03:0b:ca:32:d3:23:f2:f0:f1:75:2e:48:90:f9:
80:11:70:36:6f:3f:63:da:b8:93:fe:e0:c5:74:67:83:87:b5:
e9:0c:25:a6:19:9b:ee:aa:5c:9a:fb:4e:43:05:6e:67:ae:34:
c1:d4:f1:92:79:b3:db:d3:59:40:d3:29:97:ea:e6:c7:39:ce:
ed:8f:2e:5c:30:2c:3b:77:95:45:8b:f5:39:0b:9d:8d:a9:91:
3c:dd:6e:17:d9:13:75:9f:3b:77:d5:b1:9a:5d:3b:f4:eb:6c:
d2:6f:a4:f5:dd:ae:50:96:58:29:49:45:b9:7a:36:33:d7:d7:
35:1d:15:dd:6e:1c:0f:94:6a:38:89:53:b7:52:b9:53:33:f2:
c3:8d:54:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:14:55 2025 by rpki-client