Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: j3rrc6z1R21qh5zSO6HhrWMW+v1uBv5vAzcl8Gfc6IM=
Subject key identifier: 0B:75:60:32:47:6A:6E:10:F9:37:31:B6:99:BB:81:ED:F2:C9:E5:37
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 019748F9F1A442B0CB774417746EB8B87D18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 135A
Signing time: Sat 07 Jun 2025 06:00:29 +0000
Manifest this update: Sat 07 Jun 2025 06:00:29 +0000
Manifest next update: Sun 08 Jun 2025 06:00:29 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: E3C7whJHRUGz/EZCjkIWbxCGjZos2kseR+2HeAEoszM=)
2: O_uEU5a5hFxcQ9cF5vOgcBailtI.roa (hash: am+LoRbwPcUWGmyLF541pRdLLSbuzmsIRCZ85z19J6M=)
3: _MZl5mAk0VStSl6-Iutzl1XZEmc.roa (hash: GAxNehsNlSM4VBui+WLkl0ufFvlsHnC2diPLD2P3m8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:f1:a4:42:b0:cb:77:44:17:74:6e:b8:b8:7d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Jun 7 06:00:29 2025 GMT
Not After : Jun 8 06:00:29 2025 GMT
Subject: CN=0b756032476a6e10f93731b699bb81edf2c9e537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c3:c4:2b:10:8f:7a:f6:e5:81:5b:25:7b:e9:
f2:5d:8d:ca:73:06:24:82:da:95:80:72:b3:07:a1:
06:3a:7c:7c:38:4d:07:4b:20:69:8d:6c:b5:be:3d:
95:ef:0c:a3:7e:09:2b:a1:a6:ad:12:76:63:22:df:
f2:85:24:35:ef:a1:10:f6:ec:9d:1f:6f:45:be:75:
d1:3e:ea:12:c1:91:09:a8:67:96:5d:fe:b4:74:73:
f2:1d:2d:18:92:6a:8d:9d:ac:8f:40:8d:a0:81:ca:
cf:cc:97:eb:e4:0e:99:ed:08:fe:ef:cf:97:70:1d:
7d:80:b8:f7:37:25:15:f6:a8:34:df:37:ba:b6:e8:
68:63:df:09:b9:3d:50:ac:8f:87:e7:2b:70:e4:a9:
f6:e5:a5:cb:6f:c2:39:38:2b:25:3a:77:dc:af:1e:
ab:bf:29:08:ac:e2:23:c6:f7:5a:51:f2:72:a3:88:
36:3a:7a:8f:60:2a:57:42:bb:c7:30:e2:ea:1f:44:
33:76:50:15:1f:81:d2:02:ce:c4:c5:cc:2c:ff:6e:
de:5d:06:a4:90:a3:ee:57:c7:98:1c:84:30:fd:89:
b2:32:32:d2:f9:1b:ff:37:e3:03:01:10:da:52:cc:
63:2b:f8:79:25:ce:09:b6:ae:6b:6d:68:ad:d4:8a:
5a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:75:60:32:47:6A:6E:10:F9:37:31:B6:99:BB:81:ED:F2:C9:E5:37
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:43:14:e8:8d:f0:53:06:02:2c:a6:fd:a2:27:40:14:7b:c2:
d2:ac:fb:38:5f:92:2d:c7:bb:1e:74:9c:20:79:b2:6b:dd:87:
36:10:fc:b4:5d:76:5e:99:7b:6a:bf:a4:50:0f:95:61:61:49:
89:d5:d9:6c:c4:8b:15:74:de:a9:6d:f8:60:8b:b0:1a:9f:1e:
07:c1:83:85:36:4f:a8:0f:c4:dc:b2:8b:05:6a:a9:17:fe:7c:
a3:ea:28:1b:20:54:61:3b:05:19:0b:7a:ca:ec:86:86:07:d4:
e8:ef:d2:10:53:80:45:83:8a:a3:dd:da:f0:1f:55:23:d7:c4:
8a:67:f9:d6:f5:34:ec:61:d5:f6:e9:93:f2:af:e2:7e:d2:0a:
ea:1a:7d:f6:c0:8c:f6:52:ef:f8:f0:89:78:e3:8d:47:1f:e1:
d1:d0:98:3f:13:8c:3f:0a:49:7c:07:65:1e:e0:7a:5a:f4:33:
2b:7c:7c:ae:28:3e:33:bb:fa:e5:ef:e9:5b:15:4f:d7:5f:db:
38:64:8c:85:25:0b:9d:23:85:5d:af:5b:78:5a:1c:c6:c1:b6:
96:3e:73:28:aa:b7:64:0f:71:80:7e:f5:10:f8:35:38:e2:e1:
4d:f7:1d:93:54:32:7b:8e:39:c7:04:a0:37:5f:c0:8d:37:aa:
a5:90:38:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:47:08 2025 by rpki-client