Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: AgXyrqhl/I6thycYCBH8t+JO8u8l0RaTJUforQEDLbQ=
Subject key identifier: 4E:E2:7E:63:49:B1:1D:E8:E4:D7:97:E1:9F:0B:FF:C0:34:64:55:DA
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 01974CD6F204ED5DCE2E816F6B3BB16F2B48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 157D
Signing time: Sun 08 Jun 2025 00:00:44 +0000
Manifest this update: Sun 08 Jun 2025 00:00:44 +0000
Manifest next update: Mon 09 Jun 2025 00:00:44 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: qF8GG2m6M+afEWT+8JIRjSq3zS8BedJwRA7BmfkW+J0=)
2: On0cxXdpQvZ_jJI1Rkh3ZfuLUxc.roa (hash: 9kDdHzwM7pfMm0bFoQEb02mFtUGZEAgcsF0RvK2rnzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:f2:04:ed:5d:ce:2e:81:6f:6b:3b:b1:6f:2b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Jun 8 00:00:44 2025 GMT
Not After : Jun 9 00:00:44 2025 GMT
Subject: CN=4ee27e6349b11de8e4d797e19f0bffc0346455da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6d:2d:db:59:40:8d:ef:06:cb:41:1a:54:fe:
11:d6:5f:92:80:a9:7d:a4:25:f5:cd:03:d7:30:b1:
9f:d2:25:62:7e:9f:56:3c:34:95:4f:2d:86:13:f2:
3a:a8:b9:89:61:21:27:77:2e:a6:38:ff:89:7b:0d:
fe:9e:c9:b8:d1:da:68:1f:76:b4:0e:ed:6e:c3:62:
eb:bc:54:a6:5d:ca:25:10:7d:8a:7d:37:db:7f:ca:
94:20:23:fb:c5:e8:6b:e9:e8:5b:36:96:32:4f:82:
11:8d:83:68:e1:cf:16:5f:69:02:4f:dd:9a:61:40:
b6:ee:2a:6d:6c:97:af:e5:02:ce:b6:bd:38:57:bd:
a2:bc:9f:0f:68:84:5f:97:0e:30:56:29:23:b1:dd:
d3:1b:38:ec:7d:76:3d:6a:76:77:f2:bc:7f:ec:09:
65:d1:c2:63:4f:d7:c6:24:c6:89:4d:d1:72:45:84:
1f:a6:b2:2d:b6:8e:3f:c3:15:77:1f:ce:b1:b8:55:
ae:82:86:a7:a1:4c:3d:59:43:71:67:ab:07:5c:64:
32:ac:d7:f0:d9:e2:78:cc:76:07:44:98:0d:a5:b4:
94:05:92:8a:57:c2:33:0c:8e:74:93:62:13:02:7f:
c3:0d:a9:27:93:7b:ed:d9:49:04:b7:81:28:4a:37:
4b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E2:7E:63:49:B1:1D:E8:E4:D7:97:E1:9F:0B:FF:C0:34:64:55:DA
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:83:71:8c:5c:2f:02:b4:14:ac:a3:17:98:ba:de:f5:6c:88:
15:5b:25:ca:62:37:88:41:f2:22:38:6a:97:4e:b6:30:69:d5:
f5:80:f3:1f:96:4a:63:9a:68:fe:01:f4:36:28:f2:53:17:56:
35:24:fa:2f:86:b8:b4:0b:1a:e1:16:b1:8a:80:fb:c5:0c:34:
38:ec:75:86:c8:7d:d5:9e:9c:59:b5:81:32:90:47:f4:5c:d1:
3d:e4:25:44:91:ba:2b:f2:21:00:b1:8e:0d:c8:44:68:24:a1:
77:f6:c2:4c:ab:6f:6b:0d:30:e2:cd:5f:50:22:fa:66:d7:43:
47:e0:99:a7:95:42:8f:70:91:f2:b9:77:83:6e:a9:5e:77:45:
c8:e6:9d:71:5a:d2:06:50:9e:19:e5:17:f7:8e:fd:ee:1a:20:
a3:00:2d:54:76:84:a4:2e:ea:0d:13:f5:8d:41:06:94:d0:ab:
9e:91:7d:4d:3d:28:85:79:c2:b8:94:01:cf:6c:76:90:74:8c:
4a:e5:c7:db:8e:cb:36:0c:02:7b:c8:45:bf:20:a8:ae:df:76:
14:91:c8:9c:e0:d7:e6:23:7d:1c:0b:4c:a7:b5:6c:dd:f0:f6:
d3:ad:1e:18:93:77:4c:02:13:62:bf:63:fe:7e:2f:7f:c1:4a:
86:23:6b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:18:19 2025 by rpki-client