Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: s/YFXMCzuYZ/UaMUMutwS1e5XID6TWjutlz4yvqEL84=
Subject key identifier: 47:F2:03:94:14:87:06:46:43:86:05:1B:1F:DE:B8:CD:44:38:57:CC
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 01974AB1C117D5F3DEB00D68624B5A0DCD25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 0332
Signing time: Sat 07 Jun 2025 14:00:52 +0000
Manifest this update: Sat 07 Jun 2025 14:00:52 +0000
Manifest next update: Sun 08 Jun 2025 14:00:52 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: TMA/QEWbEzV4UPIQHKtd5NeumdapWlAx1eazO3veBq0=)
2: kSER2798uaT4ZEQ3_Ywav1IgXDo.roa (hash: o89fQ/v3jr3XzrvC5mfE9JQZHOaC2hUzybiixeh55JI=)
3: yZlOT6r0_6wmgpAAvcSq6qfpXoA.roa (hash: CFuI4jvHDVJgJ7TNYXPE3aUuvYsSM/+AObIDbJtCPww=)
4: zl7tT8dRR7O1ZujdC0-GhGjBJAU.roa (hash: dZhp70Fm8wBLybFYAH8VTvH36PqVNE1zgwuzpEitFwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:c1:17:d5:f3:de:b0:0d:68:62:4b:5a:0d:cd:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Jun 7 14:00:52 2025 GMT
Not After : Jun 8 14:00:52 2025 GMT
Subject: CN=47f20394148706464386051b1fdeb8cd443857cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8c:67:0b:00:54:2e:96:82:ce:fb:d3:f1:fb:
e9:73:4f:cd:21:77:29:a0:87:a7:ef:bc:32:70:55:
f6:d4:9e:6e:e2:2d:b9:ee:83:c7:dc:3c:76:d3:29:
32:22:95:54:7b:b0:7c:88:cf:b7:86:49:46:07:69:
f9:41:e7:47:06:54:ab:5f:a1:75:a8:7b:65:55:8b:
33:1e:97:4b:b3:1e:ce:98:c9:b4:84:11:cc:5e:7d:
2d:db:da:29:11:db:14:a5:20:f5:c0:8c:0b:14:e8:
2c:e7:b9:df:c4:d5:8f:39:da:e0:d9:a7:9d:86:50:
cc:93:72:5f:76:4e:09:fb:65:ca:e4:ff:e0:a0:3f:
5d:e7:34:91:b1:81:f6:68:92:8a:1c:c7:43:53:a1:
74:b3:47:d5:ad:cc:c6:87:d4:80:5a:c7:34:cc:80:
22:d1:48:16:02:32:e1:cb:9e:bb:7c:fe:4c:9a:8d:
0b:bc:1a:b1:bc:7f:1e:6f:b5:fd:f1:2f:03:58:7c:
a1:20:e8:df:ba:6c:95:b2:32:dd:64:65:0a:a4:3a:
3f:25:1a:ac:eb:6c:2d:f4:54:cc:92:15:df:48:c7:
eb:4c:aa:79:f3:9f:3b:48:fe:56:e1:37:88:05:81:
85:4c:5a:0e:33:e4:9f:75:1b:37:e1:30:95:2d:67:
64:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:F2:03:94:14:87:06:46:43:86:05:1B:1F:DE:B8:CD:44:38:57:CC
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:1f:f1:d4:a7:8d:0e:3e:35:0a:db:30:2c:73:8c:b5:88:6e:
7c:1b:61:cd:88:b8:3e:d9:ab:d6:8a:77:1b:48:03:ac:41:93:
da:eb:d6:5f:a0:b6:8f:12:d1:a5:6c:ed:f2:8f:75:51:26:22:
ac:38:46:66:b9:d5:33:28:4d:1e:bc:1d:ca:33:13:db:9e:42:
7a:3a:a0:3d:55:fa:bf:37:2d:d5:5a:c5:69:13:85:1b:b6:f6:
a1:3c:d5:d1:85:95:ce:0c:0f:12:23:b9:d8:c3:e4:aa:f0:f4:
e7:24:0e:dc:64:52:c9:90:77:a9:4d:53:0c:98:4f:e4:72:aa:
8f:7b:7f:f7:40:d6:7d:1a:63:fe:b6:36:da:1b:9b:11:3c:0d:
e7:47:5a:aa:a4:27:11:f1:c0:f3:f4:76:d5:40:43:61:5d:5d:
f6:cd:ab:98:3a:90:b5:54:eb:fd:38:77:5d:a3:72:ee:d5:ee:
76:19:2a:d2:1e:8c:40:a5:bc:a1:2e:6c:85:95:64:b5:2e:00:
d0:b1:4c:30:23:78:ea:5b:66:48:7e:3d:c4:6b:71:b4:86:cb:
c3:08:06:91:4b:04:25:6f:19:a4:4a:07:f6:c6:d4:11:ac:38:
67:ac:5f:8f:da:13:1d:be:4e:27:9d:4a:37:15:55:fa:ca:30:
a9:fe:c7:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:22:43 2025 by rpki-client