Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
File: x0heKfEYwBvobBnmaPrPpIXecYw.mft (raw, json)
Hash identifier: 5oKQNbRvUogn87WMaz5r9RHVXjPdpx8E5uUQ7U7v1lk=
Subject key identifier: DA:DC:00:AB:29:69:C3:1A:27:34:10:5F:BD:09:D3:EA:3D:6B:A7:50
Authority key identifier: C7:48:5E:29:F1:18:C0:1B:E8:6C:19:E6:68:FA:CF:A4:85:DE:71:8C
Certificate issuer: /CN=c7485e29f118c01be86c19e668facfa485de718c
Certificate serial: 019747B0787AEF87020ED9293B82A534FE28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
Manifest number: 0CA1
Signing time: Sat 07 Jun 2025 00:00:36 +0000
Manifest this update: Sat 07 Jun 2025 00:00:36 +0000
Manifest next update: Sun 08 Jun 2025 00:00:36 +0000
Files and hashes: 1: t18UoHeAEcZ6Yu4NKG2nAheiZEs.roa (hash: RypsXYxji2dJaH2ZVLBlo3yRoSbmcerkP3rshZoohgo=)
2: x0heKfEYwBvobBnmaPrPpIXecYw.crl (hash: 3MXxYnIG/a4sJZqtLN6HvE/8tp83YouJNor6ANtRLqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:78:7a:ef:87:02:0e:d9:29:3b:82:a5:34:fe:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7485e29f118c01be86c19e668facfa485de718c
Validity
Not Before: Jun 7 00:00:36 2025 GMT
Not After : Jun 8 00:00:36 2025 GMT
Subject: CN=dadc00ab2969c31a2734105fbd09d3ea3d6ba750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9e:f7:66:de:a7:02:5f:47:83:6b:d3:e8:f7:
24:c3:67:2e:68:12:a8:8a:69:9f:34:51:42:c4:8d:
9d:e7:33:e3:cd:45:8d:80:b9:5e:fc:23:e7:a6:c2:
81:3f:89:7c:d8:0e:0c:51:be:17:46:ef:84:9a:55:
78:99:5f:47:d3:c5:94:89:b9:c6:b9:b1:32:db:a8:
63:1c:4d:95:df:3f:09:84:a1:d2:55:5f:e2:03:1f:
14:2f:ce:8d:f3:c4:c7:ea:41:42:70:15:b2:5e:74:
99:27:dc:29:00:fb:90:7a:df:d7:22:40:32:04:91:
d5:40:1b:23:12:d0:15:64:54:31:ed:11:09:fd:d2:
e9:f0:5a:2a:2d:e9:6d:16:36:9f:71:c3:9c:cc:0c:
9a:b4:a4:b2:4d:b6:2b:57:87:3a:a7:5d:f8:43:d9:
dd:a0:3f:09:32:d0:18:c0:7b:5a:ce:21:59:d0:8f:
c6:41:f2:ae:39:42:22:f7:f7:85:74:2f:b5:7e:ef:
58:e3:94:00:28:ec:ad:16:50:2d:4c:40:61:7b:4b:
b1:27:35:e9:0e:c7:bf:cc:8d:e6:6e:9e:a7:e1:09:
1d:5d:72:ec:d6:52:f4:14:3c:6c:42:e2:c5:d1:3c:
1f:50:fa:34:e3:a7:83:4d:db:5a:da:18:e8:c7:9c:
c1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DC:00:AB:29:69:C3:1A:27:34:10:5F:BD:09:D3:EA:3D:6B:A7:50
X509v3 Authority Key Identifier:
keyid:C7:48:5E:29:F1:18:C0:1B:E8:6C:19:E6:68:FA:CF:A4:85:DE:71:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:98:03:d5:78:c6:62:ab:09:dd:02:e9:3b:5e:9c:43:cb:b5:
bf:98:7b:75:88:f3:74:3b:27:7a:3c:f4:cf:de:49:22:bd:2c:
f3:d2:79:57:6f:3d:7e:7d:58:b4:d5:eb:0e:3a:2d:bb:d0:4a:
f4:47:f8:cf:86:cf:26:c6:19:be:8f:b3:15:8a:86:65:2f:f8:
ca:a2:26:48:bf:b4:6a:60:af:8d:c7:a7:1c:81:5b:26:62:3a:
97:41:41:e9:37:94:4a:7e:24:9d:08:d3:45:dd:17:91:ee:99:
98:72:bf:00:9f:d9:48:ec:a7:86:30:35:c8:b2:61:89:b6:62:
b0:b5:91:26:6b:66:9e:c3:e4:4d:9f:f3:8a:eb:d0:fd:de:22:
e0:69:71:05:12:3c:57:ac:fa:f9:1c:90:a0:65:2b:cb:96:75:
38:41:c2:ca:61:c1:d2:f4:88:27:52:bd:01:e9:18:77:cf:09:
e9:9d:52:ef:73:f8:0f:bc:20:11:71:40:73:b5:da:67:1b:b7:
38:00:ea:ce:f6:f5:1f:f8:35:b4:55:00:68:c4:9c:dc:03:25:
51:e9:dc:62:a6:de:42:af:1e:1f:14:35:2e:3c:02:67:37:bc:
54:44:22:9f:3b:03:51:0e:6e:83:14:dc:56:32:30:d9:82:84:
e1:63:51:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:19:10 2025 by rpki-client