Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: D173FUoUwWBez9qS/McoM7SiPN6puB6TyW/yLLygE94=
Subject key identifier: 5D:B2:5A:36:01:47:44:45:DD:7F:93:C6:0D:89:D7:B5:1A:43:3A:58
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 01974779B7DB092421D8A827F55CAD16AD9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 1455
Signing time: Fri 06 Jun 2025 23:00:48 +0000
Manifest this update: Fri 06 Jun 2025 23:00:48 +0000
Manifest next update: Sat 07 Jun 2025 23:00:48 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: shHye3iyZyzCGJeEACmuNBEm4G2HICm8DCzIRwtbACQ=)
2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:b7:db:09:24:21:d8:a8:27:f5:5c:ad:16:ad:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jun 6 23:00:48 2025 GMT
Not After : Jun 7 23:00:48 2025 GMT
Subject: CN=5db25a3601474445dd7f93c60d89d7b51a433a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:ec:54:7c:32:78:5f:26:bf:b5:c5:01:85:
3c:b3:0a:d2:45:53:c6:a5:a6:fe:fb:43:b9:e5:fa:
26:7b:7b:06:23:32:5d:16:60:28:3f:5f:72:32:7d:
2d:dd:30:6d:6a:5a:f4:f3:3d:23:91:c2:5b:14:af:
64:aa:c0:32:5c:78:e3:70:e3:c7:75:59:cb:d7:51:
55:56:bb:3a:4e:a9:d4:ca:3a:7c:03:ed:90:60:43:
ba:a7:fd:c2:f7:45:af:e4:75:4a:d9:1d:62:8e:25:
05:02:54:ba:76:8b:2d:88:1b:d6:bd:2c:6d:2c:9f:
59:14:61:bc:44:fa:ae:61:10:7e:ce:f3:cb:13:77:
2f:09:ff:d9:b4:08:0b:ac:d7:79:57:87:1e:05:33:
e5:c7:ab:73:b7:79:3d:94:ba:77:23:98:01:57:0c:
ee:92:bb:95:63:0e:44:fc:d8:52:15:5e:0b:ab:d0:
e4:1a:36:ba:58:81:25:80:fc:0a:8e:b1:c0:82:40:
1e:e6:d1:68:ed:a4:32:a8:4b:6d:07:00:88:40:a3:
21:ed:08:7c:b9:87:ac:80:59:ae:dd:a9:0c:02:5e:
c3:85:c9:8b:3e:89:f8:5e:85:e3:2a:4e:c9:1d:fb:
4c:84:31:35:d3:a1:aa:34:bb:b8:54:3d:62:eb:15:
5f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B2:5A:36:01:47:44:45:DD:7F:93:C6:0D:89:D7:B5:1A:43:3A:58
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:77:c0:d9:67:be:d7:1a:7f:1c:08:4c:9d:a2:72:9f:fc:4d:
a8:80:b0:56:a3:db:96:58:4e:7a:d5:4d:36:df:7e:e8:c9:d1:
a9:5f:d7:49:be:71:01:4e:3c:ca:53:b3:9a:cd:9e:48:82:84:
e9:5b:ba:0e:ef:7c:fe:35:16:da:48:08:0b:15:4c:6d:aa:7a:
0c:0f:6f:eb:d8:2f:e3:bf:15:95:21:7c:64:54:46:cc:b8:25:
0e:58:df:10:e8:ef:3e:dc:46:f8:92:3a:43:f9:46:8c:ab:07:
8c:ae:25:13:8e:a5:05:f9:e6:7d:5c:00:f2:a4:f3:f2:78:e0:
3f:3e:bc:3a:14:bd:48:f7:70:c7:d8:8c:e9:55:eb:2c:a8:e3:
11:e7:a7:7e:a7:ff:92:1c:55:dc:2a:9c:d1:3f:cf:0c:2a:d7:
ed:94:20:6d:74:e6:6b:02:ed:25:c3:89:a7:72:b7:f7:2d:a3:
51:92:df:1b:60:58:30:41:41:9d:83:96:0a:14:dc:55:c7:14:
56:bc:c0:a2:53:da:a7:e9:00:d2:2e:ae:b0:ed:a5:1e:02:23:
20:13:31:00:5d:d4:21:b6:15:be:47:4b:56:14:75:7f:dd:21:
bf:05:dd:fe:a9:b7:ee:06:af:77:4e:37:71:28:17:3b:fb:13:
9e:15:be:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:05:56 2025 by rpki-client