Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
File: a0P3ovQ2ixel4DXOS9km-KFC1os.mft (raw, json)
Hash identifier: WXX+6fQncjvepoWonW4eX/sonzSudxEOfUK1aGqsw50=
Subject key identifier: 3B:02:C7:B3:D6:28:D2:90:4D:A5:6B:78:1D:03:C3:50:81:DA:3F:4A
Authority key identifier: 6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
Certificate issuer: /CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Certificate serial: 01974A0C9A699426E02A707F916F3225525B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 11:00:29 +0000
Manifest this update: Sat 07 Jun 2025 11:00:29 +0000
Manifest next update: Sun 08 Jun 2025 11:00:29 +0000
Files and hashes: 1: MRvoKs_tNg3-xTMgCbueoBg-yMU.roa (hash: lEsMSNpmyZrLO0pVpESTwzarMUanf5zfZ6XbX+ha5s8=)
2: a0P3ovQ2ixel4DXOS9km-KFC1os.crl (hash: wG6oF+D5429S8I/bsASIgtvtcVxmIJQMuWWr1OVC2hM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:9a:69:94:26:e0:2a:70:7f:91:6f:32:25:52:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b43f7a2f4368b17a5e035ce4bd926f8a142d68b
Validity
Not Before: Jun 7 11:00:29 2025 GMT
Not After : Jun 8 11:00:29 2025 GMT
Subject: CN=3b02c7b3d628d2904da56b781d03c35081da3f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:30:ea:01:70:24:a7:96:79:e6:32:7e:c5:5b:
56:42:72:bf:35:1d:6f:28:d4:aa:16:1f:6d:4e:08:
62:f9:1c:b0:14:c2:64:d1:27:e4:57:34:1b:90:ca:
8a:9e:95:92:b6:37:da:0a:1b:4c:43:9b:d1:83:21:
cf:e3:a9:18:dc:a4:fd:5a:03:8b:8c:8b:e4:02:f1:
9c:08:11:2e:77:e4:6b:78:d0:d0:18:e6:14:63:0a:
68:c4:41:db:e2:b3:02:e0:cd:7b:68:25:1f:c0:59:
63:88:f5:58:bb:42:bf:f0:da:7c:26:c1:3b:dd:3c:
90:a3:86:25:09:42:d6:98:4a:fa:a5:0c:3a:01:77:
eb:fe:31:8b:3d:44:e8:75:63:ed:e0:10:4c:b8:00:
09:a8:dd:0d:28:ea:1d:30:88:fc:25:06:58:12:8d:
43:32:37:aa:a1:ca:bc:be:1b:d7:3c:7d:96:10:d9:
c6:38:d8:38:f9:b8:1d:eb:a7:81:60:07:ea:a1:17:
3f:32:4b:35:19:f1:77:ad:d3:ba:73:57:b9:4f:ef:
9c:f5:40:bd:ae:da:e2:06:3c:de:32:ae:c0:4f:da:
4f:08:12:5d:39:5b:0e:72:96:a6:a3:d3:20:75:5b:
02:a4:2f:ae:0d:d4:15:ed:9e:2f:5a:bd:5a:39:6b:
a7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:02:C7:B3:D6:28:D2:90:4D:A5:6B:78:1D:03:C3:50:81:DA:3F:4A
X509v3 Authority Key Identifier:
keyid:6B:43:F7:A2:F4:36:8B:17:A5:E0:35:CE:4B:D9:26:F8:A1:42:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0P3ovQ2ixel4DXOS9km-KFC1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ba7dba-474a-42fd-a9c3-35b03136dd03/1/a0P3ovQ2ixel4DXOS9km-KFC1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:99:a2:d6:73:f1:a9:d1:c0:0f:6f:67:d7:3e:51:24:36:a8:
89:63:63:36:0f:ab:3d:d4:97:5a:b4:05:4b:d9:cc:46:46:64:
94:cd:e2:05:64:80:af:2a:63:13:4c:59:5e:51:38:21:f3:0d:
e0:da:e8:3c:22:07:47:94:a6:ef:33:3b:8a:9c:41:63:7f:f9:
42:c8:ce:80:42:f7:09:c2:26:e0:14:de:e2:f8:46:e9:75:1b:
e4:54:47:3b:43:dc:33:0b:0f:00:0b:0b:83:19:07:0f:07:e5:
68:8f:ff:7b:a4:c4:08:38:f5:a4:a5:a9:ac:db:2c:11:bf:08:
d6:4c:54:23:93:86:49:37:28:f3:90:d7:f7:36:3b:c9:83:20:
cc:98:e8:75:ae:78:5c:c7:dc:6f:58:c6:46:9d:3b:d6:20:3c:
5d:db:3b:64:e4:f9:3f:d2:e1:91:8e:a8:b4:a2:61:6b:1e:61:
24:6a:05:89:b6:f3:f1:73:a4:6e:28:ec:18:6a:ea:d7:af:69:
9c:eb:39:5c:62:12:7a:ff:6a:00:57:a4:f9:9b:d3:5f:99:b0:
b5:8e:f8:d5:c8:40:f0:29:83:0c:42:54:3d:35:85:c0:88:c4:
ce:b3:cd:6f:6d:de:42:66:33:84:a7:7d:20:7d:e0:2b:40:bb:
a1:74:ef:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:13:11 2025 by rpki-client