Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: qRG83LEUxa0iu93BwiGum5j/7kOn6LFP6LEOmay6RtY=
Subject key identifier: 5F:D2:D5:DB:70:F0:D8:FB:40:57:46:15:65:A3:35:2F:AA:97:59:A7
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019746D4A581CB56812E70E0C2BC3D7E3BEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 0123
Signing time: Fri 06 Jun 2025 20:00:30 +0000
Manifest this update: Fri 06 Jun 2025 20:00:30 +0000
Manifest next update: Sat 07 Jun 2025 20:00:30 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: JlJJXt5pOhcuZYEopzEA9pla837FnbZtp1tGrl3B3XQ=)
2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:a5:81:cb:56:81:2e:70:e0:c2:bc:3d:7e:3b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Jun 6 20:00:30 2025 GMT
Not After : Jun 7 20:00:30 2025 GMT
Subject: CN=5fd2d5db70f0d8fb4057461565a3352faa9759a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:42:14:94:e9:71:21:79:a6:7f:ba:82:24:1c:
3a:46:4b:9c:20:0b:72:19:67:e0:e4:b2:74:ee:0d:
a7:82:53:74:b2:a1:bf:56:cf:d2:98:3d:11:f2:f6:
7b:cc:b9:ef:cc:d5:e9:c9:24:8e:8a:66:48:d6:3c:
ba:b5:e8:e8:9f:c8:f9:c2:62:ae:b5:c5:01:14:35:
3c:8d:1e:f5:30:be:24:e8:ff:50:a4:e1:aa:8b:8b:
e4:0e:b5:98:79:33:8a:bf:64:7d:fb:5e:e4:74:dd:
cd:ff:3f:6b:53:f6:20:75:4f:2e:28:e2:a5:3e:cc:
d1:77:87:cf:cc:ee:1f:14:d2:15:49:40:64:4b:1b:
85:99:be:5e:93:de:b1:a8:eb:f9:b1:da:c5:01:82:
ae:f9:44:3b:10:4a:2d:70:c1:f9:0b:bf:c7:87:ee:
56:68:98:c3:c0:3f:ca:68:84:4e:81:17:af:fc:32:
8c:df:04:14:51:9e:e5:f6:52:d5:75:6a:b5:d2:38:
7b:94:c2:b2:46:07:d6:56:5c:1d:c3:dc:49:32:f3:
4f:6b:3a:21:60:b6:ad:06:8c:79:7c:84:c6:d6:85:
27:e1:74:bc:62:61:12:ed:4b:fc:73:04:28:78:1f:
08:fa:fe:17:54:f3:84:14:71:17:65:2a:ad:b3:b0:
fa:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D2:D5:DB:70:F0:D8:FB:40:57:46:15:65:A3:35:2F:AA:97:59:A7
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:97:a4:b8:be:02:63:38:ce:07:48:52:ca:1d:d4:0a:af:6c:
f3:0f:10:cb:d2:73:a3:fc:73:24:2a:f4:5d:0d:ce:c0:37:b1:
e5:d3:d6:58:be:75:5e:26:a4:63:99:e9:10:0f:99:6f:e7:20:
bf:78:70:87:a0:fe:b6:a0:7e:63:5b:7f:e9:a9:60:ad:97:a0:
af:68:8a:89:3d:d4:c8:05:f6:f9:4f:6b:58:b6:5c:90:85:c1:
71:76:e3:7c:04:86:b7:69:0f:09:59:fb:e4:b3:f5:99:da:c4:
52:af:f4:a0:1e:4b:72:4d:94:10:61:ac:d9:1f:e3:4e:1f:5b:
5f:21:b6:02:11:0f:42:0e:9b:2f:2f:a4:7e:a1:65:3a:d9:35:
47:18:1e:1d:95:1a:d7:cc:f3:58:5c:46:f3:99:0f:b8:04:1b:
0e:42:1b:58:20:9a:48:df:07:8b:c2:5d:97:3e:5b:19:98:86:
52:28:a9:83:dd:70:0a:7d:67:97:47:a5:f8:d3:7a:23:00:c9:
07:55:75:d1:d5:c8:1b:3a:fa:5e:0a:b8:36:da:6f:9c:7a:3d:
1a:3c:09:f0:00:9f:10:da:98:13:9c:41:f7:4c:17:33:29:ae:
1a:ab:c8:89:cd:5b:97:79:97:81:84:b4:15:6e:b8:42:97:ee:
ea:0e:f7:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:13 2025 by rpki-client