Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
File: 0nuHf4mTQSab7GfG46CoiLp66Y0.mft (raw, json)
Hash identifier: oUJ3/IDvvFq/H1m5G2K8xPbciutrHDjxH2A4nvIWv6s=
Subject key identifier: 64:79:18:35:42:33:10:17:5D:F4:8E:F1:1C:9D:53:5A:88:06:8C:06
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 01976C2AC60D969DE7812DF79F22134B0B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
Manifest number: 0993
Signing time: Sat 14 Jun 2025 02:00:31 +0000
Manifest this update: Sat 14 Jun 2025 02:00:31 +0000
Manifest next update: Sun 15 Jun 2025 02:00:31 +0000
Files and hashes: 1: 0nuHf4mTQSab7GfG46CoiLp66Y0.crl (hash: eR7d2t0cp34tY5WANjvU0Cc9tDaFicMAasxxYnJIxkw=)
2: PdXLVimBA8zILWLashg1LUqBqm8.roa (hash: IrtzMysR6KSQR0SZiM1b2jUK5M57dKBFlK4qFH4B+Mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:c6:0d:96:9d:e7:81:2d:f7:9f:22:13:4b:0b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Jun 14 02:00:31 2025 GMT
Not After : Jun 15 02:00:31 2025 GMT
Subject: CN=64791835423310175df48ef11c9d535a88068c06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:46:31:a9:a3:f9:19:9c:b0:23:35:cd:65:e5:
0d:f7:b0:e6:73:ca:0c:a0:1b:9a:79:11:3a:bb:35:
3d:8e:97:f9:ea:3f:78:66:19:41:40:6a:4c:b9:41:
4e:b1:79:b0:c9:bb:02:2e:6e:95:4e:15:5e:2f:5a:
09:eb:48:8c:0b:c7:20:c6:a4:08:ef:f1:cf:9d:ca:
78:0e:40:2a:d7:b4:79:55:47:0d:15:0c:0e:57:14:
c2:ab:e3:5f:c6:63:6c:63:03:9c:a2:8b:4a:72:d8:
75:6a:d1:0c:d0:9c:3d:01:1a:6d:a5:d2:5b:85:36:
69:6d:0f:17:72:fa:02:6e:41:fe:55:78:bf:e5:46:
e0:11:fa:9f:c1:96:df:33:5f:df:3d:ef:19:dd:9e:
bf:69:04:97:89:be:cd:17:88:19:47:74:de:aa:5b:
9d:9d:27:3c:f6:02:d9:1a:51:ab:73:a4:04:38:32:
1c:ba:fc:48:e8:ba:20:9e:f9:99:d7:e0:80:9d:71:
4d:e2:55:74:3c:f1:1c:65:09:4b:46:46:b5:95:57:
7c:77:6d:8f:47:ce:5c:8b:53:0a:60:e4:2b:d7:2b:
84:6d:f0:54:4a:61:d9:a1:80:25:5b:4d:f1:29:f3:
85:be:46:59:59:d1:3e:fc:f9:59:95:d1:4a:67:d1:
f7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:79:18:35:42:33:10:17:5D:F4:8E:F1:1C:9D:53:5A:88:06:8C:06
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b2:91:12:86:2e:82:7a:49:43:76:be:16:d0:93:6f:1f:45:
21:26:c1:1a:36:fa:b1:ad:e7:bd:27:5e:52:88:98:c2:d1:e9:
9c:15:35:eb:9c:e4:6f:e9:a2:82:f2:a8:34:a6:ad:a1:89:0e:
cc:20:e4:49:c5:bb:cd:d2:dd:a8:7c:0f:a7:5e:3b:92:0b:6e:
c1:68:b9:17:2b:b8:d8:d5:61:f5:cc:5f:a8:20:61:8b:06:bd:
77:f4:e5:e4:89:12:a3:89:a9:c2:f3:ab:00:29:04:51:09:6a:
9c:25:92:f2:c3:a9:cb:b1:b4:63:37:2a:8d:85:62:b0:d8:93:
b6:52:6f:23:1b:85:6b:5a:a1:75:c1:86:4c:de:27:14:4d:22:
36:c7:8a:7d:9a:c2:e6:c6:ce:74:d7:08:e3:b7:ed:11:a1:8e:
4e:05:06:6a:86:89:63:bb:f9:d0:72:51:26:ae:8e:87:5f:1d:
2e:e4:03:13:bf:89:27:fd:42:5f:b5:b3:82:87:71:d9:80:63:
22:2e:05:7a:43:45:a8:97:f4:6e:52:f1:08:aa:49:6a:48:d9:
0a:b4:0e:42:21:a7:6a:2d:d6:2b:c1:8d:d3:18:64:f2:36:9a:
74:24:3a:49:1b:6f:b6:94:2e:bd:7e:b1:53:fd:e5:de:2d:23:
64:55:45:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:14 2025 by rpki-client