Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: aIcnVuu3d2IXmUSk6K9TjTSZdxy0ykNYjuixR7uM6DE=
Subject key identifier: 50:D0:26:80:CE:A7:8F:C6:C1:9C:29:15:D2:50:D7:81:31:94:87:CA
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 0197499F73A8DBF2F02145469303E74A4427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 09:01:15 +0000
Manifest this update: Sat 07 Jun 2025 09:01:15 +0000
Manifest next update: Sun 08 Jun 2025 09:01:15 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: rE3npwW/nt4aiOaG7A913HDJTsOMA2qHgcF8JoiX7+w=)
2: yWi1Y-nakOmyfRqesRZIzBZCSpo.roa (hash: XIYZfLdl8kZlRiSAj90PT17pvRJ8h9U9zRjI6i+BCkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:73:a8:db:f2:f0:21:45:46:93:03:e7:4a:44:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: Jun 7 09:01:15 2025 GMT
Not After : Jun 8 09:01:15 2025 GMT
Subject: CN=50d02680cea78fc6c19c2915d250d781319487ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2c:1b:74:fd:34:e8:78:36:a1:16:5b:e6:be:
0d:69:79:9e:ba:67:e7:1b:f1:e7:58:45:76:18:4e:
09:4a:d9:99:6f:ff:d1:43:5d:b9:35:6a:12:3c:a4:
ea:29:46:dc:7c:23:c2:e1:33:88:25:93:a1:6f:c7:
27:81:e7:e2:ad:33:f6:f7:6b:5b:44:27:af:df:9b:
bf:97:5c:df:22:85:f5:69:57:4a:08:f0:4d:0e:93:
ed:b0:ed:29:f5:2f:e9:e6:c0:ae:a6:b0:36:0f:52:
a7:7e:2a:3d:bc:d9:73:f0:49:6f:1b:8d:e6:56:95:
51:0b:0e:57:e8:e8:59:89:2a:67:cc:ed:cf:8e:4e:
8a:89:6e:95:cb:9c:6e:5d:47:6d:21:31:33:6e:ac:
d0:ae:a8:95:4d:53:fc:57:3e:13:65:e8:24:19:cf:
c6:8a:c3:ef:0c:23:7e:78:a1:14:36:a1:b3:ff:53:
3a:0b:cd:25:33:91:35:be:13:9f:aa:e0:08:f9:7b:
f8:dc:91:57:e1:92:ea:8f:8a:90:4a:45:71:af:c1:
0a:89:77:c0:c1:af:aa:2f:73:7a:7d:2b:fd:7c:1d:
52:0c:18:21:b2:b5:fe:9d:ae:f2:4c:98:05:a9:b4:
f9:53:3f:3e:27:5e:f4:0a:6e:60:fa:aa:7c:82:2a:
f1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D0:26:80:CE:A7:8F:C6:C1:9C:29:15:D2:50:D7:81:31:94:87:CA
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:02:1f:11:a4:cc:7d:95:6f:c7:a3:0e:44:cf:9b:3b:de:39:
c9:ea:00:f4:a4:56:7b:31:4a:b4:1a:74:91:9a:ae:f3:97:9c:
29:14:a4:2f:f1:cd:c9:cb:59:3d:1b:df:c0:ca:11:4f:eb:8e:
5e:0d:1b:81:ab:94:bc:37:5e:64:cf:f8:30:1d:dd:81:3f:ca:
18:70:a7:97:ac:3f:31:66:d5:b6:17:5a:ec:ea:51:04:f9:c2:
75:46:15:0e:04:96:50:a8:a4:24:9f:db:6d:8e:87:4f:0c:c3:
6f:5a:51:47:23:42:3a:c6:c9:57:f9:d6:e4:be:ff:d0:60:a9:
ea:04:f7:45:21:ec:83:23:68:ec:6c:08:45:e1:12:6a:24:91:
6e:75:90:62:7b:cb:e5:d4:b6:e0:14:87:54:b5:ed:cc:90:55:
9f:be:09:38:92:ef:55:41:55:b8:cb:9a:e6:7f:32:26:92:94:
6e:76:4d:0a:8a:8f:01:00:93:6d:dc:a7:3d:f3:47:be:e1:bb:
6d:55:74:50:05:bf:34:0a:4c:04:0b:45:7c:f8:58:92:87:d6:
a5:92:a8:6b:bb:83:55:7e:10:a6:a2:8b:cc:f0:43:9a:58:d6:
c0:68:a8:07:d9:73:53:af:45:d9:a2:6e:d8:1a:b5:5c:97:c9:
e1:f2:a9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:17:10 2025 by rpki-client