Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
File: 670ir7gN-togA9QOVG2v03_4af0.mft (raw, json)
Hash identifier: oOU/l6ECDrQysbQR6ZSBUTg9Pa4cEzRSz1+K6Kjmfx0=
Subject key identifier: A3:70:13:4A:1D:88:42:CB:6A:14:39:06:2B:E7:C3:8E:F2:39:AA:4C
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 019779E63776F62B5708C60A2B46103EDBE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
Manifest number: 048A
Signing time: Mon 16 Jun 2025 18:00:19 +0000
Manifest this update: Mon 16 Jun 2025 18:00:19 +0000
Manifest next update: Tue 17 Jun 2025 18:00:19 +0000
Files and hashes: 1: 670ir7gN-togA9QOVG2v03_4af0.crl (hash: rn3xeSsMiRl7l0duP5YlDNN3Nvo5a191wBIVFG7gbuI=)
2: Lg69_8_Hwhk8sLJu5EjPC6QyXmo.roa (hash: KXCYGeobuTRdhwIdNvFIRapr7Co2MUanxSVUEVx8L70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 18:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:e6:37:76:f6:2b:57:08:c6:0a:2b:46:10:3e:db:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Jun 16 18:00:19 2025 GMT
Not After : Jun 17 18:00:19 2025 GMT
Subject: CN=a370134a1d8842cb6a1439062be7c38ef239aa4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2c:97:58:28:98:04:07:bc:14:96:1e:75:2a:
01:d0:01:0c:bc:14:6d:96:d6:b0:ae:c3:e3:af:64:
1f:8a:81:be:5c:90:42:08:3f:34:c0:cd:0a:eb:c3:
8e:06:ee:a0:58:1f:e1:10:fa:fc:bb:f8:f0:82:94:
f9:80:59:92:2e:6f:03:fb:f0:ff:ef:a1:10:7c:3b:
02:ee:9d:0b:c5:91:0f:59:f5:55:74:ea:73:a2:53:
34:ea:20:b0:46:21:bf:6f:39:44:5b:fd:c3:6a:99:
07:26:7a:9f:1b:43:4c:8e:49:86:08:75:74:ff:9b:
34:4f:ac:e7:7a:1b:94:78:85:6a:08:15:bf:16:85:
54:9c:af:8f:9e:88:b2:cf:2e:90:6b:3a:1f:ec:85:
65:ff:12:01:e0:27:60:49:cc:cf:0f:8b:14:93:f1:
5d:4d:1d:64:06:f1:c7:94:d1:72:a8:d7:28:e0:fd:
68:8c:16:c7:ca:e5:9b:91:0a:84:98:67:51:9e:a7:
f4:4e:c1:7c:0f:14:32:3c:17:bd:2b:31:79:7e:96:
77:30:13:24:cc:3a:2d:b9:b3:20:a9:8e:8a:57:01:
97:68:94:2b:a1:87:23:28:d5:3a:3e:e2:9a:87:aa:
a3:fb:3b:db:6f:b3:7b:cd:1f:8e:1e:d9:24:b8:64:
3b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:70:13:4A:1D:88:42:CB:6A:14:39:06:2B:E7:C3:8E:F2:39:AA:4C
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:67:63:36:4e:51:86:be:8e:4b:88:c7:c6:6d:de:58:fe:19:
9f:0d:87:b5:4e:4d:60:1c:4e:7e:81:62:c5:eb:79:7a:26:74:
96:07:5c:f7:ca:d3:d1:2b:83:a7:ed:bf:5c:de:45:54:e1:6b:
02:2d:85:73:6c:b4:1f:82:27:b0:db:b5:24:79:18:5a:2b:a9:
6b:85:bf:99:3a:70:37:02:b7:60:58:18:3f:a4:62:24:0e:6c:
31:71:d6:d1:95:41:8e:5c:fc:e8:d1:47:22:1a:2a:f3:c9:ed:
83:52:dd:68:37:ba:9f:49:aa:0b:e4:3f:ab:0d:10:18:bb:e4:
91:f1:a1:8c:d3:e8:c2:74:3d:8e:d3:1a:44:d2:55:38:87:80:
d5:62:fe:c1:0b:01:c7:e6:ba:bf:97:df:9d:aa:eb:03:4f:fd:
ac:dc:cc:5f:87:72:bf:22:f6:26:b0:75:4a:f2:d2:e0:ed:74:
31:6c:97:9e:00:6c:72:09:e2:ee:9c:3d:cd:fc:13:4b:92:64:
81:3b:e8:3b:21:bf:9f:47:18:96:3a:34:40:64:14:0a:89:83:
87:d3:e0:a1:4a:a3:a2:6f:0d:e1:27:37:78:7b:73:a1:7f:e5:
60:92:09:27:34:d0:3d:8a:5b:11:b9:d2:a9:20:49:61:0f:ef:
c4:3f:26:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 04:39:03 2025 by rpki-client