Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: YFDuEMWrY/ExiPcLjU52bYZ1fNepz3NEOedxWWOK89g=
Subject key identifier: E4:33:FB:E3:53:AC:34:34:68:BB:7C:A2:84:FC:33:AF:BC:83:40:51
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 01976D74494D87B1ED6E6924F6635F88BBD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 01E2
Signing time: Sat 14 Jun 2025 08:00:26 +0000
Manifest this update: Sat 14 Jun 2025 08:00:26 +0000
Manifest next update: Sun 15 Jun 2025 08:00:26 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: GiE8msQKBTAos2n1HCimKXd8040XOIxVwfUoR37TGG0=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:49:4d:87:b1:ed:6e:69:24:f6:63:5f:88:bb:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Jun 14 08:00:26 2025 GMT
Not After : Jun 15 08:00:26 2025 GMT
Subject: CN=e433fbe353ac343468bb7ca284fc33afbc834051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:44:8e:cb:03:b6:78:ef:41:10:dc:6b:70:cc:
f3:cf:b6:96:40:fa:53:5e:2b:d5:13:88:a9:5d:c6:
11:2c:f9:e4:07:53:7a:87:fb:ed:ae:16:98:44:f7:
55:a6:42:d6:8a:d4:ce:e9:7d:16:5e:03:64:d1:23:
f9:98:59:b3:69:a9:a8:1a:72:99:be:4f:3c:7b:89:
9d:db:13:52:87:ae:82:c6:53:9c:3b:be:ae:f5:31:
54:b3:cd:f8:ed:d0:72:b6:42:3d:b3:4f:43:3c:6d:
88:39:d1:dd:c8:62:f9:a1:84:35:9f:6a:3a:5a:40:
4d:19:34:44:f9:1e:57:43:92:dd:0c:70:27:0e:4d:
d6:00:4e:7c:fc:1b:38:46:83:44:7c:f4:e2:39:65:
74:3f:f9:a2:03:b1:be:3d:d5:91:dd:ec:04:be:51:
b0:51:54:d9:97:1f:2c:0d:01:4f:e4:d1:e1:fb:85:
c1:85:f7:06:22:b5:c6:d2:37:0e:07:7e:a8:fa:2e:
86:45:41:d6:3e:78:95:63:d1:ae:25:fb:99:23:ef:
97:7b:3b:e2:38:30:d6:e8:4c:23:f3:ad:ee:5d:51:
a2:81:a0:1f:00:3e:5b:7c:27:95:77:aa:04:f8:60:
82:1e:2e:0e:6a:2f:4c:09:6f:3b:b4:4b:3a:0f:8b:
b8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:33:FB:E3:53:AC:34:34:68:BB:7C:A2:84:FC:33:AF:BC:83:40:51
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:62:9a:71:87:30:24:ec:7e:15:06:3e:8d:57:de:58:a1:73:
de:c1:15:61:f4:c4:b6:84:bf:55:b4:5c:04:56:d2:e9:81:bd:
79:9a:6f:44:3e:fd:52:72:de:91:6b:5f:89:c0:41:55:4e:2f:
6f:81:0b:40:a3:b3:c0:d3:57:43:ca:08:cd:c9:99:1a:48:63:
84:80:e0:38:21:8b:01:bb:e1:bf:39:97:e9:3e:ff:5d:db:9a:
6b:fa:1d:d9:76:74:05:f3:4a:51:a1:7d:45:ba:85:a1:cf:97:
4c:75:2f:28:ca:83:21:3c:dc:e9:4e:60:ff:36:fe:1b:ac:9d:
e2:ac:6d:bf:7d:71:66:d2:45:18:54:62:d1:9b:ee:1e:ef:1a:
54:ba:73:a2:4a:08:0a:3d:25:3f:94:31:9b:05:13:69:02:55:
c2:cb:d2:69:d0:b2:44:e6:48:59:7c:db:37:6b:aa:f7:3b:e2:
66:d7:0d:af:3c:fe:a0:4f:8f:93:32:01:33:10:5f:72:dd:af:
9d:35:89:c6:b0:d2:09:9e:f5:6a:22:a4:13:46:ea:62:e3:6c:
cd:3f:24:ed:e2:3d:1c:a8:e3:4c:4f:c0:87:09:43:c9:3b:f2:
0e:fa:f5:05:28:4d:23:82:51:a2:44:52:df:d9:12:52:7c:19:
45:dd:d2:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:25:55 2025 by rpki-client