Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
File: pX1M_mD4owpND_lLlOut_IjJrBE.mft (raw, json)
Hash identifier: C+4kVMtyWIBEr/PafshvO+hrCHM0v2eWoHGs9o6i1Zs=
Subject key identifier: CA:76:2A:CC:A7:46:AC:41:BF:BD:CD:37:46:A9:88:C9:C4:F2:48:1A
Authority key identifier: A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
Certificate issuer: /CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Certificate serial: 019768F2E36A47851C43BCECF22C468CB4C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
Manifest number: 0C5D
Signing time: Fri 13 Jun 2025 11:00:37 +0000
Manifest this update: Fri 13 Jun 2025 11:00:37 +0000
Manifest next update: Sat 14 Jun 2025 11:00:37 +0000
Files and hashes: 1: c2KmzgC2E8wnyMl3ET7bbXtsl28.roa (hash: iCu/CgeKq6j6xvBOhyPWL0bUM1p4HmortGMzXWFLmpc=)
2: pX1M_mD4owpND_lLlOut_IjJrBE.crl (hash: RMLhHIuLn3xfmPOi2GkQWGC23nMUx3Fq+RO8v31JNaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:e3:6a:47:85:1c:43:bc:ec:f2:2c:46:8c:b4:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Validity
Not Before: Jun 13 11:00:37 2025 GMT
Not After : Jun 14 11:00:37 2025 GMT
Subject: CN=ca762acca746ac41bfbdcd3746a988c9c4f2481a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9b:23:58:2e:f4:48:ab:a3:5d:dd:95:69:e9:
9b:85:6b:f6:31:3e:53:a3:04:80:d9:94:ad:f2:3b:
6d:72:77:6b:de:28:c0:0d:73:32:f6:70:c2:74:55:
fc:b8:c1:56:44:99:56:1e:40:cb:20:ff:c1:62:68:
77:5a:d1:00:97:71:11:59:b3:cc:c1:1b:d5:9c:47:
a6:36:2d:88:e3:8f:8f:ca:ba:0a:df:ed:41:4c:bc:
a3:bc:3e:54:23:cf:0b:86:55:d8:60:b2:47:06:88:
bd:9d:cb:33:81:05:7d:73:13:fa:7d:bf:46:92:17:
ca:04:e9:7c:c4:7c:12:98:8a:2b:84:ba:78:62:ad:
65:c5:1b:cb:5e:57:7c:ce:33:c2:ab:c9:63:93:40:
89:6d:c9:3f:13:a2:5c:b6:29:6a:d6:d0:6b:a2:c9:
1d:0d:36:54:a1:ea:a7:f3:ca:80:1b:0a:7d:eb:dd:
38:a8:7d:1f:14:68:db:11:78:4e:34:88:69:16:63:
39:b9:7c:a6:00:51:2d:0c:99:eb:8d:98:60:28:9c:
fa:aa:46:ed:88:fc:1d:26:8e:9e:a1:e6:75:6a:8f:
e0:0a:2e:be:6f:3d:af:d7:b3:67:41:3c:d5:11:71:
5b:e8:1e:41:8a:c3:27:da:86:4a:2d:88:80:62:d4:
d9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:76:2A:CC:A7:46:AC:41:BF:BD:CD:37:46:A9:88:C9:C4:F2:48:1A
X509v3 Authority Key Identifier:
keyid:A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c2:4a:ea:b1:57:53:ab:8e:d9:db:75:87:3c:39:ef:07:fa:
f2:0e:b8:8c:b8:40:58:f8:0f:20:68:22:99:a8:13:1a:31:67:
d3:f3:22:a7:5a:e5:fb:0a:cf:f7:d2:3b:2a:a8:30:4d:8e:a5:
88:cc:98:9f:2a:f4:98:63:96:15:81:70:b8:96:0e:b5:67:c7:
5e:c2:8c:1b:6f:4a:c6:4b:f8:0f:29:5b:97:e9:f3:0a:03:e9:
26:8e:b2:9d:97:ff:8a:95:35:78:1d:9c:98:cb:9c:eb:05:da:
1e:6c:26:d2:65:07:83:ac:77:65:e5:06:1b:c3:f4:49:32:0e:
0a:b4:1b:04:8b:ba:04:6c:8c:82:df:4e:8e:d9:2c:5b:ef:d4:
1a:7c:bb:81:89:ab:a9:59:b9:7e:1e:da:f0:ac:3c:f4:08:d6:
14:52:84:b8:01:55:5d:43:d8:39:35:a2:ff:22:3f:c2:84:d5:
62:20:4b:f1:49:31:fd:72:d3:c7:5b:f8:75:1c:f9:5b:b3:19:
22:a4:e1:5f:2b:89:26:09:ce:18:45:18:f2:d9:ff:7c:a5:4c:
44:42:ac:bc:1d:66:4e:1b:42:bf:83:6a:9f:cd:c7:8b:ac:08:
29:aa:b1:b7:38:45:35:e0:58:bc:4e:ed:77:38:db:ba:28:3e:
84:ad:80:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:56:23 2025 by rpki-client