Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: /xVshGAObB1YqDkEbOVQSt/IW4c3Y8EFuXZaoQBXEtM=
Subject key identifier: 1B:5F:90:70:3C:E9:C8:41:F2:72:70:A4:88:63:3D:40:33:BE:10:34
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 0197771CA05E2E29F631E80992E7E14C6C04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 0203
Signing time: Mon 16 Jun 2025 05:00:54 +0000
Manifest this update: Mon 16 Jun 2025 05:00:54 +0000
Manifest next update: Tue 17 Jun 2025 05:00:54 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: 4Tl6zFuqs27VS0x6jfqJGYQeiU3zN1V0WQdxLNOL+js=)
2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 05:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:1c:a0:5e:2e:29:f6:31:e8:09:92:e7:e1:4c:6c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Jun 16 05:00:54 2025 GMT
Not After : Jun 17 05:00:54 2025 GMT
Subject: CN=1b5f90703ce9c841f27270a488633d4033be1034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e8:e1:b9:b3:d9:e2:c5:15:f2:d5:16:93:26:
a8:0d:8f:59:40:07:b8:20:de:09:3d:05:48:02:07:
0f:13:e2:b2:11:0a:71:e7:d9:4e:99:3f:9d:da:1f:
62:99:70:4c:f9:45:f0:70:7f:a3:90:d4:c6:ca:06:
6d:0f:9c:fd:af:26:f5:32:51:74:fc:f2:af:13:e8:
7d:a8:c1:b6:e6:22:5b:8c:6e:e0:e0:79:24:ef:b4:
16:4d:b4:d7:fb:67:d7:dd:2d:7b:30:7a:2d:be:b4:
d0:28:c7:da:7d:b0:54:aa:4d:d4:2f:94:99:db:cd:
b7:73:3f:f6:54:b6:5a:3f:6f:42:d8:ee:9b:e8:21:
ec:83:07:5d:55:d5:fc:a7:f5:0e:74:a8:33:51:ac:
3f:b7:f9:89:1a:86:80:80:37:5d:cc:cd:19:b5:81:
50:df:7a:3e:20:2a:6e:bb:87:00:bd:04:fb:50:12:
4c:64:99:ab:48:a5:0a:7b:e7:ff:1e:d1:5f:6c:1e:
ef:63:e2:fc:0e:2c:f2:90:f0:e4:b7:c9:e0:39:87:
c6:3d:30:5f:5d:42:51:df:73:c0:10:35:80:8c:2f:
cd:a4:2c:aa:9f:38:c9:9b:9d:37:9f:59:f0:65:25:
be:f0:e7:13:ce:68:dd:49:12:d1:7e:f8:93:69:31:
9a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:5F:90:70:3C:E9:C8:41:F2:72:70:A4:88:63:3D:40:33:BE:10:34
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:03:9d:7f:5a:ee:24:cd:20:ad:96:9d:c8:11:df:c8:8e:3e:
5f:02:62:d3:38:ec:6b:a1:88:fd:11:90:04:8f:e9:6c:02:83:
b6:2e:e7:ee:40:46:3d:f6:35:c2:35:03:47:a8:a1:9c:a4:e8:
96:23:58:0a:92:44:58:8b:ae:02:64:c2:48:d1:c0:d9:b1:38:
e7:f2:b2:eb:42:a2:92:d9:77:f1:af:ad:a7:7c:94:a0:d2:42:
fd:54:73:7a:1c:f2:bf:9f:d4:95:98:19:09:ee:e7:ec:c4:4a:
1e:2b:8d:0e:28:47:dc:b8:71:fd:c3:3e:f6:e5:90:bb:67:2d:
75:84:34:90:36:6b:d9:df:6d:3d:a9:1c:37:11:91:ab:c1:83:
2a:7e:e9:74:f0:59:3a:29:d2:a0:89:8d:ad:6d:b4:3f:7b:54:
0c:ce:92:f6:c2:27:14:4e:e9:87:e3:1b:b8:e6:a3:77:77:30:
39:88:0b:a0:3d:11:d7:19:c1:8c:71:b4:d6:98:f7:b4:41:7f:
b9:72:b4:ca:ee:03:13:8e:38:fc:0d:22:76:dd:3e:2b:63:62:
08:80:eb:01:11:e9:1b:14:ed:43:57:41:72:2e:ea:cf:3d:cc:
60:98:ac:95:21:2d:d1:74:71:87:f5:f4:52:1d:5e:88:41:e4:
43:15:e4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:05:31 2025 by rpki-client