Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: Zlb9ILcimeewXvCShP/s7hYhU+zrRxGUZH+7uzx8Lvk=
Subject key identifier: CC:A2:BF:16:0B:4C:17:1E:6B:F2:13:BB:8E:15:96:9E:AE:DE:30:C6
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 01976C2B5F3C80DA56F7AB5E5FBD0AA45F0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 0297
Signing time: Sat 14 Jun 2025 02:01:11 +0000
Manifest this update: Sat 14 Jun 2025 02:01:11 +0000
Manifest next update: Sun 15 Jun 2025 02:01:11 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: YnambNaDcN1DuZNsKPBdPjPgGjA5plT7gMKlJufrcUM=)
2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:5f:3c:80:da:56:f7:ab:5e:5f:bd:0a:a4:5f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Jun 14 02:01:11 2025 GMT
Not After : Jun 15 02:01:11 2025 GMT
Subject: CN=cca2bf160b4c171e6bf213bb8e15969eaede30c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:70:10:46:a8:66:e6:2a:e9:08:82:8a:b7:ca:
7d:d1:67:e8:65:86:ae:e9:bb:63:d5:e1:b2:a0:be:
51:c5:a3:9f:f8:15:35:e7:53:eb:2b:a0:f6:d6:f5:
27:24:a8:3c:a2:6d:48:78:03:22:66:e5:6f:3c:12:
17:36:68:fa:00:c0:d7:7d:c8:ec:86:ca:ed:ec:eb:
f4:55:23:57:11:5d:b5:71:3c:c1:88:11:21:f2:3a:
03:dc:c4:c6:a7:53:60:e4:c0:82:11:66:9f:43:6c:
e3:16:bd:fc:36:4a:82:70:96:5b:bc:06:4d:62:08:
b6:33:1e:26:5e:fb:2f:d1:e1:c5:fd:01:84:0e:42:
a0:a0:f1:18:21:f6:e5:0d:50:c7:e5:5b:75:86:e0:
84:3e:45:59:4e:40:34:2e:03:25:71:13:36:af:b3:
07:56:9a:1f:e9:61:91:c5:a3:9c:a3:61:c3:03:48:
d4:9f:26:c8:3d:44:0a:ba:83:ec:2f:ed:8a:d7:c2:
bd:a7:0a:55:95:c6:96:92:80:66:15:53:c6:13:54:
23:06:8c:a2:31:1b:dc:bd:ae:2e:7f:8e:0e:dc:dd:
2f:05:e9:8a:b7:bf:dd:09:3f:10:50:31:28:d5:65:
6d:23:d0:0a:7f:fd:b2:ff:ae:7c:7f:7b:45:a7:7a:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A2:BF:16:0B:4C:17:1E:6B:F2:13:BB:8E:15:96:9E:AE:DE:30:C6
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:1d:f0:7c:e9:e1:aa:83:70:33:bf:8a:b4:63:98:c2:cc:b1:
e4:a4:48:8f:01:47:97:99:4d:b1:0b:14:8f:34:de:6b:bb:35:
89:b8:64:aa:14:6b:83:a1:b4:96:a0:95:9f:84:0b:1a:4b:6e:
12:60:ab:40:a8:40:30:32:05:fc:20:9a:70:d5:9f:72:11:58:
37:dc:ac:7d:d8:6a:c3:16:68:f5:ed:4d:5d:03:2f:97:cd:75:
92:16:4a:54:1e:d1:54:c4:fc:b2:4e:3a:51:dd:1c:9f:39:6d:
74:29:b2:ab:e3:6a:64:fc:30:27:70:4a:e9:d4:40:fe:b3:23:
e9:b8:3d:41:05:cb:05:70:25:67:82:88:ec:fe:ee:0c:66:5a:
db:28:28:ce:25:e1:d4:c4:8b:6f:14:1d:01:9b:dc:dd:0b:17:
0a:bd:f0:d6:12:d2:d0:63:e0:c2:22:f7:59:33:75:10:f2:c9:
50:e1:75:f3:74:5d:7b:6f:61:08:08:60:0d:7c:e8:85:34:4a:
0d:00:f7:72:3e:e5:18:ce:f3:1c:46:62:3e:72:33:00:4f:f1:
27:b9:a7:79:6f:79:de:8d:70:a7:cf:50:15:cf:1b:de:01:88:
a0:3b:b7:2e:4b:ab:0c:36:ad:5b:a3:8d:7e:d7:3c:56:a1:8e:
b1:7f:84:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:51:53 2025 by rpki-client