Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
File: D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft (raw, json)
Hash identifier: R8C8gZysG/JVt0GLKVRvxecQsTlJKmqRyg69ng6RTRw=
Subject key identifier: 33:71:68:51:64:A8:9F:69:42:69:6C:82:33:A7:68:2B:9B:33:A0:D5
Authority key identifier: 0F:9C:5A:E9:4C:AD:ED:87:5C:8D:B2:F5:83:3C:A8:8D:2F:68:ED:0E
Certificate issuer: /CN=0f9c5ae94caded875c8db2f5833ca88d2f68ed0e
Certificate serial: 01977D8C4CD8F0B216565A918D65DE6FDF1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
Manifest number: 031E
Signing time: Tue 17 Jun 2025 11:00:36 +0000
Manifest this update: Tue 17 Jun 2025 11:00:36 +0000
Manifest next update: Wed 18 Jun 2025 11:00:36 +0000
Files and hashes: 1: 6BzrArwu58N5sBVvJVBthqND_N4.roa (hash: OfB+8pNfA8OgycXqKbk5L8hxFdJxQJhdYPo6qkN9fXA=)
2: D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl (hash: 3P8q4qSd4XdGRKDx5RHHMhEnLuCm6eIRRQiVjzBAb8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:8c:4c:d8:f0:b2:16:56:5a:91:8d:65:de:6f:df:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9c5ae94caded875c8db2f5833ca88d2f68ed0e
Validity
Not Before: Jun 17 11:00:36 2025 GMT
Not After : Jun 18 11:00:36 2025 GMT
Subject: CN=3371685164a89f6942696c8233a7682b9b33a0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:a7:5b:79:b7:d4:f7:ca:2b:4e:c0:86:f3:
88:65:e4:a7:85:96:a4:38:d3:72:f4:69:14:bb:58:
11:eb:45:e4:f8:35:c2:a3:9c:e7:9b:98:7e:32:55:
df:12:d3:36:7e:18:ee:12:79:1b:2a:41:58:72:8b:
1b:1e:b8:84:94:57:74:3c:43:e9:61:b6:7c:0b:46:
54:de:64:b7:55:ff:af:12:80:99:d8:a5:6b:f6:94:
b6:c1:74:9a:47:fb:82:90:81:c1:b7:5c:c4:55:81:
b9:f7:6e:af:7e:79:cb:2a:3c:b0:bb:e9:5a:3f:c0:
84:77:5c:f7:50:37:1f:28:c7:12:e6:3e:c3:5f:4c:
f4:94:e7:f8:b7:cb:ca:ed:ff:34:0f:f4:1c:f3:d9:
7f:22:5d:0b:d4:69:26:80:a1:78:6c:b9:7e:6f:41:
56:a4:2f:bc:30:70:59:03:c1:5c:85:85:1f:dc:00:
b7:c6:d1:10:8e:66:91:e2:71:c4:e0:15:66:70:bb:
68:33:2b:25:a0:db:0a:a1:59:aa:7f:28:2a:07:38:
37:c0:91:fc:08:2d:51:67:52:90:13:b5:62:c8:69:
c3:79:4b:1e:5d:d5:28:c3:ad:eb:de:05:8c:f8:74:
7c:1c:95:0b:02:ac:f7:62:69:2a:e0:97:7b:07:38:
6c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:71:68:51:64:A8:9F:69:42:69:6C:82:33:A7:68:2B:9B:33:A0:D5
X509v3 Authority Key Identifier:
keyid:0F:9C:5A:E9:4C:AD:ED:87:5C:8D:B2:F5:83:3C:A8:8D:2F:68:ED:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:6a:4a:cf:f4:0a:65:64:ca:f1:7e:c9:73:0b:c5:b0:15:66:
f2:1d:a3:3e:59:6a:53:3b:28:ee:bd:64:84:06:c8:3f:b4:e1:
26:a2:e6:cb:86:22:59:cc:5b:57:1a:e6:d5:67:6f:aa:91:05:
ae:62:73:b0:2b:4f:8e:51:70:54:2f:66:c2:83:cd:d5:82:29:
d7:f1:77:03:ac:91:3e:fc:c5:d6:61:1c:a3:8e:b2:00:ce:2e:
53:03:b0:09:62:57:84:36:0c:5e:ef:d2:88:0a:61:13:cf:af:
1f:bc:0a:e1:ed:60:42:b8:6e:7e:28:20:2b:ba:43:f2:9d:0c:
45:e9:44:8d:8d:48:12:c3:3c:9e:39:b2:1f:bf:6d:e9:f5:5c:
9a:83:f2:c0:98:83:56:4b:43:90:de:2d:eb:12:14:01:28:bd:
0a:dd:fd:07:d6:f5:c6:f1:56:73:f6:33:5a:b8:28:26:7d:26:
48:bd:fc:00:d8:36:25:21:c1:7d:ce:95:42:03:ad:fb:10:36:
d0:2d:39:9c:46:90:ab:2e:56:b9:30:da:15:87:39:52:41:cb:
47:4c:b5:e3:f9:97:67:b5:b3:da:c0:6c:73:c6:ef:e0:f5:e4:
c2:1c:66:26:4a:de:f0:af:dd:9c:bf:2f:d3:09:a3:b1:4a:c9:
03:2b:d0:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 19:10:02 2025 by rpki-client