Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: XMVlmmtNn1UkYoEJh8A9hM4XMV5fD/PaI4vEN0YOJgg=
Subject key identifier: C1:6F:CA:AC:6C:1C:59:D9:7F:28:80:87:E4:5A:45:29:8C:58:A8:3C
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 01976E86ED15B9CB45281A8C99C8429E8CB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0C0F
Signing time: Sat 14 Jun 2025 13:00:25 +0000
Manifest this update: Sat 14 Jun 2025 13:00:25 +0000
Manifest next update: Sun 15 Jun 2025 13:00:25 +0000
Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: KCxwit2EDfwnQxpETUWSkAxtq7Ot9VkuWsFXCr+vU00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:86:ed:15:b9:cb:45:28:1a:8c:99:c8:42:9e:8c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Jun 14 13:00:25 2025 GMT
Not After : Jun 15 13:00:25 2025 GMT
Subject: CN=c16fcaac6c1c59d97f288087e45a45298c58a83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9c:d7:91:43:8a:be:a3:e1:39:77:16:cf:55:
fc:4f:65:5c:fb:67:27:b7:79:76:30:4b:dd:23:72:
b8:78:43:d4:a2:e3:8d:39:1c:df:a7:43:95:8f:8d:
f4:3c:bf:90:12:8a:06:7a:18:32:69:40:50:59:0d:
56:93:c6:e9:88:8c:54:19:db:f7:b6:b8:71:21:02:
94:57:99:82:eb:9a:0a:93:08:d5:43:fa:43:ed:98:
0c:03:f0:c2:12:1e:3c:7a:4b:64:7b:41:f2:92:5c:
cf:95:31:77:02:57:0e:9a:25:88:42:7d:94:22:99:
ce:e5:12:c2:2e:54:0d:ed:d3:5f:cd:df:0b:aa:1b:
92:cf:4c:87:db:46:22:c0:c9:f2:0e:4e:d7:97:62:
8c:15:f7:17:20:0f:73:95:1c:38:86:3f:1e:d4:6c:
59:66:ea:61:d7:8f:13:ba:a2:0e:36:34:51:88:d2:
f6:81:2b:6a:ce:b1:76:db:22:40:cb:6b:8d:a8:67:
66:a6:2a:ee:63:e9:0b:46:cd:9e:67:7d:b5:e6:a8:
51:68:d0:7a:8f:14:ff:43:b9:fb:2f:cf:dd:f3:b7:
8e:0d:34:cb:27:24:05:51:c9:aa:62:c6:b3:ca:ce:
4f:05:dc:17:d4:72:44:b5:6e:fb:b3:10:2a:5c:17:
ce:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6F:CA:AC:6C:1C:59:D9:7F:28:80:87:E4:5A:45:29:8C:58:A8:3C
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:01:f2:c2:52:46:18:03:2f:a7:0b:82:b4:cd:10:34:d7:89:
be:1a:cf:1b:20:8f:6f:48:9a:99:01:5c:8f:60:1b:31:63:0f:
56:d9:14:82:4e:a5:05:a1:55:d0:25:f5:02:0c:3c:d7:e8:21:
bf:54:83:01:32:f7:49:69:da:e4:4d:39:ef:48:9f:79:ca:07:
be:9c:73:4a:ea:85:f9:e7:f7:a0:e0:55:4e:f4:d6:ab:e8:61:
26:05:d7:1d:93:f3:e7:85:6c:91:3e:82:f2:6d:a9:0d:cb:a5:
8f:2c:fe:40:5b:8b:ed:0a:4a:75:ae:06:e9:b5:90:9b:8f:0d:
4d:12:31:ae:5b:b5:8b:ee:5c:54:ce:07:21:c6:fb:de:4d:f9:
21:50:6f:86:4e:e7:25:0d:97:1c:2e:e9:48:cf:60:48:e6:ba:
e6:d4:86:cb:ec:05:c6:40:4e:c6:59:f9:5a:28:9c:94:a5:50:
23:66:56:59:6b:7d:13:e7:f5:65:bf:54:b0:4e:4c:e5:64:77:
24:a3:85:c3:78:94:4f:a0:74:93:39:f3:68:d3:19:9d:28:cc:
de:28:a4:c7:ab:b9:03:c4:d7:32:83:1f:6d:ca:9c:4a:dc:90:
1e:5b:c6:b5:b7:07:00:dc:5d:ff:0c:ff:41:a3:e6:52:4f:41:
97:c1:dd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:56:03 2025 by rpki-client