Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: fdHvItgsBta2KNoIvofu3bMIdcQrjnMuru17jN9eoAk=
Subject key identifier: D2:B5:AF:CA:A1:63:C7:DA:DC:BC:42:AE:CA:C4:F8:E1:B6:49:5D:05
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 01976C2ADED368204A3B914C104E0AAA1FA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 1468
Signing time: Sat 14 Jun 2025 02:00:38 +0000
Manifest this update: Sat 14 Jun 2025 02:00:38 +0000
Manifest next update: Sun 15 Jun 2025 02:00:38 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: KXSFJHRQIhyCE20hU/5xN/jawQg5u1dDwfeYJOmCQBM=)
2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:de:d3:68:20:4a:3b:91:4c:10:4e:0a:aa:1f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jun 14 02:00:38 2025 GMT
Not After : Jun 15 02:00:38 2025 GMT
Subject: CN=d2b5afcaa163c7dadcbc42aecac4f8e1b6495d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d1:23:5c:bc:63:77:6d:32:15:d0:1e:5b:e3:
3d:36:ca:ba:90:0b:00:d1:df:b8:d8:f6:8a:e7:64:
ca:b2:fc:65:65:7e:a5:a2:e6:71:77:44:78:9b:30:
ce:37:c7:44:ba:4b:d1:7d:1f:99:ca:ab:f3:67:34:
b5:65:da:c4:5e:a5:f7:9d:b5:86:66:f9:ec:12:b9:
4c:0f:ee:45:e0:1b:85:5f:d1:0a:06:de:6a:19:59:
26:29:e1:ae:51:e0:3b:76:e1:4a:23:f2:a5:72:47:
2b:54:03:ee:cb:53:03:33:c5:a5:3e:df:6b:fe:6e:
9b:34:c8:05:31:be:33:62:9d:ea:be:d5:50:31:b0:
67:b0:3e:80:a0:b6:11:72:fd:33:4e:58:1a:17:c2:
39:49:c8:7b:eb:4a:65:3e:1b:64:0e:8c:2b:28:f6:
e6:a5:8f:e5:1b:54:aa:91:f9:b1:43:5c:39:fc:9b:
0d:e7:97:98:96:a1:8d:64:b8:28:1a:fe:18:1f:8a:
f2:08:2f:87:d4:c7:d2:b1:c2:45:a7:07:b1:11:20:
9c:7f:a8:5c:1e:5a:4f:ac:e3:92:eb:8e:ee:6c:09:
d1:9c:bd:fa:33:f2:1b:42:aa:40:5b:87:25:3b:24:
fd:0e:d3:90:13:64:d9:05:fe:54:17:e8:3d:ff:a7:
a8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B5:AF:CA:A1:63:C7:DA:DC:BC:42:AE:CA:C4:F8:E1:B6:49:5D:05
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:0c:73:38:1b:2f:f5:d7:f8:29:c0:ca:04:54:ba:43:b6:da:
bf:e2:48:fd:83:83:f4:e0:36:80:8b:2a:2f:c1:e4:a7:bb:0e:
d2:49:12:92:cd:60:51:74:96:ec:ab:9f:3d:b8:96:3c:7f:8a:
d1:c4:3e:7f:c3:16:d0:c4:86:66:9f:3d:6b:ec:bf:27:db:60:
a7:e3:54:c4:47:12:4f:0f:6a:e7:7a:0a:b5:1c:82:bb:21:03:
13:c3:61:a7:c0:df:c2:e9:bf:09:87:07:2b:13:13:52:39:b5:
d0:7d:02:cd:63:d6:b5:98:ef:ca:eb:31:fd:bf:94:e1:01:63:
ad:55:bc:7d:a1:5f:92:4e:36:74:bc:10:a5:c1:95:45:77:99:
a9:3a:bd:bc:92:8c:25:7c:49:56:da:98:60:68:d7:12:d4:cf:
06:a6:e7:48:d3:cd:f6:68:5c:49:a9:26:b5:14:63:9f:5c:d5:
89:90:96:7d:c5:37:6f:4c:d3:8f:25:70:bf:e5:a5:9d:a7:bb:
8f:31:3f:f7:d8:00:8c:30:9f:eb:24:a3:82:78:56:07:95:60:
26:84:17:5a:99:2d:4d:81:1b:17:75:53:61:08:bc:c9:3f:3a:
6b:b6:c7:ef:b5:8b:c0:8d:86:77:6b:44:a0:ea:df:e9:c2:2f:
a2:d7:6f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:23:44 2025 by rpki-client