Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: 1S71qikCL4qcrVg8huNmKPx5xQLfcMEEdHVul8UeObg=
Subject key identifier: D0:46:77:CD:56:EF:D4:A0:87:15:62:47:C7:2C:F5:F9:90:1C:1F:A4
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 01976D06E04B7B908E1C9E507407B14BD8F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0CA0
Signing time: Sat 14 Jun 2025 06:00:56 +0000
Manifest this update: Sat 14 Jun 2025 06:00:56 +0000
Manifest next update: Sun 15 Jun 2025 06:00:56 +0000
Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: K0SiqxVqwJGB2g+RmucVpGQL5xdR7f4pZiGH/kPOnuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:e0:4b:7b:90:8e:1c:9e:50:74:07:b1:4b:d8:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Jun 14 06:00:56 2025 GMT
Not After : Jun 15 06:00:56 2025 GMT
Subject: CN=d04677cd56efd4a087156247c72cf5f9901c1fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ad:fb:71:85:c4:d1:25:41:4a:3c:4e:2c:b6:
39:9d:fb:55:48:b0:e8:6b:92:8f:bd:cc:33:6e:ef:
99:68:66:21:84:d4:73:10:a3:35:87:01:b7:b6:26:
0c:ee:a2:5c:f8:9f:3e:00:db:cd:15:56:28:48:cd:
1c:bf:93:a8:5b:47:3d:0a:be:98:94:93:24:bc:63:
cf:07:50:a9:c7:be:85:f0:f9:96:53:1b:6b:6b:cf:
7f:90:44:aa:0c:c0:8c:e7:b8:c1:16:d5:93:9d:ae:
ff:6b:b6:23:66:f3:b2:bf:57:e1:b1:bc:41:76:4e:
56:da:cb:2d:8b:cf:09:37:75:d1:9c:85:98:96:1e:
ec:b2:7d:95:d2:c7:65:15:05:9b:b0:b8:4f:db:7c:
3d:81:a7:44:b1:dc:cc:cb:b4:4a:d4:f0:50:61:0a:
46:83:4c:13:1f:3e:14:cd:64:63:02:bd:42:ce:24:
54:c7:85:16:f4:13:79:9a:1c:b3:c9:e4:00:c0:3f:
4c:0d:05:bc:8d:48:0f:b6:21:07:d8:2d:a9:6c:d9:
e5:75:f6:85:7a:23:9f:65:29:f3:69:3c:bf:e0:0c:
fd:2e:55:c1:3d:3e:b8:ba:8a:06:bf:c8:8d:ae:1a:
5e:79:f6:45:b1:c5:aa:ae:03:63:46:ab:98:87:42:
2f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:46:77:CD:56:EF:D4:A0:87:15:62:47:C7:2C:F5:F9:90:1C:1F:A4
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:db:ff:1a:5c:39:c9:2a:67:67:35:90:4e:44:64:79:03:35:
f6:52:a4:15:79:de:46:6f:76:4d:e3:0c:8a:b7:b7:23:2b:6b:
ad:66:ce:78:93:02:77:3f:72:b4:c2:bd:eb:3d:64:b1:7d:55:
50:ab:62:9a:76:17:b9:ce:0b:cb:ea:6f:17:b9:69:0f:b0:8f:
0e:72:70:89:b8:4b:27:31:66:11:f6:36:8b:e4:b7:bb:df:70:
b2:ff:76:0c:1b:71:67:64:07:eb:56:b6:46:d8:95:12:00:c0:
16:f9:bb:64:1c:76:35:d4:a9:b0:88:6f:b9:58:8d:41:59:8e:
8d:7e:87:2f:7c:61:b3:23:e5:81:f4:35:30:77:89:7c:36:e0:
db:87:ba:68:aa:f0:14:ab:15:e0:d2:bc:32:af:c7:17:e0:68:
80:94:63:6c:4c:e8:cc:c7:9f:96:fd:90:e9:84:fc:23:fd:ca:
07:43:74:3c:17:21:95:ab:a9:f1:6e:95:ad:04:1a:4a:e2:8e:
58:3b:d7:f4:16:16:a0:53:f6:a7:3c:85:9a:81:92:a2:42:9c:
3b:60:e0:d1:55:02:0a:ae:b9:61:2d:97:76:d3:61:10:e9:02:
0a:49:ba:cb:d9:45:d2:3e:32:1c:81:7d:d0:39:b1:21:d9:c8:
6f:bc:db:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:56:41 2025 by rpki-client