Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: /xTLHjVmWT7EnrzT14sSO7Xlooj4Gr92wcczdYYd03o=
Subject key identifier: B0:5D:27:C9:3D:81:8E:79:9B:02:16:2F:9E:53:78:5A:F6:D2:5B:EE
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 01976CCFE0A6AD8DE38B5EC0AB7DCA568101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0A36
Signing time: Sat 14 Jun 2025 05:00:51 +0000
Manifest this update: Sat 14 Jun 2025 05:00:51 +0000
Manifest next update: Sun 15 Jun 2025 05:00:51 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: RaiX/yGBv0xsf9pVlkrzgiIQYKdZ0mv5s96RMOm6RMg=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:e0:a6:ad:8d:e3:8b:5e:c0:ab:7d:ca:56:81:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Jun 14 05:00:51 2025 GMT
Not After : Jun 15 05:00:51 2025 GMT
Subject: CN=b05d27c93d818e799b02162f9e53785af6d25bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:35:3a:56:54:62:56:d1:ac:59:9b:7e:0e:
7d:37:a4:3e:13:87:2a:d7:5a:c2:c4:da:6d:88:d1:
06:4c:bf:2c:0e:7e:56:7f:ab:40:c8:93:f3:fe:ce:
3d:8a:63:23:87:ab:fe:92:59:93:fe:d3:25:3a:bb:
30:d2:a1:7f:2d:1c:bf:f1:e0:ad:27:0b:f8:ff:79:
c5:9a:4f:bc:e7:03:5b:96:43:2d:0e:07:08:03:bc:
35:be:d2:01:cc:14:22:cb:32:de:f9:ae:1e:74:0f:
fa:1c:77:4c:45:cd:3b:53:3b:f7:f2:ee:dc:a3:12:
23:47:41:e0:f7:be:21:b6:1f:82:96:c9:2f:a0:c0:
c3:9f:b7:d5:f0:6d:9a:e4:4c:bf:45:e4:35:81:6c:
ae:97:11:6c:5a:3b:2e:d0:b3:65:b4:f2:f2:d4:37:
42:64:c8:8d:3b:57:b4:01:b1:e2:eb:02:29:0e:f1:
30:df:7e:b6:3d:ce:2d:28:02:71:86:df:48:d6:62:
64:74:b8:2f:64:ff:5d:41:b0:72:52:3b:aa:0b:91:
88:dd:12:b8:c2:fa:18:b2:5e:cd:09:f9:01:a8:f0:
f2:ae:28:b6:77:85:cb:6c:ec:eb:f1:13:b8:1d:48:
80:b6:2c:f9:c0:8b:11:d8:8a:84:65:5f:42:b3:d8:
87:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5D:27:C9:3D:81:8E:79:9B:02:16:2F:9E:53:78:5A:F6:D2:5B:EE
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:b7:3d:8e:71:bf:67:ca:07:83:19:9d:fa:69:5b:c5:1b:ad:
02:95:de:64:bb:70:c4:92:d3:dc:7e:f1:46:88:46:e0:8f:59:
fe:7a:1b:a5:5c:41:eb:cc:c3:4d:54:15:33:62:20:95:d0:a5:
85:88:23:e4:bb:bb:f5:d7:cf:10:cb:ca:60:e6:41:12:6c:ac:
02:12:8d:4c:9a:9f:12:31:e0:4f:72:64:34:ed:8c:ce:43:4a:
fd:40:b2:73:3b:bc:b2:a4:4d:c0:a5:4a:29:39:72:e9:b1:c6:
4f:03:a5:5a:e7:86:f3:72:7a:64:ed:2f:bc:20:5c:fb:58:32:
63:c6:cc:b8:4c:14:2f:5b:f1:ab:a1:6c:1d:94:73:c0:e8:01:
fb:34:08:5e:67:7c:71:91:1b:06:83:e8:71:54:85:ec:26:d2:
dd:a0:7e:a5:e4:bd:fc:78:45:f5:28:50:be:ce:e1:da:fc:63:
56:ec:93:8f:19:e6:d2:87:56:2e:be:d0:23:2a:9e:58:d2:6c:
b0:0d:f0:1b:ca:6f:97:a7:8e:98:b9:e1:8c:0c:39:0b:99:d7:
c8:1a:2e:61:c9:75:3f:1e:4f:11:89:63:48:a3:5d:c1:68:ec:
08:39:9a:48:a1:09:95:49:4c:a0:3e:68:65:3f:76:1b:0b:00:
2a:cb:9b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:26:50 2025 by rpki-client