Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: aFruEFWKlkHUvq4yASMsG7GuEaknXM+RQSZ3FbFA0T0=
Subject key identifier: AB:8D:30:C9:C4:0D:E7:AD:83:37:21:B6:35:68:EC:92:B3:A2:0B:3D
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 0197797884419EEE42A23C470BCB57BB9CD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 09D1
Signing time: Mon 16 Jun 2025 16:00:30 +0000
Manifest this update: Mon 16 Jun 2025 16:00:30 +0000
Manifest next update: Tue 17 Jun 2025 16:00:30 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: G5gFnEun9myQ1z98vfPTR1BvtDGmh6o4ONivapPvstk=)
2: _l8jrf0myWSyZHEusIZ6cmnQafE.roa (hash: gjseV+JPjv3tCrp8kMrsCJYjL6BjqLfcHlxvbKTgJog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:78:84:41:9e:ee:42:a2:3c:47:0b:cb:57:bb:9c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Jun 16 16:00:30 2025 GMT
Not After : Jun 17 16:00:30 2025 GMT
Subject: CN=ab8d30c9c40de7ad833721b63568ec92b3a20b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:eb:aa:c6:1a:f7:0f:ef:cc:dd:9b:46:79:b5:
ea:ae:25:e8:f7:2c:a3:a2:f4:e4:90:1a:0c:c3:40:
b6:9b:11:42:c2:e2:77:c3:c9:9d:d1:e8:ff:8b:8c:
2a:f8:19:b2:e4:fd:a3:60:4b:96:f3:24:dd:17:55:
9a:d3:ae:28:4a:9a:45:88:8f:02:b4:4d:c6:23:71:
1e:b6:46:e3:58:87:1a:8f:ae:0b:71:c9:fd:69:f3:
d3:5b:4b:d7:7e:91:48:bd:3f:63:53:3f:24:ee:90:
9f:eb:2c:7b:86:f1:51:f5:33:79:dd:fd:c2:9e:11:
19:f1:9e:69:7e:91:53:d6:4b:a4:32:c7:60:d4:91:
98:c7:8a:a7:ce:fa:2a:23:04:d8:84:f1:f4:37:eb:
b9:e1:2b:18:4b:fa:05:4e:99:e5:a6:6f:6d:5a:2d:
3e:f5:37:4d:81:2a:74:4f:13:b5:d1:fa:50:10:78:
58:25:7c:87:bb:8f:07:4b:43:8f:2c:68:71:03:66:
76:b5:17:c6:b4:e0:a2:62:6f:db:db:30:97:cc:67:
8f:3f:2c:fd:e3:6a:ec:00:d3:70:7f:21:a7:2a:bc:
b5:17:3d:3e:5f:67:b1:e6:96:46:a7:4f:be:4a:51:
08:07:58:5c:0b:44:b9:59:8d:63:81:91:c6:00:eb:
f5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8D:30:C9:C4:0D:E7:AD:83:37:21:B6:35:68:EC:92:B3:A2:0B:3D
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:b4:e6:7e:e8:93:13:88:2c:31:91:0d:f1:f1:9e:93:12:7e:
97:05:f5:1c:4b:85:45:0b:f5:53:2a:68:b8:35:9d:77:07:7d:
e2:9d:cc:88:73:ce:9b:71:8b:e3:d3:bb:b8:38:82:b2:7a:e2:
06:92:71:4c:ca:b7:84:b9:98:cf:c2:54:ae:fa:a9:9d:3e:79:
9c:d4:20:25:61:cb:c9:c0:2e:1b:dc:b9:33:f9:a1:9a:be:6e:
46:25:2b:5f:6c:de:9a:45:bd:56:08:ae:a2:47:e3:f1:fe:49:
f6:3a:cc:ac:61:c8:df:29:17:fd:ad:a0:05:2a:2d:c0:35:72:
72:f2:27:64:36:29:de:a0:7e:0d:29:47:41:eb:70:27:bc:f1:
86:f9:9a:7b:26:29:2c:fa:3f:90:4c:47:88:87:65:dd:89:e9:
da:cf:e7:47:60:ad:22:b4:25:aa:ca:ab:4c:30:8e:cb:05:8a:
91:96:67:a9:08:c8:f6:1d:c3:a3:bd:ff:ae:22:e5:85:6d:78:
e7:55:35:e7:08:11:61:7b:3a:1a:e1:25:46:1b:4f:47:25:ef:
27:96:3c:41:1e:b5:dd:f0:f2:30:14:9d:2e:6b:bd:f0:24:6d:
de:6e:cb:cf:58:18:2c:b9:bb:7f:3d:82:3e:bd:49:ba:03:9b:
16:6a:9b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 19:34:54 2025 by rpki-client