Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
File: diI4ozxVDMXfAkTz_G49vZHkw54.mft (raw, json)
Hash identifier: IjOaROTmf9QOS6wr9Bsv2O2MuR6DQJIeAcgTc/XFyP8=
Subject key identifier: 26:71:63:BC:4F:46:77:7F:00:6B:72:74:31:6F:CF:38:3D:19:EB:3F
Authority key identifier: 76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
Certificate issuer: /CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Certificate serial: 01978357A873DBFC8426D3B4DB66D0330EFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
Manifest number: 0A05
Signing time: Wed 18 Jun 2025 14:00:49 +0000
Manifest this update: Wed 18 Jun 2025 14:00:49 +0000
Manifest next update: Thu 19 Jun 2025 14:00:49 +0000
Files and hashes: 1: diI4ozxVDMXfAkTz_G49vZHkw54.crl (hash: kwa2rABAx2BuDeWcrmk5e7UcCL9AiVZrEwH46su/Dz8=)
2: wJoEv1cTcMs89DVqbv88rXmkjBs.roa (hash: dwNiZrwk++xFBCbnEtCywNysmHqCMLzFmgUxU3OD8L4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:57:a8:73:db:fc:84:26:d3:b4:db:66:d0:33:0e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Validity
Not Before: Jun 18 14:00:49 2025 GMT
Not After : Jun 19 14:00:49 2025 GMT
Subject: CN=267163bc4f46777f006b7274316fcf383d19eb3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cf:cd:de:54:ae:6d:6a:fc:bb:01:c1:48:08:
4d:cd:32:d7:ef:52:7e:93:1b:fc:23:3e:39:09:6c:
32:4d:57:c5:d7:53:43:e9:16:97:89:e7:31:3a:58:
15:cc:0f:e2:38:e8:69:9a:ab:bd:05:6c:ca:ed:4c:
95:b3:7d:96:6a:f5:c1:77:d0:c6:d9:43:95:a9:7e:
62:81:9b:b0:20:ba:1d:4d:12:01:2e:02:5d:1f:34:
fb:a6:fa:70:77:1a:ab:43:77:63:4f:90:f9:d5:95:
27:78:65:2f:4a:f7:53:63:19:a4:4c:ce:44:0f:76:
03:5f:55:9c:ae:b6:99:6b:e2:c0:b3:26:08:a4:12:
3b:83:d9:d6:81:ae:13:83:0b:05:a7:ac:52:71:55:
e5:22:66:fb:63:fc:42:fe:6d:c3:9a:f2:c3:d9:cc:
95:1e:27:c8:3d:2d:7f:c6:bc:01:08:2f:bd:f4:76:
1f:22:84:d7:aa:ff:9c:28:cf:06:a0:63:45:87:56:
fa:63:48:fe:0c:94:2c:78:74:41:49:5c:a7:62:c5:
55:32:cb:e0:34:23:4a:ce:17:3d:68:0d:27:76:14:
8d:0f:c3:bf:b3:76:5f:21:f9:02:61:13:fa:2b:69:
c3:07:f1:71:6d:6e:ed:29:b9:bb:3c:16:ab:63:37:
0b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:71:63:BC:4F:46:77:7F:00:6B:72:74:31:6F:CF:38:3D:19:EB:3F
X509v3 Authority Key Identifier:
keyid:76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ec:aa:67:88:3a:e7:40:e4:15:f8:0d:79:4b:d8:53:21:56:
53:b1:c3:f3:ad:f8:11:bf:26:df:2f:3b:c8:8a:89:c8:e1:a8:
70:f1:00:aa:3f:0b:c9:e1:35:1d:a2:a0:f7:64:6d:09:3e:75:
d7:a4:56:84:7d:54:5e:2d:64:a8:99:2a:25:6b:39:93:6a:2f:
8f:1c:13:72:b3:dd:a6:85:03:a6:b5:b3:69:e9:1e:b8:e1:b0:
7d:e8:a0:3c:66:b7:7b:ba:ea:96:35:1b:c4:4d:aa:08:ee:b9:
1f:7f:fd:31:23:07:15:e6:c3:af:16:06:f2:f6:23:53:9b:79:
37:3d:f9:56:80:d8:68:15:0d:8a:0b:df:5c:e6:ea:e0:fd:d4:
87:8c:11:39:b4:15:87:b5:d5:b3:29:14:c8:ab:82:39:a2:85:
a2:ee:c3:13:f0:85:67:1f:90:32:a7:d6:79:da:ba:55:d0:95:
6b:1b:f7:13:fe:8c:fc:b9:df:a1:35:63:e0:67:0b:cc:2f:5b:
6d:bf:de:cc:0a:1d:31:98:31:8d:0e:a0:98:16:ee:27:03:9d:
c9:54:b1:7b:dc:0d:56:7a:76:f5:db:ab:89:87:f8:d6:a2:04:
be:db:92:e8:27:c6:50:f9:8b:1d:df:6e:91:fe:cb:51:38:7f:
e0:38:2a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 23:44:14 2025 by rpki-client