Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: Xuz34bcrBtnENKhxxHFrlBpI74AeEFKaCdibBijj520=
Subject key identifier: CF:55:20:7C:66:72:70:48:5E:06:21:41:96:73:23:88:42:E8:02:4C
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 0197B77C67EFF0FD84D3BE69B47753196E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0B38
Signing time: Sat 28 Jun 2025 17:01:12 +0000
Manifest this update: Sat 28 Jun 2025 17:01:12 +0000
Manifest next update: Sun 29 Jun 2025 17:01:12 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: WsWs/aEeaXT14hZ+wcnQNS660jtju5EaXljK/lMMuPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:67:ef:f0:fd:84:d3:be:69:b4:77:53:19:6e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: Jun 28 17:01:12 2025 GMT
Not After : Jun 29 17:01:12 2025 GMT
Subject: CN=cf55207c667270485e0621419673238842e8024c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e4:59:a9:ce:2f:19:3b:e5:ae:87:52:68:c3:
8a:9b:db:f0:93:34:a4:c6:af:2e:f1:01:80:36:fd:
81:59:f3:f0:bc:26:cb:00:ee:39:8c:34:06:99:40:
07:91:ae:4b:44:f2:6c:20:6a:6f:2f:71:b1:0c:05:
95:e5:90:1c:b6:c5:c1:df:14:bb:62:93:aa:cf:b9:
f1:b0:7b:f5:5f:d9:95:18:92:94:0e:76:f9:91:af:
7b:05:ba:d8:9e:dd:87:68:89:9b:aa:bb:55:13:20:
4c:9d:65:f4:1f:26:02:cd:32:3e:97:2e:0a:42:e5:
6c:63:03:7a:a3:75:8d:f5:36:85:5a:ac:7e:37:15:
0f:5c:d6:d1:a2:b7:26:17:8c:70:bd:81:3b:8a:81:
37:b9:bd:e1:7a:ec:92:d4:b3:5e:f6:1c:6a:1e:d1:
31:f4:6c:52:32:a2:32:6b:b5:9c:25:a4:eb:86:7f:
ef:ed:d3:c3:8a:c9:e8:d4:4e:83:e0:51:33:fa:9b:
5c:38:40:90:e7:e9:cf:b9:5d:28:9b:e1:a0:e4:38:
f2:9a:27:b1:d2:74:16:61:3f:63:21:de:d5:f0:84:
5f:e6:aa:79:35:2a:a3:16:6f:9a:ea:d5:a2:69:67:
39:95:b0:49:e1:48:bb:5d:43:4f:bf:dc:1e:2e:d1:
7e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:55:20:7C:66:72:70:48:5E:06:21:41:96:73:23:88:42:E8:02:4C
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:4a:da:5c:1d:82:c5:1b:e7:0f:66:e8:e9:60:db:5c:b2:de:
8a:6c:87:06:51:51:52:b6:58:11:09:c7:98:df:76:3a:55:19:
4f:33:1e:e9:02:44:eb:f8:90:01:49:94:8b:74:78:56:77:8a:
9f:08:fc:e4:14:0a:82:56:6c:2f:03:25:a9:8a:b4:c5:21:60:
5d:be:9b:b1:31:70:f9:24:23:1b:47:fa:51:72:37:27:2a:fd:
1a:ef:ab:75:22:ef:54:d8:3e:cb:eb:14:37:72:c0:aa:ba:cd:
83:ea:d6:75:96:e0:12:20:67:ca:84:a1:63:f2:a3:76:8e:c2:
be:45:6a:cf:78:fe:05:ee:34:18:a0:35:bf:37:26:6d:ac:5f:
31:9c:f8:48:30:b3:6f:f3:10:88:3e:64:8d:e2:00:10:cc:9a:
5a:c0:18:d8:c1:6d:a5:2f:52:1e:a1:f2:ce:e3:af:37:72:79:
f4:b8:b7:ac:27:2f:ce:5c:c1:6a:99:e3:e6:b0:ed:a0:ce:8e:
cc:e2:43:0a:a6:65:44:f0:02:c0:6b:69:82:ef:4b:1a:05:b1:
52:d8:85:d6:c7:e3:f0:6c:e5:a7:6e:a9:f9:02:e4:b6:5c:8d:
9e:3f:88:98:87:86:bc:a1:98:44:ab:a9:31:92:b5:4e:c0:0e:
8f:19:2f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:11:02 2025 by rpki-client