Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
File: 5rtLno321mTvy3e0EEFcg0phd4I.mft (raw, json)
Hash identifier: LU74MRasAjt+oWLcIfg9ATunVuiD61fOXcUxa4vwIgo=
Subject key identifier: 7F:F3:ED:9F:8D:A3:4F:0B:EA:8D:98:8F:34:A5:A4:C7:D9:76:D9:53
Authority key identifier: E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
Certificate issuer: /CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Certificate serial: 0197B77C221B9CA5BA028496A6ADA262CE39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
Manifest number: 03A0
Signing time: Sat 28 Jun 2025 17:00:54 +0000
Manifest this update: Sat 28 Jun 2025 17:00:54 +0000
Manifest next update: Sun 29 Jun 2025 17:00:54 +0000
Files and hashes: 1: 5rtLno321mTvy3e0EEFcg0phd4I.crl (hash: gwDVax/cuHvYl6tiwNr3+Cx+wOf5EKcpIWUhjjMxgxk=)
2: XkaKfqFoJaO-K5J7EjOD-dhdRPc.roa (hash: HO99X4r00WVlX046g40bOu9XiDJVwjKinGN75tp1pVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:22:1b:9c:a5:ba:02:84:96:a6:ad:a2:62:ce:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Validity
Not Before: Jun 28 17:00:54 2025 GMT
Not After : Jun 29 17:00:54 2025 GMT
Subject: CN=7ff3ed9f8da34f0bea8d988f34a5a4c7d976d953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:25:a1:d3:18:e8:71:99:0d:28:85:6c:99:01:
f1:13:27:2e:8d:27:8f:35:56:f1:16:09:ef:a3:fd:
a9:ac:cf:ba:4c:a2:a1:64:73:e8:74:7a:e3:af:3f:
91:ac:a0:f1:4f:25:ae:29:c1:32:2c:b6:f8:db:f5:
7b:20:cc:a2:77:74:44:a0:d4:41:65:4f:48:13:c4:
df:c8:0f:85:94:87:6c:b4:a6:de:71:5f:34:1e:8d:
eb:69:71:bf:b8:a0:2d:c2:de:2f:89:a1:e5:69:75:
32:a4:d6:e7:09:5c:db:93:60:59:27:5c:d3:3d:40:
bc:f9:a6:a6:68:67:42:58:a9:5e:ea:26:89:ff:36:
99:9e:58:0c:f8:7a:61:e0:98:25:b9:08:46:89:f4:
c0:c0:9e:77:ae:30:82:29:8e:2f:07:d1:36:be:cd:
a4:b7:23:40:fa:05:67:12:77:2a:48:7a:9e:6b:51:
2b:05:52:bf:e9:bc:53:88:ee:3c:51:e5:ba:bc:e2:
de:48:24:6d:72:d4:71:53:6c:78:b6:3a:6c:b0:da:
3e:be:32:1b:23:a5:49:08:6f:25:ff:04:65:3b:16:
75:3d:cc:14:fa:16:f4:5f:ee:d2:91:6a:6d:94:2b:
9a:56:5e:ba:0b:be:55:3d:71:76:93:70:7f:de:fc:
70:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F3:ED:9F:8D:A3:4F:0B:EA:8D:98:8F:34:A5:A4:C7:D9:76:D9:53
X509v3 Authority Key Identifier:
keyid:E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:b2:ac:17:78:dc:56:ca:c6:9e:ac:55:65:52:26:b1:45:cf:
39:02:b9:b4:84:a5:8f:95:9f:bf:c7:e5:0e:93:f2:fb:40:fc:
ca:ea:b5:08:87:b1:9b:be:85:6a:58:8b:d2:1b:44:e7:fe:f8:
69:9a:c7:55:49:eb:8e:62:dc:af:7c:3c:b5:9f:7d:4c:d2:0e:
3d:d7:02:05:5b:19:58:8c:03:16:92:40:53:3e:2b:f1:7b:b8:
76:8a:98:35:cb:85:7e:18:bd:84:c3:2f:eb:14:65:61:5c:df:
c8:53:31:c6:d0:6f:0e:f6:d7:13:30:50:61:a3:4d:78:30:1d:
9d:19:4e:c0:91:12:f3:c8:12:aa:69:7b:6b:67:c9:b0:20:81:
af:1e:e0:7f:c0:37:0a:dd:83:8a:0e:5a:50:46:d9:51:f5:fa:
cc:05:8c:04:f9:e6:bb:a9:74:a3:07:ce:63:58:a9:e1:6a:92:
04:e7:48:4e:1f:e4:4b:c2:db:31:47:e8:8c:1b:f2:18:61:2c:
aa:16:d2:99:e3:9a:7c:8d:30:67:27:11:42:e3:7e:ac:bd:ac:
c2:f3:83:2c:74:53:8d:e4:da:85:b0:82:6a:35:a4:07:1f:c4:
4c:8c:2d:8f:99:df:e8:af:ce:da:14:80:34:ec:2b:9f:a8:b4:
01:32:fc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:22:00 2025 by rpki-client