Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
File: D0OG59TvxHLBH-nP7z0zCXSzP2E.mft (raw, json)
Hash identifier: QrbqClw+wkWeSaQsjQMyeb74kTzZZTvGha2oIkY55UQ=
Subject key identifier: 11:9B:C0:EA:82:2D:3D:F7:7A:09:19:B5:59:64:10:ED:3D:09:FB:D4
Authority key identifier: 0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61
Certificate issuer: /CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61
Certificate serial: 0197B6A14093B5A16D36735A67E2C55822B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
Manifest number: 0856
Signing time: Sat 28 Jun 2025 13:01:50 +0000
Manifest this update: Sat 28 Jun 2025 13:01:50 +0000
Manifest next update: Sun 29 Jun 2025 13:01:50 +0000
Files and hashes: 1: D0OG59TvxHLBH-nP7z0zCXSzP2E.crl (hash: 8mqDTWGtMP/dNRw8g8udoBG+nC3WXP8BpujvqwOPnVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:40:93:b5:a1:6d:36:73:5a:67:e2:c5:58:22:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f4386e7d4efc472c11fe9cfef3d330974b33f61
Validity
Not Before: Jun 28 13:01:50 2025 GMT
Not After : Jun 29 13:01:50 2025 GMT
Subject: CN=119bc0ea822d3df77a0919b5596410ed3d09fbd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b5:6c:5a:9b:c9:f8:ee:a8:0e:82:9b:08:48:
17:dc:2c:b9:6d:8e:b6:cc:99:93:ff:da:0b:29:e0:
50:ea:2e:55:33:3a:96:f9:95:8f:30:ba:dd:7c:08:
d2:5b:ee:6e:5c:d8:b3:76:22:4a:67:20:0c:a0:ef:
9e:c0:b3:1c:20:95:d0:7c:70:22:12:55:5c:9b:a3:
02:2f:f7:dd:b2:92:e1:44:6f:57:1e:27:a8:b1:7e:
e0:3d:a3:6d:53:41:53:91:93:9a:00:c1:4f:25:b9:
c8:76:27:27:33:3a:b4:cb:0c:06:2a:00:3e:9c:78:
a1:33:ab:e4:2a:a5:53:61:70:c3:39:89:69:62:5a:
4f:35:a0:4d:d7:45:89:5e:5c:bd:de:4e:95:bb:ad:
00:d0:ba:2f:56:5f:16:a4:b0:1e:3a:1c:9a:cf:43:
40:e2:be:52:ed:cc:81:00:d3:59:26:c6:e4:66:fa:
69:4e:52:a0:5a:65:82:77:e0:f3:b3:68:d9:39:db:
8f:7d:8c:9e:0e:4e:f4:7e:c5:e7:d1:16:bf:3f:e0:
7e:ad:85:7e:a4:1c:88:b5:a6:27:48:d5:3a:38:dd:
df:e0:16:56:85:28:28:c1:c1:ca:ea:bd:28:f5:3a:
4d:b6:8d:df:4f:66:18:e5:8b:0e:e2:eb:7b:e0:ac:
ee:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9B:C0:EA:82:2D:3D:F7:7A:09:19:B5:59:64:10:ED:3D:09:FB:D4
X509v3 Authority Key Identifier:
keyid:0F:43:86:E7:D4:EF:C4:72:C1:1F:E9:CF:EF:3D:33:09:74:B3:3F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0OG59TvxHLBH-nP7z0zCXSzP2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56bfb4-b3fe-465a-b357-52abb53b7513/1/D0OG59TvxHLBH-nP7z0zCXSzP2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e7:78:e1:8e:fe:f8:86:65:19:c0:9a:d9:eb:47:2d:79:fb:27:
66:bd:8e:92:49:34:a1:30:06:b2:af:b2:4b:36:22:13:e2:cf:
80:b1:ce:6b:9e:9a:81:73:61:d5:26:8e:2a:4d:c9:8c:fc:99:
17:67:1b:78:a1:02:c1:3a:a3:bf:8f:c9:fa:a2:62:98:72:c6:
ef:25:f9:4d:5c:3c:d3:ec:0d:aa:72:b1:06:a0:57:94:42:9f:
ed:86:bd:f8:28:2d:93:0b:cf:4b:d3:59:7b:5f:1a:a7:0c:83:
b0:08:c1:5f:bb:c1:59:c0:1b:dc:c5:dc:13:c0:2e:54:97:83:
b0:4a:35:b7:e6:1c:71:a1:15:a6:8a:35:15:19:83:d7:59:28:
22:95:c1:c1:a1:17:de:e9:16:af:7a:8a:ee:f4:d1:ed:b2:5d:
cc:95:57:2c:87:05:9d:c5:68:9c:d9:8e:b5:1c:5b:63:c0:29:
d3:ec:b9:5d:21:b5:42:a6:1b:c1:68:62:7a:0a:26:d2:01:cf:
ce:3d:4f:74:40:19:18:7c:70:94:a9:50:22:b0:1d:05:c9:00:
51:b6:a1:03:97:01:2b:1a:c8:f9:f3:e4:0e:09:ca:2e:79:61:
92:c1:c4:33:69:01:f5:4c:f3:e7:ce:20:22:02:54:1e:3a:3e:
da:35:81:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:24:09 2025 by rpki-client