Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: M98//foRVWQSZEHTsWvp4mMbfC0HJtif9Dca1lUag/E=
Subject key identifier: 0E:CA:91:5E:D7:70:FE:21:8A:7A:9A:0F:67:DB:8D:5F:D6:10:A2:9C
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 0197B6D776BF0A9978FCA95FB95C86C653B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 0224
Signing time: Sat 28 Jun 2025 14:01:03 +0000
Manifest this update: Sat 28 Jun 2025 14:01:03 +0000
Manifest next update: Sun 29 Jun 2025 14:01:03 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: PpJ3kfBuKtYznj/xWj/dke/4gMscjUukkN0vLcOvwZk=)
2: _O0LKSVD2FWQH20B8h-W2BSyf7E.roa (hash: /osVaD1xwsZSvzrjM1Npx7gTyOHOWobbSsuEq9U9lZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:76:bf:0a:99:78:fc:a9:5f:b9:5c:86:c6:53:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Jun 28 14:01:03 2025 GMT
Not After : Jun 29 14:01:03 2025 GMT
Subject: CN=0eca915ed770fe218a7a9a0f67db8d5fd610a29c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0b:21:24:2d:52:68:b6:20:a5:45:12:ca:c8:
3d:2e:81:0b:9e:0e:d7:9c:34:c3:38:79:93:3b:55:
49:bf:6d:5b:31:6b:99:2b:21:09:1e:44:41:fd:48:
20:ec:f1:60:1b:47:47:50:57:38:f9:fc:4e:2a:2b:
ed:b9:68:45:03:63:13:a6:96:04:12:d6:00:38:87:
46:e6:43:d6:26:73:49:50:65:5c:bd:16:06:e4:ad:
b0:4e:d5:64:0a:f5:20:46:75:6c:f2:b0:1d:3f:1d:
14:44:11:1f:26:e9:f5:62:34:70:6b:1c:51:4e:22:
15:6f:1d:99:fa:c7:ba:6f:ae:2c:e8:60:f5:e8:48:
2d:66:e5:7b:78:de:a1:fe:d8:ee:63:92:e1:6f:c0:
bd:cd:b3:6d:cd:24:c3:3b:22:cc:dc:b8:7d:95:ed:
8d:a6:3e:d7:c1:b4:c8:11:a8:c9:dc:ef:e8:b4:d6:
83:18:66:ad:3e:ba:5d:5c:c8:e5:05:de:bc:d3:94:
3e:ea:8f:57:50:57:8d:f8:2a:4d:48:e7:69:36:84:
b1:bc:2f:97:15:95:4e:cd:38:9e:ef:0a:6a:ce:bf:
88:e7:9d:bc:12:68:ad:f1:7e:18:0c:f2:10:9e:87:
0e:1c:8c:af:bc:51:fd:38:6f:11:5d:2a:f5:6c:54:
28:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:CA:91:5E:D7:70:FE:21:8A:7A:9A:0F:67:DB:8D:5F:D6:10:A2:9C
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:aa:ac:73:da:c9:56:29:a0:09:5e:de:3c:04:32:17:d6:50:
72:28:8e:95:8c:7d:70:e3:18:11:cf:57:f4:ee:e2:3f:d3:8a:
d5:7a:ff:b3:82:8a:9d:a0:a8:0a:68:bd:eb:eb:3b:7c:a0:85:
dc:96:f7:1c:08:0a:3c:7f:e7:2f:c9:c5:87:7c:0b:9a:c6:bb:
f6:04:7c:33:5e:44:57:65:0f:97:15:e7:b1:bc:b4:8b:72:67:
bd:97:71:f6:50:09:ed:43:4c:0b:57:9b:12:53:79:fb:eb:48:
28:13:10:9c:19:54:5b:11:28:82:24:60:39:13:56:6f:60:ab:
f9:2b:cf:48:72:a6:43:03:5d:c0:61:4a:74:b0:73:84:5d:1d:
e9:53:57:22:76:9e:42:b9:3a:e8:fc:dc:1e:29:f6:fc:95:cf:
ae:8b:7b:60:86:3d:28:f0:32:e5:98:4b:8d:0b:1c:7d:45:de:
79:6a:42:76:17:32:ca:48:14:d4:8a:2e:fa:62:f7:e2:27:3c:
ab:e7:e7:96:d0:a1:05:1c:1e:68:f7:82:bb:06:56:1c:07:03:
b7:04:9f:17:cf:ff:b0:9f:5c:c2:a5:f8:da:0c:15:b8:1a:d7:
cd:74:79:a4:2a:16:76:ed:83:3d:a2:9d:cb:c0:f1:0f:e4:d1:
79:5d:cc:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:23:35 2025 by rpki-client