Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json)
Hash identifier: fgHERQS5F8spNtRlwYRO6uuPNhqfK5BKr4Uw0e0NJBU=
Subject key identifier: 02:02:55:C3:43:F0:F2:70:3C:C0:26:39:21:82:49:C5:EC:64:7E:3D
Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Certificate serial: 0197B6D77765A9D340925462E65B98AAAB06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
Manifest number: 04AC
Signing time: Sat 28 Jun 2025 14:01:03 +0000
Manifest this update: Sat 28 Jun 2025 14:01:03 +0000
Manifest next update: Sun 29 Jun 2025 14:01:03 +0000
Files and hashes: 1: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: 4sMoRIbNRRph//T7yz49AO+xVgi8ZwEH0jnSnrU3hCo=)
2: _dBsBWq_R_HniB_oYd_SwrrifoY.roa (hash: lvPRkYEC7iItDLaOxgMbuIXZsy0MYwbc8HCCgTE8KuE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:77:65:a9:d3:40:92:54:62:e6:5b:98:aa:ab:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Validity
Not Before: Jun 28 14:01:03 2025 GMT
Not After : Jun 29 14:01:03 2025 GMT
Subject: CN=020255c343f0f2703cc02639218249c5ec647e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f1:a0:af:93:2f:08:c8:de:42:ac:e7:ee:cf:
9e:e7:ca:5a:51:b7:ed:31:af:a7:80:98:46:6c:a5:
ce:6b:ab:bb:de:1e:76:58:72:ed:c6:2c:4c:de:ed:
82:fe:cf:fc:48:79:59:7f:82:e2:88:1f:eb:87:0f:
95:49:33:b3:b7:a6:bf:0c:3a:24:7c:6a:a7:a8:26:
77:3a:18:3a:2b:d4:25:ca:96:90:d9:86:dc:24:de:
17:38:86:d6:89:f1:4f:1b:1b:e8:e7:43:90:88:ee:
60:59:69:a9:fa:d2:f7:a2:94:bf:88:e4:85:5b:2f:
0c:1e:4b:e2:3f:75:1c:84:75:94:5f:49:85:d7:27:
b1:a4:3e:3d:b2:ec:ea:56:30:dc:40:2a:fe:aa:06:
85:87:83:b6:7c:29:d3:d3:34:88:cf:db:62:dc:79:
91:0a:ba:74:85:83:c4:d6:02:d6:be:77:d4:d6:dd:
f2:ad:45:0d:4c:40:4a:f9:67:d2:e0:92:fc:8f:f8:
45:60:a4:f1:92:31:7b:60:8a:b6:ca:d7:2e:1d:1f:
53:e2:65:4e:35:27:2d:23:42:78:74:47:c4:f5:77:
cb:e5:7d:2e:92:1d:7e:8c:2f:b9:95:aa:f0:16:dc:
28:2e:cf:a6:85:04:9a:e6:c5:0e:43:f7:8d:0f:d2:
84:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:02:55:C3:43:F0:F2:70:3C:C0:26:39:21:82:49:C5:EC:64:7E:3D
X509v3 Authority Key Identifier:
keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:b8:86:04:7a:dc:a1:b2:20:e6:48:93:0e:7c:55:18:29:39:
83:34:c8:8d:84:3f:31:69:db:28:8d:14:cb:fc:73:d0:ad:b8:
b1:7b:5c:87:e2:c7:e8:d2:0d:47:e3:06:c0:ce:20:29:66:dc:
3f:0f:d6:37:83:fc:ee:e8:b8:62:01:18:ac:42:0e:98:49:4c:
69:cd:3a:3d:29:70:36:91:6d:e5:0a:cc:07:92:5e:f9:b7:d8:
64:c1:4c:01:e8:36:0f:e7:e5:bf:8e:bf:87:d9:96:1c:7a:16:
0e:8f:34:f8:67:68:3a:04:ef:0f:2b:47:fc:b0:38:26:cf:87:
5f:01:fe:2b:8a:62:2e:f6:fa:e0:b2:77:56:a5:d6:68:28:10:
2c:ca:d7:66:67:d0:56:4e:ae:cd:25:1c:45:b1:c9:26:3e:40:
1f:f2:2e:af:59:04:4b:c7:dd:92:35:8a:e6:23:3e:3f:45:58:
cd:55:d9:86:a8:8e:5d:b5:32:f4:cb:df:32:60:a1:75:e2:aa:
ef:b9:c0:4b:45:4a:e9:a3:48:76:e5:44:e6:d1:2a:b2:81:84:
1b:8f:ac:b3:6b:41:d1:70:a7:f1:af:da:b9:e6:ee:cf:02:e0:
6b:37:22:3c:e0:f0:14:54:37:78:b2:a9:3a:d1:7f:da:9b:0b:
54:fb:5e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:36 2025 by rpki-client