Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json)
Hash identifier: 81Blvy4hsbuR8Yy13FPjHdkneSGBv4li5fQaKqDPHUQ=
Subject key identifier: 0E:EF:A7:98:D6:2C:5A:E4:97:9D:5F:D4:54:AE:51:5F:E9:11:85:6A
Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a
Certificate serial: 0197B88F97F9EE258A42F4E9A9446BE03B86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 22:01:47 +0000
Manifest this update: Sat 28 Jun 2025 22:01:47 +0000
Manifest next update: Sun 29 Jun 2025 22:01:47 +0000
Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: 0PLL57bUH+8cg9nGXMjHnVmYWFWJc9oqwQIIIplZ5KQ=)
2: yhhMqOayivlP0HqWgBqkxI1f14U.roa (hash: w/NNRo63VlTAmPeepIG4fNxKMWjZVte8F0Xs65Wc7u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:97:f9:ee:25:8a:42:f4:e9:a9:44:6b:e0:3b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a
Validity
Not Before: Jun 28 22:01:47 2025 GMT
Not After : Jun 29 22:01:47 2025 GMT
Subject: CN=0eefa798d62c5ae4979d5fd454ae515fe911856a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2b:ab:ae:fb:3b:8d:67:bb:4c:65:ad:6b:21:
53:84:28:98:48:ee:16:ba:8f:29:69:3d:a0:52:ce:
ba:22:5c:bc:55:83:9d:dc:e0:08:82:20:f2:58:ac:
b0:f3:a8:35:58:29:8b:b9:a3:f5:d6:45:0a:a4:87:
6c:47:5b:5c:81:7a:64:2c:58:71:ed:56:49:27:80:
7b:a9:61:72:10:f8:f3:c3:74:32:6e:cf:10:a3:7a:
bc:e9:20:f8:b0:25:ee:30:3f:54:4a:38:7b:47:69:
8a:ca:48:a5:22:39:31:2e:ab:0c:c5:2c:15:05:2c:
f7:08:f0:69:15:fd:a8:e1:83:5f:cc:4c:c3:f2:0a:
34:58:46:39:ed:1e:2f:9a:c1:1b:63:24:d3:f3:2b:
77:92:6d:40:0b:54:9e:b3:a2:e3:d1:21:72:c7:78:
33:81:1d:77:8d:71:58:7c:13:65:f8:52:74:bf:28:
e6:4c:da:c9:d8:92:77:b0:a0:4c:61:e7:a0:fc:44:
04:62:11:43:57:30:2e:af:c4:31:16:e5:ed:8d:a6:
75:0a:4d:5d:d0:f7:67:8d:43:c9:3f:7b:fb:68:7c:
47:67:91:13:89:88:ca:40:1e:dc:b9:5f:d1:87:7a:
70:56:ff:52:8d:67:ee:12:9e:78:b0:7b:91:8e:4c:
43:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:EF:A7:98:D6:2C:5A:E4:97:9D:5F:D4:54:AE:51:5F:E9:11:85:6A
X509v3 Authority Key Identifier:
keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:8b:1a:b2:65:ba:ee:cf:7b:da:e8:a9:8e:b4:4b:f6:e5:84:
0e:77:3c:e7:68:0b:70:08:d6:5c:cc:77:24:78:bd:df:20:c4:
43:5a:c1:b2:a8:d0:51:7f:2a:ca:63:2b:af:87:4a:75:a0:da:
50:bd:c2:52:52:6c:63:49:75:c3:23:12:33:5f:d7:96:61:34:
c4:80:dd:d7:76:29:87:99:cd:2a:be:70:cd:53:f0:d1:bd:b0:
51:86:4a:54:87:58:c0:72:2a:a6:3a:35:14:09:88:b2:65:c8:
54:d3:95:e5:a2:d8:a8:0e:ec:09:15:e4:13:e9:c1:ec:c1:eb:
49:c7:86:d7:9a:6a:87:09:b7:d3:2f:0e:ac:68:d8:62:87:36:
cd:90:3b:f9:00:7d:30:e8:d6:44:c7:87:f6:38:bb:1c:09:2f:
27:d6:ca:51:57:04:b9:62:bd:a7:f5:81:8d:0d:7f:a8:4f:bf:
6d:a2:2b:3b:d7:63:3c:e1:b3:89:01:79:d9:c6:42:de:5c:f3:
dc:b8:fa:75:93:2c:39:0a:be:0f:90:0b:7a:a0:16:88:d7:c4:
9b:d6:1a:ec:07:9d:11:10:e4:bb:41:91:77:b9:b9:84:d7:53:
28:5a:ba:9e:5b:21:0a:a5:c6:6b:ec:f4:4d:0b:04:a4:13:f5:
35:c5:1b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:10:42 2025 by rpki-client