Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json)
Hash identifier: 5bOFsMfoAQoRm0cRiBTsIRO+EAFzqOZj+9NZ5KpvLZk=
Subject key identifier: AE:8C:71:2A:57:61:6E:36:96:B7:4C:91:BC:6B:E6:3E:C1:72:5F:9C
Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Certificate serial: 0197B7B35F9E2C80CFA440F7805071BFA1FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
Manifest number: 0299
Signing time: Sat 28 Jun 2025 18:01:15 +0000
Manifest this update: Sat 28 Jun 2025 18:01:15 +0000
Manifest next update: Sun 29 Jun 2025 18:01:15 +0000
Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: 0wof21q2ZIOUegUCFS6RMTA6PEDI8bZybRjyHUjtcm0=)
2: WtuPQAz22oEnCEx3Rc-9J0U0Qbk.roa (hash: LqsVaHB6US9lWput6TNuWvOyM8xnvQFU16n5uBdiSPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:5f:9e:2c:80:cf:a4:40:f7:80:50:71:bf:a1:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670
Validity
Not Before: Jun 28 18:01:15 2025 GMT
Not After : Jun 29 18:01:15 2025 GMT
Subject: CN=ae8c712a57616e3696b74c91bc6be63ec1725f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:96:ca:0f:63:dd:fa:8d:a0:bd:62:c8:3f:0f:
e1:9a:6a:66:f8:92:75:23:0e:95:84:ca:1c:8b:00:
10:4a:88:7e:cf:fa:49:d1:0a:d3:ca:d3:13:53:95:
7c:b9:d9:52:e8:a7:fd:e4:45:d1:c6:8c:eb:59:ca:
7b:18:07:26:80:33:bf:8c:8f:b4:cc:3f:4a:11:9f:
39:d5:0e:ae:99:e5:13:e7:e8:27:21:bf:ac:21:f9:
90:78:c1:45:29:a2:55:8e:0b:83:0c:5e:00:03:81:
27:9a:2e:95:f4:41:eb:0c:af:8e:6b:66:04:de:fb:
5d:6f:6c:c5:a6:16:95:9c:13:8a:db:c6:be:f4:80:
ba:d7:13:99:57:60:25:0c:c3:6b:ee:49:9d:b0:0d:
c4:c2:96:8b:d9:61:ac:c7:c9:ec:cb:4b:40:1c:53:
ff:8a:5f:b5:af:90:2f:f2:32:9a:16:75:1a:aa:fa:
72:23:44:41:71:4c:c9:99:3d:54:db:e6:cc:b8:0c:
e5:91:6a:47:af:78:1d:3a:aa:15:fe:37:81:e1:54:
f7:de:8a:fa:a2:dc:a2:e0:a7:d3:61:7b:bd:14:33:
c4:68:4b:08:18:cf:95:c0:99:78:01:c6:dc:8b:3f:
ab:50:14:e2:db:37:c7:6c:ca:a4:5f:72:bb:b0:08:
63:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8C:71:2A:57:61:6E:36:96:B7:4C:91:BC:6B:E6:3E:C1:72:5F:9C
X509v3 Authority Key Identifier:
keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:7f:94:07:7a:53:21:b4:e5:f6:07:6d:2a:ef:1f:2f:04:1c:
2b:64:7a:12:fc:e4:86:26:7d:f3:8b:f4:70:9a:3e:d3:5d:37:
74:63:5c:a1:36:2e:e4:f9:8f:fa:d7:58:28:33:48:f0:84:cf:
da:dc:fa:d2:34:f2:89:83:5e:5e:54:a1:82:cf:ba:d3:09:ed:
d9:57:43:ae:b9:db:ca:7b:03:27:0c:70:01:17:1c:17:fa:6e:
6e:e7:4b:3c:56:7f:47:a3:62:8f:c7:3f:2d:82:60:49:86:d9:
02:53:d9:fc:eb:f8:37:59:d5:c1:79:87:9c:24:69:e3:d3:77:
bc:bf:5a:e6:29:36:93:95:bc:13:8d:7a:16:af:27:0d:7a:60:
0d:dc:a9:55:91:ec:6f:3d:55:82:3f:e7:32:f6:82:56:da:7e:
51:15:c7:40:a7:be:2b:0d:b3:2b:84:3f:35:c2:f9:00:55:e5:
39:d4:02:bf:26:41:0a:3d:19:40:08:0f:fc:05:24:9d:5b:01:
89:a0:6a:87:da:1a:88:59:e0:c4:06:97:02:8f:f7:69:ad:2e:
b5:f5:e1:2c:5c:3a:38:14:3f:e5:4f:ff:d3:d3:bd:4a:2f:6c:
32:30:c5:66:05:8b:48:31:d8:fc:64:97:2b:cf:25:c6:bf:9b:
f4:41:1d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:24:30 2025 by rpki-client