Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: Uyxzy7Qjs4KztICX47q7LEGp2A5VGtunnHMaN95aGoE=
Subject key identifier: EF:8D:1F:8C:F9:2F:B4:A3:86:AB:5D:4E:5A:97:1B:3B:9D:CE:76:4C
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 0197B77CBF450A38A3F42066A9243DC49EAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: CB
Signing time: Sat 28 Jun 2025 17:01:35 +0000
Manifest this update: Sat 28 Jun 2025 17:01:35 +0000
Manifest next update: Sun 29 Jun 2025 17:01:35 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: 2Gnubgh6ANWth+QfQ1d8wbIXgnZ24LRbU4bwGh3RjoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:bf:45:0a:38:a3:f4:20:66:a9:24:3d:c4:9e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Jun 28 17:01:35 2025 GMT
Not After : Jun 29 17:01:35 2025 GMT
Subject: CN=ef8d1f8cf92fb4a386ab5d4e5a971b3b9dce764c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c1:bd:e3:e6:cc:51:40:95:3b:ef:3b:4d:b5:
b1:b2:ae:08:7a:4c:8d:9e:78:00:4d:e8:94:80:d2:
80:93:9c:96:ad:e2:55:85:d1:05:b5:2f:ba:a3:7b:
8c:3f:e1:81:36:13:ab:9b:ed:a5:a4:9e:97:ee:b9:
f5:9b:0a:c3:b1:94:dd:65:af:9f:52:c1:3c:89:7d:
52:59:de:b7:b2:29:67:63:64:42:d5:c9:9f:eb:f8:
a3:21:82:ea:eb:fd:f3:7f:31:90:0a:b7:6e:91:3c:
5d:8d:ae:f4:35:49:fb:88:7c:1d:b0:e0:19:1b:07:
1c:0b:9b:70:d4:ec:1d:b4:35:70:bb:b3:4f:af:90:
83:5b:e1:29:7f:89:42:e1:33:2d:bc:9b:44:cb:b7:
f1:23:1a:b4:f5:27:69:df:d8:77:a8:f4:a6:42:04:
e7:45:27:23:e8:35:eb:51:94:07:63:23:68:57:6b:
da:9e:29:bf:b0:30:e4:3f:61:89:f1:70:bf:0f:4f:
33:0e:ab:7a:22:19:1a:59:58:ef:e3:2a:51:67:77:
c7:e2:67:8f:50:92:7f:d9:09:b9:b0:7f:96:39:cb:
b7:df:78:0f:91:07:1b:a1:41:d0:4b:e8:ea:54:29:
49:95:90:8a:fe:14:b7:2d:7a:8f:98:50:0f:ef:13:
3d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8D:1F:8C:F9:2F:B4:A3:86:AB:5D:4E:5A:97:1B:3B:9D:CE:76:4C
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:67:fb:d1:f7:ca:27:f0:8a:6b:08:f1:3d:36:0d:0f:f0:92:
f2:f0:64:f4:95:3f:02:39:60:85:37:c6:8b:c7:95:cc:ff:79:
ec:79:fb:8c:46:da:01:c5:10:56:dd:8c:7b:90:fe:22:12:dd:
3d:19:d4:7b:e4:14:9e:0d:1a:9b:6a:35:29:55:1f:e5:61:91:
cf:87:07:0c:ba:08:c3:29:43:f8:7f:50:4a:85:4b:be:0c:f6:
80:d4:60:33:9b:2b:49:1a:2d:2f:7a:1a:a5:ca:d6:bc:4c:0d:
c2:f3:d6:75:79:52:c8:b0:07:3c:45:9c:4d:10:fe:43:d5:4e:
d9:fe:07:c7:71:fb:6b:c3:0a:8f:42:d3:76:db:82:ff:c4:38:
23:e6:3c:57:60:fa:08:a5:de:df:9e:86:44:ed:1a:9c:58:25:
27:ef:72:f1:12:fe:1b:43:45:a0:98:9c:94:75:97:5d:07:49:
2d:4a:28:40:d9:0a:b4:28:d5:f2:bf:51:17:6e:ba:c9:b6:28:
67:7b:52:a4:b3:79:f1:8b:9f:19:fd:c9:78:3c:8a:9d:ec:37:
41:47:d5:dc:4c:ae:3d:64:12:53:68:31:24:ae:6c:73:4f:68:
50:77:ba:83:1f:e5:7f:de:ec:33:31:40:cd:ab:ef:18:21:ce:
54:95:3a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:51 2025 by rpki-client