Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json)
Hash identifier: kv76rwwigofbpqL4n2JxIYMvz1hMB+Qgn7qmIdGldUQ=
Subject key identifier: 3C:E2:3F:8F:AD:A4:9C:08:85:7D:73:2A:1F:36:60:0E:D1:41:A7:3A
Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Certificate serial: 0197B88F0C00ABFEC9BF456EF72623ECC7C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
Manifest number: 026E
Signing time: Sat 28 Jun 2025 22:01:11 +0000
Manifest this update: Sat 28 Jun 2025 22:01:11 +0000
Manifest next update: Sun 29 Jun 2025 22:01:11 +0000
Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: YTJSkNwHtiZuzBd3H/gvcOrrmYajNdDO7ckGwODXCJA=)
2: LkbZ9NbuqV8kVwW0R6t_W7E36SY.roa (hash: OFwtZ8nR+nHbeTcy4UO/g/3elRZlu1GMxchq0zT/W/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:0c:00:ab:fe:c9:bf:45:6e:f7:26:23:ec:c7:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Validity
Not Before: Jun 28 22:01:11 2025 GMT
Not After : Jun 29 22:01:11 2025 GMT
Subject: CN=3ce23f8fada49c08857d732a1f36600ed141a73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:0f:19:98:d3:9c:b9:b3:47:97:87:f8:ca:46:
2d:ed:a6:9d:7f:85:ca:71:a5:08:d0:30:71:09:9b:
da:10:14:9d:ad:86:b6:e5:59:a7:9b:c9:93:c7:4e:
b1:0d:26:6b:ea:d2:f9:f7:cd:84:38:06:59:b4:03:
e4:a1:64:2e:9a:cb:6c:de:ef:1a:24:9e:63:da:d2:
7d:92:b5:92:74:53:65:12:2f:f7:f1:95:63:8c:be:
2f:bc:6c:49:34:f1:77:3a:cb:7b:85:45:01:74:1c:
9b:53:10:2a:12:3c:55:52:a0:54:10:8b:f5:17:47:
5b:ce:1a:3b:9d:61:d2:38:47:63:7e:98:60:a6:04:
43:78:23:35:7b:fd:9e:26:ec:be:52:c8:8a:6d:ff:
fb:39:b7:d3:35:2a:3b:46:2a:ee:f4:61:a0:8b:8d:
ab:9e:a7:1a:6e:a8:e8:25:f7:5f:ed:b9:84:d7:07:
b9:5a:c3:89:55:d3:65:db:de:40:e5:3f:31:a4:74:
84:49:70:9f:a3:32:99:c0:e8:ee:e8:0c:41:79:af:
ec:c8:ee:04:2d:7a:55:05:bb:a0:e5:66:3b:97:42:
db:dd:7c:64:84:51:14:c2:a7:b5:75:2a:dc:f6:b1:
8b:27:da:be:fe:3d:9b:09:c3:cb:07:e8:a7:75:a8:
26:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E2:3F:8F:AD:A4:9C:08:85:7D:73:2A:1F:36:60:0E:D1:41:A7:3A
X509v3 Authority Key Identifier:
keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:a8:05:9f:83:f1:d4:31:d5:85:5a:d2:26:d8:8a:9a:c3:b8:
89:42:8e:93:e1:05:8b:c0:c3:08:8a:35:b3:a9:98:03:ca:ab:
17:89:f9:91:9e:f7:6f:86:0f:bc:eb:01:e3:01:17:f0:79:00:
bf:43:ea:09:9f:0b:09:58:e7:a8:f8:d6:c5:98:b8:b1:b6:99:
50:d6:b4:80:5c:30:90:b6:91:7f:fb:ef:d1:ad:19:3c:0a:c0:
d7:ef:73:18:d9:d0:09:07:ed:90:87:c5:5c:70:b9:cb:8e:cc:
7c:b0:bc:20:7e:45:62:05:ed:8c:6b:46:98:56:76:ad:fb:3b:
d7:10:89:4a:dc:ba:e4:e0:5c:c9:8c:02:d5:1c:76:ca:61:c8:
38:f4:46:8b:6f:3e:97:55:6b:41:8c:17:13:0e:36:25:df:f5:
7a:f6:d9:7a:c4:47:61:99:cb:e1:4d:44:8e:1c:da:fc:61:cb:
bd:6d:87:55:15:3e:8d:f5:7d:d4:73:d9:6f:08:d5:5b:49:a9:
13:99:c7:1d:47:dc:dc:3d:88:ef:5b:b8:aa:50:f9:d5:f6:ac:
ff:84:61:79:ce:10:aa:76:ed:cd:d8:38:50:9b:42:0b:69:0f:
16:41:e7:c5:46:21:a2:96:dd:da:ae:b2:76:04:a3:5f:be:2d:
48:fd:9c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:04 2025 by rpki-client