Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
File: EdGf2unFPY0oseQcqROcM1VrpiU.mft (raw, json)
Hash identifier: BD+H1VLfgW4Xp15gwv2XZ6DrOmUP0B+FPCk0+QVNSM0=
Subject key identifier: 2C:21:A5:34:49:03:32:AD:BA:05:AE:B4:F9:76:09:78:11:1C:9E:F2
Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Certificate serial: 0197B6A1359626FDE48022F4EECE854625A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
Manifest number: 0A14
Signing time: Sat 28 Jun 2025 13:01:47 +0000
Manifest this update: Sat 28 Jun 2025 13:01:47 +0000
Manifest next update: Sun 29 Jun 2025 13:01:47 +0000
Files and hashes: 1: EdGf2unFPY0oseQcqROcM1VrpiU.crl (hash: SahH54+xOQEZIzKhIY73qVpszDX6npNI9zXnGIuZN+w=)
2: hjbzdQG0z4fmkgxJ5yW_AFN2Z3I.roa (hash: FIaXEpRqjmfrs5VrZ6nFL+BtqxgLq2lRPch8+CMAMWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:35:96:26:fd:e4:80:22:f4:ee:ce:85:46:25:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Validity
Not Before: Jun 28 13:01:47 2025 GMT
Not After : Jun 29 13:01:47 2025 GMT
Subject: CN=2c21a534490332adba05aeb4f9760978111c9ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5f:94:86:8e:b9:4e:bd:18:b0:64:36:7a:b2:
bf:27:9d:cc:f9:76:30:03:7d:d9:b3:32:8c:9a:37:
d9:d7:13:c7:19:42:64:76:60:5c:27:18:99:14:7d:
09:d2:19:60:97:9f:de:71:1b:53:84:48:7a:4b:a8:
7c:db:08:68:f1:dc:cb:c6:94:dc:e1:26:d6:a3:c2:
d5:35:66:e3:9b:f2:de:39:e2:74:9f:18:a9:ae:82:
3e:81:84:0e:75:37:e2:72:ad:76:21:dd:98:ce:87:
01:e5:55:c0:39:3b:34:83:a8:0a:cf:60:10:66:f4:
46:9c:a8:b7:a5:19:46:26:89:9d:50:f0:c2:95:d2:
71:f2:85:8f:63:ee:27:c5:62:38:9e:27:68:0e:b9:
f6:08:d3:54:4f:98:eb:2b:04:14:d8:7b:12:6f:25:
15:a2:f1:75:41:48:ac:04:80:a2:83:18:b7:6d:ca:
40:54:b3:a0:1c:2a:78:41:00:e7:c6:eb:4f:da:e4:
fe:b6:eb:4c:4c:af:f1:79:a7:60:34:f7:1c:64:52:
ee:cd:43:7b:bc:2a:9d:c6:87:00:86:df:a6:87:fb:
2b:f1:a0:96:ce:c6:c5:54:a3:48:5b:49:19:77:7e:
d2:5f:f2:fc:95:68:e4:c9:e9:a9:ca:2f:ab:d4:be:
8b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:21:A5:34:49:03:32:AD:BA:05:AE:B4:F9:76:09:78:11:1C:9E:F2
X509v3 Authority Key Identifier:
keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:e9:48:4d:b8:60:ca:03:2b:f3:69:c8:39:02:75:f2:d2:a0:
d3:1b:cf:a8:eb:6c:bf:d6:51:6a:85:12:43:5c:60:48:e9:45:
1e:0b:39:17:79:7f:5c:d6:1f:89:70:35:15:1d:ee:3b:2c:ee:
dd:f8:1a:06:32:be:3c:26:a1:79:1e:c3:e9:1d:cb:be:29:42:
96:4b:ec:36:1b:e7:f8:c9:fa:a0:f1:a1:9a:a6:b9:9f:13:27:
c6:3c:af:b0:38:2b:41:a3:a1:40:5e:76:31:fa:dc:58:1e:c2:
b9:32:26:a7:f3:59:ca:a7:b0:44:1e:7e:01:99:0b:60:aa:d5:
5e:0b:6f:da:db:ac:86:58:e3:db:6c:89:25:7f:f7:1b:9f:e7:
5d:90:ea:89:9f:be:01:18:cc:40:41:ea:16:57:a3:01:1e:d4:
2d:6b:4c:2c:91:85:07:d0:76:00:d1:27:16:98:99:fd:6b:a0:
42:06:45:48:a2:7f:dc:51:13:35:95:4d:cf:40:c4:ae:ff:ba:
d2:dd:06:8f:3d:90:23:8f:53:31:18:e8:90:96:96:f7:ed:cf:
a3:4c:f5:c7:00:d7:05:58:37:ff:c1:c4:02:ca:a3:e5:f7:26:
83:30:e4:4f:f1:69:32:2f:2b:f7:32:b4:32:12:0d:c8:48:d4:
d3:8c:cb:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:57 2025 by rpki-client