Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: 6YDPgxVosU9t/F12ycYxM0QsY9UhlyZGmjh+Ka6jj5E=
Subject key identifier: 41:BE:A1:3E:45:8A:7B:0C:BD:7E:58:64:15:D8:14:62:EC:6A:98:DB
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0197B7454208BCBD1ED9CD5AFE30E37E6184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 06C8
Signing time: Sat 28 Jun 2025 16:00:58 +0000
Manifest this update: Sat 28 Jun 2025 16:00:58 +0000
Manifest next update: Sun 29 Jun 2025 16:00:58 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: dTUTAgo5PndnRE/or97Zcz/C4nLtzy3eegdYu1ITXD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:42:08:bc:bd:1e:d9:cd:5a:fe:30:e3:7e:61:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Jun 28 16:00:58 2025 GMT
Not After : Jun 29 16:00:58 2025 GMT
Subject: CN=41bea13e458a7b0cbd7e586415d81462ec6a98db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f5:89:1a:39:9e:19:72:4c:cc:3d:7c:f9:8d:
96:52:54:11:39:8c:56:6f:61:a8:81:ab:eb:74:6a:
2f:db:cc:5b:c4:ff:10:42:4c:0b:68:67:73:4d:f2:
ec:f6:d4:e7:38:0b:54:37:61:57:96:1e:a6:d6:06:
ca:c1:dd:f9:1d:b0:0b:07:05:2f:e4:07:73:2a:5a:
05:ca:22:1f:3b:46:58:5b:46:77:70:20:8e:84:cb:
49:46:7f:81:93:46:86:f3:e5:6f:5d:93:3e:16:c3:
5a:5e:8a:f8:68:d5:11:42:b1:ee:db:a0:56:bd:fd:
56:d7:f7:1d:d3:ca:14:3b:39:20:7b:f2:a3:26:18:
5d:6e:15:81:d6:b8:4c:ce:8c:ca:aa:6e:17:7f:27:
5a:25:50:13:45:3e:e6:f6:ca:77:2e:7a:d9:a6:44:
18:71:03:75:a8:de:26:4d:5b:c1:4f:fd:64:8c:ad:
dc:d6:40:5d:a7:11:ea:41:bf:b1:24:3e:5c:3f:58:
ba:e1:9b:de:00:9f:5b:79:0d:00:c6:d7:81:f6:4f:
fd:50:10:8b:1e:c2:3a:14:62:58:bd:d5:d8:69:fb:
b0:58:f8:29:e7:e7:fc:57:86:02:f0:48:08:49:ff:
5b:2b:9c:cf:81:e3:56:7d:69:4b:c2:2e:6a:d6:b4:
c8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BE:A1:3E:45:8A:7B:0C:BD:7E:58:64:15:D8:14:62:EC:6A:98:DB
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f1:6a:e5:0a:17:29:b2:eb:98:20:c1:9b:82:fe:b8:87:10:
a7:25:08:81:16:f3:f7:0d:74:d3:9b:ac:af:a2:0e:c8:7f:4c:
70:d8:8a:84:e1:80:1c:99:dc:b5:06:e1:74:d7:3d:5c:57:fc:
e2:1a:96:23:83:2f:a2:4e:24:fb:48:2e:b1:10:0e:46:24:b0:
da:ec:61:0d:65:94:1b:6f:94:88:6d:33:d5:f4:46:49:69:64:
a2:95:3f:05:c0:eb:45:71:b3:0d:ca:7c:33:b7:a9:32:33:06:
5f:33:ad:d4:6e:4c:67:9e:72:76:48:f1:2a:94:8c:84:5b:24:
63:65:55:19:65:fe:7d:50:63:23:e7:26:3d:87:0d:0e:c9:cd:
94:1f:7c:9c:c0:e6:6b:5a:d8:65:0c:1e:39:fd:9a:11:94:d6:
7c:a8:e4:e8:b4:2f:ae:b3:fd:b7:c4:90:6a:96:73:6f:7d:8a:
4d:30:ac:53:ea:a3:c8:78:0d:83:da:6a:a9:48:96:44:8e:89:
4b:ee:c0:2d:53:92:06:85:16:a5:ac:46:7f:93:02:03:60:b9:
1d:35:9f:d4:f2:1c:a7:67:55:f6:6f:47:32:59:b5:d0:e6:15:
ad:ff:0b:2e:4c:d5:75:45:29:66:d9:c1:0e:24:56:1d:5c:f5:
2b:0d:d7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:38 2025 by rpki-client