Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json)
Hash identifier: XMceTTko/mQ7MIZd/pmS9egdzXRxeEGzljN+pNj8QX0=
Subject key identifier: D6:F5:B0:B9:A0:9C:3A:21:D3:C8:F0:2C:AB:15:FB:3A:9A:5D:F9:E1
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0196BE257BE9DF71BF8D5C2778552C356927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
Manifest number: 0647
Signing time: Sun 11 May 2025 07:00:49 +0000
Manifest this update: Sun 11 May 2025 07:00:49 +0000
Manifest next update: Mon 12 May 2025 07:00:49 +0000
Files and hashes: 1: EKdJIayRjGqpNjC_sXcLD4LpFxg.roa (hash: Q7XyDf/+ZYlwIoQHzzpWgBVzZ1z6oDECbrHcCzM9GG4=)
2: _-z4nvaTTyccKXJFwod66iKewX0.roa (hash: B/6vrb0o2kiLAGPMrkOgglOkupcsHoxdqdIe49F5XFQ=)
3: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: wN/su1omLh+o2ddchLC4gaCVH2IYDE5RnuWOP4Y5n80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:7b:e9:df:71:bf:8d:5c:27:78:55:2c:35:69:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: May 11 07:00:49 2025 GMT
Not After : May 12 07:00:49 2025 GMT
Subject: CN=d6f5b0b9a09c3a21d3c8f02cab15fb3a9a5df9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bc:91:23:7e:37:19:7d:54:5b:a8:2a:b3:9a:
5b:37:b0:22:0a:22:d2:25:ef:54:1d:8e:df:3e:e7:
41:92:bf:e6:a6:97:08:8d:21:0e:15:48:cb:eb:ef:
31:ed:dc:cb:8b:1f:15:3c:c8:01:41:44:50:83:80:
9f:a6:a0:f1:21:75:39:86:20:fb:1e:4f:4a:3b:b1:
43:6c:95:c4:9d:38:e9:40:53:f8:3c:2d:00:07:e0:
4f:3c:fd:2a:d5:2f:8a:4c:6f:e5:d6:da:3f:d5:d6:
69:a8:1c:0f:2a:ff:46:51:77:2b:87:d6:8e:11:ed:
41:49:c5:58:03:ec:f5:2b:e7:33:2d:83:21:a2:73:
93:ac:d2:4f:e6:79:5a:be:32:63:c2:86:a4:41:77:
88:86:d3:b5:d6:27:16:46:89:d4:38:53:b8:ec:4b:
87:33:4a:12:1b:62:2c:aa:a9:40:fd:05:0e:50:87:
34:99:2f:5b:ac:9c:d3:43:4f:42:7d:1a:25:55:2b:
3b:88:f2:25:81:47:59:62:09:07:8e:17:56:97:d4:
6d:ab:43:50:5a:b7:31:e7:a4:d3:cc:7a:c5:bd:b5:
7f:b4:b4:85:ea:81:b9:ab:fe:8b:9f:e9:6f:77:64:
35:a5:49:4c:d9:b7:27:ad:12:b6:54:fc:30:84:d9:
e7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F5:B0:B9:A0:9C:3A:21:D3:C8:F0:2C:AB:15:FB:3A:9A:5D:F9:E1
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:11:1c:6b:9e:30:0f:9f:cf:a2:97:f2:eb:e9:df:b9:63:08:
64:02:72:85:d4:6a:79:e9:ed:ce:f2:ba:bf:7c:10:a4:70:6e:
f5:6c:f5:a9:93:4c:3f:79:54:8c:c7:43:be:06:2e:99:f9:5e:
f1:05:81:82:42:04:ad:ba:a0:0b:ca:7c:10:0c:3b:42:5b:68:
d5:cf:05:4b:e1:f7:75:17:df:06:aa:4c:64:01:ee:4b:6c:80:
a2:7c:8d:c5:49:29:4d:89:d6:12:d1:b3:00:13:2c:45:a9:26:
e1:ff:8d:c7:fe:4c:5e:50:b7:ed:8a:63:24:6f:1f:22:2d:c1:
ef:01:f9:a9:b1:6e:58:9a:01:c0:48:6a:1a:fa:78:09:7d:cd:
b2:82:36:1d:fc:ff:61:75:c9:a7:d1:13:67:01:54:d1:ad:80:
bd:06:2e:ef:64:26:49:35:fe:22:4a:79:06:db:09:1b:d3:f3:
66:1f:45:fb:95:7a:62:15:53:5d:18:c2:05:a1:51:fc:c6:0b:
0c:e4:b2:f3:85:fa:50:c3:81:47:a4:16:c3:da:c8:b2:69:75:
9a:0f:21:c3:9d:69:bc:fd:56:4d:53:69:62:cf:2d:3a:04:63:
44:eb:de:73:11:12:5b:3b:cc:02:11:39:5a:cc:a0:6a:23:83:
4f:a4:a9:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:56:20 2025 by rpki-client