Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: VQN7JMahOhXpTZZls5Ta9KB+ZqkkVP0cXIkz1EC0h10=
Subject key identifier: 66:01:41:0E:14:B7:F2:46:9D:24:4B:1A:82:F9:DF:5F:CF:42:93:8F
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 0197B88F5D2DCDC30EC8195B2A48F623CC9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 0171
Signing time: Sat 28 Jun 2025 22:01:32 +0000
Manifest this update: Sat 28 Jun 2025 22:01:32 +0000
Manifest next update: Sun 29 Jun 2025 22:01:32 +0000
Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=)
2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: 9Vv53zLMa8DouFM7/oS+XW5fuByjfaDjBOLT5vpqGkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:5d:2d:cd:c3:0e:c8:19:5b:2a:48:f6:23:cc:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Jun 28 22:01:32 2025 GMT
Not After : Jun 29 22:01:32 2025 GMT
Subject: CN=6601410e14b7f2469d244b1a82f9df5fcf42938f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:a9:c1:b3:79:b2:8e:52:ec:77:ef:79:98:
15:a0:8c:dd:39:e6:c7:0a:13:ce:73:d9:71:ce:3d:
d6:cd:29:c4:f7:c4:ac:07:bf:4e:44:db:33:65:a0:
17:5c:9b:99:39:66:21:50:8d:2e:c3:5c:f7:a8:9d:
99:34:22:21:7b:0a:b9:68:97:33:f1:e3:e3:4a:09:
9d:23:71:19:ae:9e:ff:37:70:91:f9:3e:6b:0f:21:
0f:ea:d8:c9:d4:03:94:6d:aa:33:f1:d1:d6:5d:96:
ca:85:d0:8e:9c:ea:7b:60:94:7b:ca:e5:c9:32:02:
95:f4:d1:45:61:b7:b9:b8:03:96:2c:7d:69:a5:2a:
58:c3:b8:da:4a:23:06:41:df:4b:8a:c0:cb:df:f0:
14:35:62:c5:98:06:89:62:ea:76:4a:96:f9:de:78:
e6:13:4c:85:e1:9f:f3:1c:97:df:50:ab:36:cd:87:
66:33:7a:78:57:cb:38:d0:2a:76:77:3b:40:dd:5b:
9e:7d:ef:68:1d:66:73:ba:c1:b0:10:d0:3f:53:8d:
0b:ee:6c:64:c1:14:88:8a:91:85:14:27:47:b0:bb:
17:b3:a0:b7:e3:a7:d7:1c:8e:10:7e:e0:4c:b9:7a:
6d:27:a3:9a:35:a7:af:e7:8c:9a:25:91:fe:16:16:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:01:41:0E:14:B7:F2:46:9D:24:4B:1A:82:F9:DF:5F:CF:42:93:8F
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:fd:00:e9:a6:0c:38:6a:b1:ca:e4:92:10:d3:c9:9a:b3:5d:
ef:b3:43:53:ac:c1:14:d6:a8:7b:ec:50:bb:5a:84:cb:65:92:
ed:05:c2:0a:fb:98:ae:48:aa:6c:4f:1e:ef:05:ed:3a:d2:c1:
e7:84:dd:2b:5e:31:99:02:40:13:2d:b7:dc:61:2b:82:1c:de:
2b:7d:9a:98:01:e4:68:67:1a:7d:d6:1c:02:40:a4:77:b8:f3:
6a:aa:9d:5d:fd:99:d8:f3:9c:f8:93:1f:56:62:50:0d:fc:f1:
f3:fe:5e:1c:ca:30:d0:74:8a:d5:f9:52:bd:48:2a:b7:68:e4:
89:e7:10:44:6e:65:e6:e5:25:2b:53:1e:42:4b:fa:d7:ec:41:
58:f4:9c:5a:03:f9:03:54:f7:fd:d2:2a:eb:10:ea:94:1e:5e:
fd:15:28:de:9c:cc:91:53:dd:6e:94:3a:a1:9a:a1:f0:3d:ff:
d6:53:c2:8b:fc:49:49:19:e4:81:b1:41:cb:dc:1e:fe:84:73:
7c:a7:b4:07:e4:93:a5:55:ba:ce:4f:ef:7d:dd:3e:b9:13:65:
ad:5e:c3:bd:61:00:70:8c:ae:ae:36:6d:12:13:f5:d1:e4:58:
18:ca:09:2e:39:e9:76:ff:84:00:31:c1:3d:4e:5d:3d:ee:fb:
99:aa:52:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 07:56:42 2025 by rpki-client