Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: 7MHIOmW4VqxyhcTnawkZ4+ZAfC2eWO3spB22ql4ZmBM=
Subject key identifier: A6:83:1E:9F:0E:47:5C:1D:8F:92:9C:CE:F6:67:8C:B8:38:B8:61:F5
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 0197B6A07DB7B00AF94539C252FEBF033474
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 0120
Signing time: Sat 28 Jun 2025 13:01:00 +0000
Manifest this update: Sat 28 Jun 2025 13:01:00 +0000
Manifest next update: Sun 29 Jun 2025 13:01:00 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: DDZbZQmUHiFtq3occAKN28hTp5p4SM3dAYW5vx0wy4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:7d:b7:b0:0a:f9:45:39:c2:52:fe:bf:03:34:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Jun 28 13:01:00 2025 GMT
Not After : Jun 29 13:01:00 2025 GMT
Subject: CN=a6831e9f0e475c1d8f929ccef6678cb838b861f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2b:36:7d:7e:4a:d0:73:87:cd:a5:75:bf:9a:
26:f3:e1:bd:12:db:cf:df:4c:d8:2f:39:08:59:22:
4f:da:4b:50:72:fb:9a:3c:97:52:be:a6:32:5d:11:
c2:d1:3b:07:41:22:26:aa:34:94:0a:94:fd:99:d2:
f8:46:4b:f4:f5:7d:fa:e2:21:e7:69:e7:1d:83:a4:
67:2d:2b:78:6a:57:59:4a:ac:51:34:22:9a:14:99:
ef:c2:83:63:56:57:29:61:1d:45:b6:de:0e:c9:a7:
d1:b5:3e:5c:90:48:af:1d:e2:ae:7a:55:02:62:c5:
02:9f:11:35:ab:ab:89:76:b9:9d:20:59:3d:a5:d6:
00:45:f1:48:55:ae:3a:6a:3d:5e:ac:4c:d3:0d:ee:
93:8f:50:05:b3:9e:0b:4d:69:22:4d:10:0a:df:bf:
7e:5e:ea:f8:45:36:fb:ac:f1:41:69:a2:29:93:bf:
67:3e:47:4e:f7:98:ce:e8:6b:e2:0a:66:23:86:c8:
77:f8:26:4a:cc:e9:85:c9:41:2c:49:a2:a8:ac:d6:
26:9e:db:7b:16:f4:e7:69:7d:3f:ce:66:36:47:30:
a4:d3:f3:9b:fe:34:cc:26:92:eb:c5:72:a6:9c:94:
d3:c9:3c:1f:52:b5:c3:ef:ab:38:a4:bb:7e:36:a9:
4f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:83:1E:9F:0E:47:5C:1D:8F:92:9C:CE:F6:67:8C:B8:38:B8:61:F5
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:93:88:72:11:d2:c2:d6:12:17:01:15:e1:e4:db:ef:4e:be:
33:dd:ed:1a:75:c0:31:aa:cd:8b:f7:8b:b6:60:1f:be:b1:fd:
1f:b3:c4:42:be:db:65:3a:5e:0a:15:39:aa:98:c9:40:12:ee:
3d:81:d2:f5:69:9b:ed:90:f4:6f:c9:d3:43:1c:29:62:1c:66:
e7:45:57:3e:68:b4:a4:8e:bf:b1:23:00:20:c1:cb:df:71:7c:
9e:a4:b6:d1:da:14:9a:5b:ca:cc:22:6b:bb:8d:7a:b5:cc:bc:
a5:b2:45:19:f9:db:aa:9f:93:c4:5c:b2:af:3e:2c:e2:4b:3e:
5d:4a:f3:48:70:4f:51:bc:84:4e:0f:b8:20:19:4b:9d:15:cc:
da:02:4d:17:78:5a:5e:a9:8f:2b:db:f6:52:1f:67:c3:84:90:
0c:3a:97:92:89:af:49:ac:13:37:72:68:fe:d1:1b:8d:5c:f4:
b1:8d:74:77:3f:cd:33:4a:b4:e8:b1:6c:60:f3:00:82:8a:81:
cc:55:8d:bc:3a:b9:74:a2:e2:66:ef:ef:98:8a:47:b2:30:53:
8a:c5:30:57:84:51:e1:2a:0a:7a:c1:43:8d:1b:fe:ff:85:a6:
ce:66:04:c3:85:e9:10:34:11:b4:74:1f:25:e8:b2:bf:19:95:
9d:a3:d5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:26:07 2025 by rpki-client