Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json)
Hash identifier: 54n5o8/FcMOaGI021s8iYULTjLZ5opDQ+dZYQSewqGg=
Subject key identifier: 60:99:FA:E3:B1:89:97:DC:93:9F:B3:E8:E8:28:43:97:69:EA:61:D8
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 0197CB71260A4E185769321B81B8D266FC1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
Manifest number: 01DB
Signing time: Wed 02 Jul 2025 14:01:19 +0000
Manifest this update: Wed 02 Jul 2025 14:01:19 +0000
Manifest next update: Thu 03 Jul 2025 14:01:19 +0000
Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: aJFktD617A7Gwk9Bn40Zm4c5utffNvGwqy62sjfJSSA=)
2: BPcKYotNA4ZeZvm82W73v75zPQs.roa (hash: oHpWOGTj/PoKbHsHCYFs8uXPSnbHGEoV8KY7k9zJBk4=)
3: GkxGrjdz0A7AWmifnWDimQZWI38.roa (hash: tHXJR2KGAG4wHE8bdFOYoF9Jdtd+4jQD2aXhMHJzWK8=)
4: OFO40pbXY33B4_R6m0vxzmJtlaE.roa (hash: OKgJmR90SzKnzfJWjgu0f1y4g1wd7HW3UjBatZfs5A8=)
5: ief4j2bb-cAvwzzS1T0xB8OgxGk.roa (hash: cv2vWMrY2M65pVapU15+XFEE8tVsd4Na8PnjBxEQRuA=)
6: wkwsgzJc2eo9ng8QQ8kvMc3qjbc.roa (hash: +iuoTytPo6r5GmeijHeI4hmWR8iJmhnqPLAkE9k79sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:71:26:0a:4e:18:57:69:32:1b:81:b8:d2:66:fc:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: Jul 2 14:01:19 2025 GMT
Not After : Jul 3 14:01:19 2025 GMT
Subject: CN=6099fae3b18997dc939fb3e8e828439769ea61d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:f7:38:09:3c:61:fd:96:3f:34:f2:c1:65:
36:20:4b:40:56:85:62:12:df:cd:92:34:4c:19:59:
f0:7e:3b:42:e2:1e:b4:d1:0f:4a:19:90:75:3a:8b:
0a:7c:71:59:14:b9:cf:47:9a:f2:93:6d:40:c7:61:
e8:48:2d:c2:8e:a7:7c:22:9c:24:f6:21:4e:b2:13:
04:de:87:bd:d7:c5:a2:93:45:d4:98:28:94:b8:7c:
06:56:8a:57:27:84:c9:fe:be:45:40:97:18:5e:a5:
c1:69:32:f4:82:2c:35:db:d8:a8:25:4c:e3:ba:a8:
f8:c0:a3:fb:33:c7:1f:19:da:77:06:31:d3:db:99:
a0:3c:9c:af:cc:3f:3c:40:91:6f:47:d8:5d:1e:4d:
ff:53:32:a0:b1:20:13:61:b8:51:fe:fe:f8:7b:2c:
65:9b:67:8a:2e:d8:16:07:d6:07:ca:9f:a5:cc:01:
25:22:57:11:b8:04:83:a7:26:d7:9e:c7:8a:25:41:
51:7b:08:e0:26:37:9e:ee:3a:10:2c:62:e2:68:86:
6a:fd:08:05:27:a6:d9:ad:b7:a2:0f:58:52:34:fd:
63:ab:9a:67:ac:01:1c:a9:58:69:fa:f2:a8:8b:19:
2c:80:33:21:b1:8f:d1:0b:82:c1:e6:7f:49:e1:a0:
eb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:99:FA:E3:B1:89:97:DC:93:9F:B3:E8:E8:28:43:97:69:EA:61:D8
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:ad:04:64:26:c9:1e:3b:b1:1b:00:04:bc:19:ac:5c:d6:35:
a3:a6:5f:1e:c0:cd:0a:43:4d:f2:fd:99:7e:cd:24:55:6a:88:
24:80:32:d2:d9:f7:8b:ff:02:f8:78:81:5b:2f:65:39:57:86:
27:c3:9e:4f:ff:14:3a:bd:da:64:86:1c:92:75:1f:ef:c9:b9:
f8:78:31:c8:d7:9d:d6:4e:98:12:43:80:0f:02:4d:1d:86:df:
fc:29:a9:f1:c1:53:05:86:1c:b3:35:fd:a0:c8:d4:a1:60:ab:
0b:6d:01:5f:d6:dd:62:84:18:0a:da:67:76:fa:86:55:c8:62:
80:27:03:60:7a:47:26:05:e4:e9:ab:2e:aa:14:77:9f:1e:46:
ba:19:d2:f6:9a:48:4b:8a:3b:2a:64:b7:e6:f0:dc:8d:e4:7b:
5f:fa:54:ce:7b:fc:02:37:d8:12:cd:98:2a:99:73:8b:58:b7:
a3:05:4b:06:db:f3:03:06:6f:4d:bb:2f:ba:73:4f:c7:55:58:
b4:c6:7c:44:10:0e:9d:48:58:e7:8b:f5:93:e0:b1:cc:b2:df:
8e:66:c5:fd:6f:48:51:76:09:8c:1f:6d:b0:22:b5:5c:5a:e1:
f1:8b:fe:1c:3c:79:9c:5b:a0:39:8f:93:18:8e:04:d9:4a:4d:
71:bc:ca:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 15:57:21 2025 by rpki-client