Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
File: 0PT6gHWHU7JDohZe3ep12-7oJsQ.mft (raw, json)
Hash identifier: 2NTN0ogdpeviMTDa7R305RMoETFtjVZ88RJez6T/Jds=
Subject key identifier: A4:7E:74:97:77:DC:EF:D3:D8:F5:36:6D:24:FC:46:52:3D:9C:7A:8F
Authority key identifier: D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
Certificate issuer: /CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Certificate serial: 0197B7B35FB1B6DB4ECF17A4F8F4008C34F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
Manifest number: 10A1
Signing time: Sat 28 Jun 2025 18:01:15 +0000
Manifest this update: Sat 28 Jun 2025 18:01:15 +0000
Manifest next update: Sun 29 Jun 2025 18:01:15 +0000
Files and hashes: 1: 0PT6gHWHU7JDohZe3ep12-7oJsQ.crl (hash: +MHng4cKHZmvkp7hjYHzWgGfEnVei25191Jfp2lpXzc=)
2: dylc3WZzrjgV2VB-T70ps5y7_v8.roa (hash: CjiSp/7ghqmIWPlGrqN52h+3zV23QhuVF2kvnW7CFVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:5f:b1:b6:db:4e:cf:17:a4:f8:f4:00:8c:34:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f4fa80758753b243a2165eddea75dbeee826c4
Validity
Not Before: Jun 28 18:01:15 2025 GMT
Not After : Jun 29 18:01:15 2025 GMT
Subject: CN=a47e749777dcefd3d8f5366d24fc46523d9c7a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:43:5f:a3:f1:b9:ed:c0:6a:79:0b:cb:5f:29:
6d:ba:f1:05:be:9d:de:c4:76:77:84:68:e6:3f:4f:
37:65:d4:f3:cc:38:ca:8e:c9:62:16:bc:7a:b4:be:
8f:9a:b6:12:f4:af:87:be:34:34:76:fa:64:84:c8:
46:95:01:df:3b:51:a0:7e:4e:3e:2a:bb:60:d1:45:
ff:7a:91:53:a4:2d:dc:ef:08:59:d8:cd:1b:dd:66:
4a:0f:b4:5e:9b:00:fb:e2:da:f9:9b:f6:dd:24:b3:
02:0c:4c:6a:76:dc:43:41:82:6f:f5:b0:39:9a:f8:
a6:ea:64:92:61:d0:ae:72:37:8f:a3:de:d0:ef:34:
18:28:34:14:af:7c:9d:3b:5a:b2:80:a3:70:0b:03:
ab:bd:1b:33:9e:31:9a:28:b3:4a:60:81:c9:70:ca:
77:ff:d7:ff:35:07:fe:83:73:25:d5:04:74:fb:b3:
ce:ff:86:f7:a5:c3:0b:32:78:7c:83:9a:f8:c3:d2:
c8:d0:42:dd:26:56:e7:c2:c3:ac:a7:a1:00:41:27:
8d:59:51:b1:93:37:d7:29:77:36:ac:06:96:59:63:
5f:53:22:a9:bb:b3:7e:c7:d9:90:d4:7c:1c:9b:a9:
9a:cb:d6:a9:c7:1e:21:c3:ed:d9:17:06:98:71:0a:
ff:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7E:74:97:77:DC:EF:D3:D8:F5:36:6D:24:FC:46:52:3D:9C:7A:8F
X509v3 Authority Key Identifier:
keyid:D0:F4:FA:80:75:87:53:B2:43:A2:16:5E:DD:EA:75:DB:EE:E8:26:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PT6gHWHU7JDohZe3ep12-7oJsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ca5c19-e496-49e8-8b93-72a1f37719bb/1/0PT6gHWHU7JDohZe3ep12-7oJsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ad:fe:74:f0:1d:43:53:35:77:b5:a3:60:d5:bf:b2:ba:63:
06:ad:91:cf:69:3a:a9:a4:cc:98:13:5e:33:48:cb:a8:29:f4:
78:b3:76:71:0d:05:f1:ab:55:c0:6a:58:48:74:d9:2d:80:56:
86:1f:5d:37:19:1b:53:c3:2e:8d:2c:35:09:c8:a2:67:72:bb:
e3:bc:d3:89:7c:7a:95:96:a4:53:64:a8:0d:ae:cf:06:b1:83:
13:3e:c1:c0:d9:11:f4:44:db:6b:69:94:7f:1a:4b:e2:09:01:
57:e8:91:76:50:2f:e7:0d:79:ef:39:49:87:79:60:92:92:3c:
42:ee:5e:3b:60:97:f8:e6:0a:42:f7:8b:a2:49:9f:b9:69:89:
8c:c2:d3:bd:c3:81:24:46:f3:33:12:51:f9:e4:04:e9:00:94:
0d:80:08:84:82:a6:e7:5f:7b:d6:68:20:e2:37:83:4c:fd:b6:
9a:7f:de:fe:50:9a:e6:2e:fb:ed:3d:7e:30:af:3f:f6:9c:8f:
6f:30:bd:f5:48:0f:29:dc:8c:c9:7a:30:a9:15:eb:7d:c3:0e:
4f:53:e5:e1:40:34:94:8b:3c:a6:62:ec:87:22:22:54:9b:50:
53:85:97:c2:ab:ed:ca:44:01:38:5d:c8:11:50:e9:dc:d4:4a:
ed:8c:49:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:13 2025 by rpki-client