Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: R3m/Z2NwiU0LAu0nVVMDX8ae2t1c+Vv/UJaDaGFawIE=
Subject key identifier: 05:09:96:52:DF:5B:84:14:3F:E4:CC:E7:26:42:14:87:9E:8F:0A:9A
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 0197D5BDA11011C9B61B9CD06BBF604A0522
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0C9C
Signing time: Fri 04 Jul 2025 14:01:03 +0000
Manifest this update: Fri 04 Jul 2025 14:01:03 +0000
Manifest next update: Sat 05 Jul 2025 14:01:03 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: xFsVQ5ltWP2TnyizStGUWrWDVHIVwF2CN925alrmb+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d5:bd:a1:10:11:c9:b6:1b:9c:d0:6b:bf:60:4a:05:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Jul 4 14:01:03 2025 GMT
Not After : Jul 5 14:01:03 2025 GMT
Subject: CN=05099652df5b84143fe4cce7264214879e8f0a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:13:28:fa:6c:93:79:61:23:40:7a:60:56:e9:
70:a4:ec:19:53:1e:21:c8:7c:44:a4:4e:34:d7:b6:
ff:f5:8c:a6:81:08:03:76:cb:cd:02:17:24:2a:5c:
a2:15:a0:7b:a6:39:f0:34:d2:13:41:71:5b:39:bb:
ba:aa:34:3a:47:29:1e:df:22:ea:9e:6b:35:dd:23:
21:1a:ff:a3:6c:30:69:2e:59:2b:f7:3b:a3:ba:f9:
a5:68:80:a3:7c:de:5d:74:f2:c7:91:0f:c3:dc:c9:
35:d7:39:d4:3f:70:0a:c4:39:e1:cf:33:b8:57:d9:
e6:ab:d5:36:b6:ba:cf:e2:0e:62:44:f3:b0:bf:d3:
d1:9e:fd:c2:bd:67:0c:f6:e6:a2:5b:b7:a2:85:23:
2c:ee:e3:a8:33:53:93:1b:9d:77:a9:24:95:22:6c:
73:13:67:69:e3:77:6b:ae:92:28:44:e1:bd:8c:f1:
2a:88:b1:c7:69:40:2e:62:4b:d3:2d:d2:70:16:c6:
34:be:dc:a8:98:ec:cb:64:c5:63:61:69:e1:08:35:
e8:32:80:16:ec:05:5c:c3:70:b0:72:e1:74:11:62:
81:5f:c7:ed:63:64:71:b1:7e:6f:9f:ee:7c:70:42:
46:0d:43:fe:35:c2:93:47:61:08:83:65:d3:c6:94:
d6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:09:96:52:DF:5B:84:14:3F:E4:CC:E7:26:42:14:87:9E:8F:0A:9A
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c1:d7:a0:40:79:9e:89:61:14:38:c2:b8:26:e0:0e:1f:32:
3d:ba:f0:3d:63:e4:94:7d:9b:10:59:20:dd:2b:35:bd:33:7b:
c7:f1:a8:aa:01:42:37:88:a9:fe:34:0a:41:ef:0f:b0:57:4d:
9e:0d:4d:33:df:6c:27:f3:0b:c4:62:d8:e8:70:71:94:c2:9e:
45:ed:50:eb:7b:33:e6:e1:1d:a9:ca:18:67:3a:19:a2:0c:c5:
2e:91:18:bb:ea:85:6e:06:cf:8a:2b:18:b7:b5:a0:14:48:49:
16:7e:1b:d5:d3:02:ff:2e:e0:6e:ad:e9:90:d0:a4:a6:be:64:
ed:71:cb:41:d1:5f:f1:c9:9a:92:11:f7:0b:42:66:ab:6a:f2:
12:d1:a5:dd:10:47:1d:12:6c:3e:af:fc:24:c6:0e:cf:8c:ed:
bf:f4:68:3f:1b:51:a2:06:7d:b6:a6:55:8e:09:91:e3:0f:27:
19:f5:d3:03:c1:8b:d6:27:8d:0f:06:5e:7d:1c:fb:f1:ea:1f:
5e:35:25:3f:6e:1c:ea:69:ad:dd:c2:7d:11:ab:8e:54:84:55:
7e:0c:1c:60:dd:4a:2a:68:27:3c:03:c8:06:1d:81:7a:2b:1a:
56:24:9e:9a:0c:c5:0c:74:e1:e7:7a:c3:bf:ca:3e:07:43:70:
4b:99:f6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 17:45:32 2025 by rpki-client