Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: 2NEfXNbz4R0HO6IAV9kMnuHntBQUZUIgYQjCUym9wd0=
Subject key identifier: 35:41:8F:0D:17:79:0F:46:68:4F:E5:04:13:4F:A6:1A:40:EB:2C:11
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 0197B6D78F569F870054F399C1E540725166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 14:01:09 +0000
Manifest this update: Sat 28 Jun 2025 14:01:09 +0000
Manifest next update: Sun 29 Jun 2025 14:01:09 +0000
Files and hashes: 1: 8SQTxy_p8cY9en9UR93vjFnnH74.roa (hash: LPCNfHY24fbVR2x4GxfhYD0c8Fxi97g9FBcWFfU2h/o=)
2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: 0L06+94+jmMCaQVKKx0igv83CHOcngVIqLl1Tl7by54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:8f:56:9f:87:00:54:f3:99:c1:e5:40:72:51:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: Jun 28 14:01:09 2025 GMT
Not After : Jun 29 14:01:09 2025 GMT
Subject: CN=35418f0d17790f46684fe504134fa61a40eb2c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e9:03:c4:1d:0a:15:97:48:75:b6:ba:99:f6:
d3:c5:e9:6f:31:36:40:3a:90:cd:0a:e8:b9:36:f0:
fd:ac:c5:73:84:9c:25:5f:92:8c:93:93:3b:ae:4d:
df:fb:35:16:27:15:9e:22:f2:55:e6:70:71:b5:d6:
bc:1a:c1:7c:0c:09:14:1b:ae:63:a4:7b:98:2b:d8:
40:e7:c4:b5:fb:17:1e:83:39:3e:49:86:6a:19:c1:
1a:e5:f8:e2:4f:56:7a:54:13:21:5a:3c:80:2d:54:
dd:48:32:e9:a7:4b:d5:69:98:0d:aa:6d:a9:5c:42:
92:7d:96:70:58:02:6c:02:a0:d2:65:41:22:f7:ad:
f8:3c:4c:7b:1e:b4:32:90:21:37:d9:60:b5:aa:24:
25:bb:d0:56:58:4a:db:f6:55:ff:98:37:7b:02:b8:
93:38:19:91:cd:0d:54:3f:24:54:a0:b6:81:f4:02:
73:47:8f:d6:ac:9d:e6:00:d9:65:c0:b9:c9:9f:72:
59:86:f7:90:a3:e3:2c:64:13:df:5f:46:af:39:f1:
fc:69:0b:04:4e:7a:0b:4d:1a:1f:2e:51:a3:dc:8d:
9e:24:88:ff:0a:e5:f6:af:e3:d7:33:91:55:ae:1c:
25:c6:3a:04:98:e0:a0:ea:e6:96:2c:61:5a:46:07:
3e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:41:8F:0D:17:79:0F:46:68:4F:E5:04:13:4F:A6:1A:40:EB:2C:11
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:32:aa:4d:e4:77:bb:66:06:70:80:2d:8b:f9:e8:2e:82:f4:
7b:81:28:3e:11:87:3b:13:a0:01:a3:05:b2:55:fb:85:1d:f5:
55:7f:c8:c1:b4:0d:ec:3a:17:0a:f0:8d:40:a1:19:ef:2c:be:
10:c3:0b:82:40:cc:65:4f:d5:c4:53:01:c5:cd:53:19:6a:ef:
13:9c:35:de:1f:ed:46:3f:61:a2:b6:6b:67:70:ea:2a:da:7d:
41:ef:a6:10:03:d2:f0:9f:93:88:48:db:f5:6f:60:76:c6:b9:
7d:d7:2d:c5:ed:2b:e5:c8:0f:29:1e:32:c2:f2:f8:c0:9f:21:
35:0d:41:99:da:5a:c8:7d:09:6b:78:ae:39:a6:c5:12:f3:49:
0a:cb:c8:65:7b:e8:1d:9c:9f:e5:ea:59:a8:dc:d9:d9:3e:eb:
f6:c2:81:88:67:36:46:c4:40:06:71:33:91:ed:ca:ad:f3:78:
dd:66:6f:bc:94:c9:b1:b0:58:dd:99:9a:40:55:ef:76:e9:78:
a8:53:37:36:41:40:2b:3c:84:bc:87:ab:c3:80:e6:90:cb:e7:
55:b4:51:b5:da:b7:d9:c4:4f:e8:51:fb:b5:8c:66:6a:fe:92:
d7:20:80:ed:46:cf:36:a6:7a:b1:92:38:d3:f3:63:43:8c:95:
c4:72:83:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:55 2025 by rpki-client