Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
File: 0KNDo37K0r-yw1vZsm1_SLy1dTc.mft (raw, json)
Hash identifier: shqHD7ts7gp/9vpzseTDZlMHwhGABfwZg5oijgpmDwY=
Subject key identifier: 6E:EB:30:D3:1D:CF:EF:55:10:3D:58:D7:D8:C0:C9:AA:CA:07:A2:97
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 0197B70F263395A68FB764F23CEA349EC04E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
Manifest number: 1546
Signing time: Sat 28 Jun 2025 15:01:52 +0000
Manifest this update: Sat 28 Jun 2025 15:01:52 +0000
Manifest next update: Sun 29 Jun 2025 15:01:52 +0000
Files and hashes: 1: 0KNDo37K0r-yw1vZsm1_SLy1dTc.crl (hash: P2FpCKtSQx3McmHinAadNsoCSfY9L/L24EAa9bIwCuk=)
2: cednPNYKxfRsr4W4osQ0UxWr_xg.roa (hash: bAnClABodJAGvw6mOL61pHv3A1a0Gmryz3vjrqAKOxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:26:33:95:a6:8f:b7:64:f2:3c:ea:34:9e:c0:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: Jun 28 15:01:52 2025 GMT
Not After : Jun 29 15:01:52 2025 GMT
Subject: CN=6eeb30d31dcfef55103d58d7d8c0c9aaca07a297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a4:b8:dc:87:a8:03:1d:51:6b:48:f8:07:87:
c9:d6:bb:da:f5:eb:94:52:88:68:01:60:87:75:ad:
cb:57:2e:25:03:3c:42:94:c9:39:d4:db:49:69:cc:
25:93:60:16:79:d3:22:37:60:36:04:36:f7:6a:52:
e6:67:e0:ea:b9:bc:ee:6d:f7:17:6c:7c:ff:cc:7d:
cb:34:11:0e:07:b2:d0:7d:9b:87:09:2a:a8:fd:2d:
29:ee:fc:de:29:02:e7:36:0d:d0:c2:d8:a5:07:07:
9a:fe:25:14:8e:38:50:3a:1e:a4:d7:a3:46:fd:ac:
53:9f:48:f8:7b:f0:1f:45:d5:3e:c5:cf:d1:da:34:
1d:62:27:f6:be:10:08:a9:3f:a1:45:5f:67:ec:17:
2d:26:77:2c:9a:97:6e:65:72:b4:b7:a5:99:00:67:
ac:48:d0:cc:46:89:4e:4e:21:c1:a3:27:5c:5d:27:
11:74:b3:c4:1c:f3:dc:df:e6:d8:74:92:4c:e9:7a:
97:a5:47:f8:85:66:3e:5e:25:ff:04:6f:3f:b1:58:
03:5e:40:4b:87:09:8b:42:42:5a:07:ed:da:97:22:
43:5d:b2:c6:a0:95:9c:3a:d0:cc:85:cd:d6:49:b5:
88:60:09:01:ad:1b:7f:2c:99:1e:cb:68:52:b0:b7:
11:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EB:30:D3:1D:CF:EF:55:10:3D:58:D7:D8:C0:C9:AA:CA:07:A2:97
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:38:9a:d0:7f:74:54:7e:38:85:4c:b4:b9:65:c8:ff:16:d0:
b7:2a:5d:f5:5f:85:3d:27:1a:a5:53:a4:fe:97:60:ad:f8:2c:
6c:ef:88:a7:98:9e:79:8c:cc:6c:8f:eb:70:b0:29:c1:ee:61:
6f:d4:24:65:11:40:1b:74:35:10:8b:cf:1c:e9:f4:e9:2f:b0:
74:da:77:08:41:1e:23:db:f4:9e:fc:6e:98:36:ef:28:51:03:
3b:a2:f9:da:76:38:b5:d6:c9:c3:11:51:b2:2f:c1:e0:51:ab:
ba:4b:df:c4:8e:61:21:54:87:74:f3:f5:96:ff:af:21:f6:f7:
44:c9:4f:0d:68:95:86:de:34:67:70:69:1b:2a:c4:37:95:90:
f2:13:dd:53:00:01:1a:f3:56:0e:2c:39:8a:de:d9:5e:8e:e8:
85:91:c8:24:57:54:cc:51:48:47:b9:07:47:06:9c:c0:f2:50:
b7:a8:d7:82:b8:67:6c:01:fb:6f:df:7b:03:9e:72:ff:b7:6f:
48:4f:79:16:1d:55:ea:52:f3:46:24:b1:9d:f1:76:b9:b4:a3:
19:a0:54:ad:2d:f7:d2:28:45:46:19:88:1d:7d:72:b4:58:14:
1f:ad:75:f6:80:a0:fe:e4:ef:ac:84:8d:d1:aa:bb:8b:d0:ac:
c2:a5:4f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:55:49 2025 by rpki-client