Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: O6SpttclVjkyo25fLfTUBLyWzSqhSZOm528FQB0uSDw=
Subject key identifier: 03:DB:91:82:CE:77:AB:AC:64:3E:D8:64:3E:38:0A:9B:A2:4B:70:86
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 0197B70E828F05D176A413C8141E08EDA137
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 05F8
Signing time: Sat 28 Jun 2025 15:01:10 +0000
Manifest this update: Sat 28 Jun 2025 15:01:10 +0000
Manifest next update: Sun 29 Jun 2025 15:01:10 +0000
Files and hashes: 1: 1-zGyc8-sNFoNd9jrRwy0ohv-lr8.roa (hash: X6damPmptp3XphV2HfGbEnZgUQ5Ok8UVDdDjwWdsAA0=)
2: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: 87j29Gb7Fnbv36/34K4lI12e0PbB+fqSFb4Yy9mYSys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:82:8f:05:d1:76:a4:13:c8:14:1e:08:ed:a1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Jun 28 15:01:10 2025 GMT
Not After : Jun 29 15:01:10 2025 GMT
Subject: CN=03db9182ce77abac643ed8643e380a9ba24b7086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6e:75:cb:08:97:32:0a:b4:f9:c2:b5:0f:91:
e2:3b:12:7a:5f:ed:f5:69:7f:05:36:12:17:27:1d:
ba:6d:06:1a:2f:4b:aa:1a:93:d8:02:b2:54:93:54:
9b:96:dd:c7:45:16:f8:5b:d1:e2:60:eb:d6:e1:88:
8e:87:f5:b3:f3:fb:40:b7:74:35:89:8f:6e:39:32:
97:81:18:7e:6f:1b:b2:0e:bf:c5:dc:e1:c9:81:f9:
46:4c:8a:b9:d3:e0:d6:8f:d2:67:77:ef:53:47:2c:
52:f7:a7:1f:41:58:4c:dc:70:a6:4b:5b:9a:0b:77:
19:b9:37:38:d5:88:de:c7:a4:3d:7a:a8:a6:01:81:
a4:b6:f2:27:f9:18:b8:bd:a6:18:e0:e4:5c:49:58:
11:59:d4:3a:ca:23:c4:04:af:dd:b0:05:eb:af:a6:
79:73:c9:3a:bb:03:ef:78:4b:a8:ff:11:3d:5d:9b:
da:4f:a7:6d:bd:33:28:2d:88:47:e5:a3:f4:6d:e5:
34:2b:be:ac:f8:58:a7:28:45:87:30:73:a9:6a:b5:
bd:fb:11:ae:3f:fc:2f:5d:51:98:1f:bc:59:de:46:
66:87:d2:ec:be:ee:8e:80:19:ad:16:f8:42:2e:31:
3a:8a:1f:3c:7f:93:78:dd:26:4b:8c:23:e4:89:3a:
2b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DB:91:82:CE:77:AB:AC:64:3E:D8:64:3E:38:0A:9B:A2:4B:70:86
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b6:07:c6:fb:9b:dd:1e:77:7e:ac:d5:46:01:7e:bf:17:bd:
2b:61:b4:c5:5b:89:a7:c2:dd:d7:3e:c5:f3:b1:e3:32:a5:1f:
46:29:9e:e3:17:a9:fb:3c:9f:ec:61:a3:08:94:c5:0d:99:51:
8e:03:67:21:20:c8:0c:83:c1:4e:3f:47:81:26:3f:22:4f:8d:
6a:39:2d:6a:61:27:2a:8d:16:3b:83:d3:61:70:39:03:f2:eb:
7f:9b:70:e4:39:cf:6a:ea:c4:0b:a6:83:22:8a:fb:d2:55:79:
d2:7b:a9:c1:29:f1:ec:be:f9:d7:cd:b2:9a:3e:b2:c8:9c:c7:
b8:09:34:ae:73:f7:38:06:9a:d2:d5:29:c8:de:16:e0:7a:8f:
09:e3:52:63:c8:7b:72:84:4e:ce:9c:2a:15:24:93:f9:0e:c3:
60:19:f6:c8:59:d8:2a:ef:c5:94:ef:0a:dc:d0:60:95:99:f5:
10:5b:1e:2c:a3:e5:9f:2d:94:e0:b4:07:49:93:bd:78:11:44:
35:8a:0c:ec:18:a5:40:0c:02:a5:4d:dd:ae:c3:67:d6:fe:04:
c2:0e:da:98:a9:e3:93:49:40:30:b4:89:ab:3c:ea:6d:de:43:
61:36:ab:2a:c1:b4:fd:a6:d0:cf:f5:27:a8:c1:7a:fa:7b:21:
8c:dd:de:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:08:12 2025 by rpki-client