Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: cInNQFO7PrRaPwyDGj6AHb16uS6Dco+sZcV5hxaSytA=
Subject key identifier: 24:99:5D:5E:4D:46:90:AB:AB:D0:BB:D0:D5:4E:8A:B4:6B:02:62:01
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 0197C8022BC53AC1169513AD86F1C227EC08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 0234
Signing time: Tue 01 Jul 2025 22:01:14 +0000
Manifest this update: Tue 01 Jul 2025 22:01:14 +0000
Manifest next update: Wed 02 Jul 2025 22:01:14 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: LjRUzmJgUioMHNA7iLCyDzKVSpIIHEEr7LmVNVYohAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:02:2b:c5:3a:c1:16:95:13:ad:86:f1:c2:27:ec:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Jul 1 22:01:14 2025 GMT
Not After : Jul 2 22:01:14 2025 GMT
Subject: CN=24995d5e4d4690ababd0bbd0d54e8ab46b026201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a9:f5:0f:95:56:6b:41:85:f5:16:27:dd:27:
ce:85:6b:ae:4c:87:bd:dd:4b:c7:59:0f:e6:20:22:
73:9d:9d:bd:ba:60:ac:21:0c:31:8b:45:d6:5d:18:
b3:87:3e:53:93:ae:d0:5a:c9:1d:14:1a:aa:dd:06:
d9:ba:89:a5:34:7d:f8:5f:c9:52:4a:20:ac:42:ff:
42:5a:d9:78:2d:7b:ab:1f:f8:34:77:f0:03:85:05:
88:b6:b6:74:65:8f:18:78:36:7b:62:7c:21:e1:38:
52:c0:fd:5f:ec:c2:ab:98:3d:d2:32:e3:c7:b3:74:
f8:ff:cf:8f:07:4a:3d:53:f9:64:47:4a:ac:ef:cc:
ee:96:ee:25:3f:1a:29:47:c4:11:36:10:3d:76:36:
2a:92:5a:e3:44:85:0c:a9:51:9b:c6:dc:31:af:66:
3e:04:ec:eb:95:43:55:b0:19:fd:4d:d2:7b:d4:f7:
4e:3a:15:d3:e6:26:17:bf:c7:ae:16:79:f8:c7:11:
cd:f0:e6:f1:7a:01:f0:31:f4:12:f8:68:d1:21:72:
f1:93:45:42:3a:03:26:69:4d:34:24:29:e3:13:b9:
d9:fb:64:fb:b9:87:8b:a7:d6:b4:d1:fc:9a:b4:cc:
84:4f:43:ac:72:0a:8b:8d:e5:b7:b9:a9:27:64:87:
a9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:99:5D:5E:4D:46:90:AB:AB:D0:BB:D0:D5:4E:8A:B4:6B:02:62:01
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:49:17:86:19:c3:ee:29:47:5c:31:4d:aa:c3:af:a5:57:ab:
3a:0e:de:8e:34:cb:35:bb:8a:91:17:0c:4e:5e:fc:be:4f:73:
a7:07:87:1b:4b:94:71:77:88:50:1f:e6:c1:ca:cd:24:24:82:
1e:f9:08:51:f3:17:08:e3:60:61:3b:a3:da:51:41:5e:87:15:
eb:dd:7e:b6:8d:e5:da:d0:a2:9f:57:ce:97:ef:eb:9b:e8:ae:
92:01:d9:0f:d5:51:2d:45:da:e2:16:49:11:c1:72:4f:33:77:
16:58:60:2f:4c:0d:c7:f1:b7:d1:7f:ca:58:ae:4f:22:b9:bf:
ec:3b:5e:71:19:9d:88:1a:cb:4a:6d:c7:8a:a5:de:c3:12:38:
fe:36:bd:6c:b8:c0:36:28:a4:43:da:ea:34:07:8b:16:37:07:
1d:bd:2f:4a:3f:fa:09:7d:0e:c2:e5:03:f1:43:f1:9a:76:1c:
84:36:26:e6:de:59:bb:bd:c2:fb:85:7c:02:65:9c:19:4a:fb:
24:97:0f:40:7d:31:8e:e0:4c:b0:53:b7:f9:2a:1e:11:2c:ab:
5b:02:2b:33:f2:6d:f8:7e:df:b6:13:86:6a:bd:b9:10:68:eb:
85:c8:f7:09:ea:45:7f:bd:24:89:d1:84:b0:23:00:d1:3d:5b:
de:9f:f5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 01:41:49 2025 by rpki-client