Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: UPuhX+vm/uCr6Egb0QA1JZSZtCBvTwB/dRczebluuGo=
Subject key identifier: BE:7F:18:63:59:EF:5A:B1:A3:88:20:8C:49:4A:C2:53:D1:54:27:1E
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 0197B7EA692D88FE6D5A3DC30370E52073F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 19:01:22 +0000
Manifest this update: Sat 28 Jun 2025 19:01:22 +0000
Manifest next update: Sun 29 Jun 2025 19:01:22 +0000
Files and hashes: 1: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: 6Mw10lDVLfdxAceqesVFqLiKeBc63J7smBnJmVV4XOI=)
2: 5OG6iGTbUMv4yreuCzltBDVdDTU.roa (hash: B8Cg7jxvmm1JBGJPeKqbsREjncwII7bdGdlW3Ml3/PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:69:2d:88:fe:6d:5a:3d:c3:03:70:e5:20:73:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Jun 28 19:01:22 2025 GMT
Not After : Jun 29 19:01:22 2025 GMT
Subject: CN=be7f186359ef5ab1a388208c494ac253d154271e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fc:26:b4:82:77:03:20:e2:27:b0:74:84:35:
c3:ea:8f:23:51:17:d8:f6:c8:ff:26:27:71:b6:ae:
12:a3:5b:8c:93:84:70:19:00:36:0a:d7:e2:4b:bd:
0b:3b:62:43:fb:ed:99:96:66:17:28:c2:12:20:3b:
52:56:92:cc:69:f9:f5:e2:47:6a:14:39:29:c3:57:
ab:4c:82:24:d1:3e:98:1a:48:6f:37:84:8b:af:a3:
33:bb:29:1e:64:da:8b:d4:4b:12:5a:37:7c:77:4e:
4b:eb:4a:4d:7b:7c:66:ba:33:2e:21:a4:25:24:7c:
46:44:bf:31:fc:dd:b4:6f:b1:a8:4c:7c:a4:a1:37:
8c:bf:03:8d:a3:ed:72:12:0d:db:5d:80:3e:8f:b4:
f8:f5:7e:76:4c:6c:25:ce:ac:b5:d9:c1:9e:ed:e5:
b5:41:0b:3e:01:9d:9a:e2:0b:a3:09:76:30:aa:9f:
e6:2f:53:37:f2:5f:39:fb:7d:d0:8b:1b:34:56:1b:
91:f8:3b:cf:3e:05:16:2b:1c:30:f5:b1:e7:08:d4:
77:81:67:35:a1:e5:51:13:b4:82:9c:39:fc:bc:4d:
ed:3a:a4:d8:5e:04:92:37:22:ad:f7:24:71:79:49:
67:c1:17:b6:b9:af:eb:86:ab:1f:64:9e:d3:08:50:
42:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:18:63:59:EF:5A:B1:A3:88:20:8C:49:4A:C2:53:D1:54:27:1E
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:b4:fa:a5:0c:f0:41:88:94:ba:78:45:5c:74:22:89:3a:be:
a5:66:fd:9f:73:1d:dd:32:0c:00:c3:a8:4d:e5:f0:55:78:37:
a9:d6:a1:2e:27:55:fd:0f:ff:c7:91:23:66:3c:ab:b6:66:74:
5c:bd:bd:cf:1e:d5:47:7c:1b:89:0a:8a:db:13:f5:57:5e:a2:
4b:eb:e8:a6:36:50:3c:67:6c:35:9c:ee:ad:0b:d3:68:0a:96:
fd:78:94:36:28:d5:5c:0b:26:8a:72:da:53:d9:74:29:68:f7:
1f:80:84:a1:a0:25:de:d9:9d:6c:71:44:1d:d6:5e:9c:34:51:
2a:6c:e2:9e:3d:eb:1c:38:b7:b8:78:b5:8a:b2:92:c3:13:67:
8f:33:46:ab:a6:3e:a2:96:10:65:2f:c1:d5:04:11:54:8d:bc:
76:17:35:cc:b3:4a:94:11:64:2d:e1:d3:c0:9c:c1:38:8b:f3:
2f:77:83:ff:3f:0e:1e:9f:b4:50:41:d9:10:5d:26:89:95:d9:
4e:5f:15:aa:ed:46:86:9c:52:91:b4:23:fd:4f:ed:1d:99:b0:
da:2d:33:01:40:6f:37:83:d8:6d:db:59:38:9f:96:c0:9d:bd:
e4:be:6e:5d:cc:00:3f:95:fb:72:57:71:92:eb:20:0e:ae:02:
f1:1f:47:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:37 2025 by rpki-client