Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: Saemaw1GeFTxBMAHt6cwXRFigvkkIVjyPVMHBp1lNVI=
Subject key identifier: A5:2C:A2:B1:1A:08:33:B0:D0:E1:77:51:88:B9:A1:66:E4:20:94:08
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 0197B8906F34D372D27EB9D5F022DA5788FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 03D3
Signing time: Sat 28 Jun 2025 22:02:42 +0000
Manifest this update: Sat 28 Jun 2025 22:02:42 +0000
Manifest next update: Sun 29 Jun 2025 22:02:42 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: EOA67i20oCdZn5kokW4zkRmx2lIlIwC3cokoEQaDOZw=)
2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:6f:34:d3:72:d2:7e:b9:d5:f0:22:da:57:88:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Jun 28 22:02:42 2025 GMT
Not After : Jun 29 22:02:42 2025 GMT
Subject: CN=a52ca2b11a0833b0d0e1775188b9a166e4209408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f8:f2:15:e2:dd:1a:5f:31:a6:c7:22:95:99:
ec:42:20:63:a5:f1:9a:63:24:60:42:ea:8c:d5:bb:
bd:70:4d:e7:b4:c5:1a:ec:6f:e7:51:16:44:a2:f3:
0c:72:57:34:ed:70:af:b3:09:0c:ad:ad:68:e8:5f:
fe:44:af:f5:80:7b:b1:d6:fe:94:81:8d:65:b3:a8:
9e:6a:c2:5c:85:ff:cd:c4:89:93:9a:84:66:49:6a:
c6:fd:f1:11:27:3f:30:fc:7c:56:d5:e0:8d:dc:46:
56:fc:3f:95:4d:e5:32:8e:3c:1c:83:ae:27:a9:46:
f2:08:ad:73:20:d4:25:79:26:1d:b9:cd:01:d7:f0:
7d:84:df:0b:52:b9:1f:78:0e:62:df:5e:a0:04:87:
97:40:06:00:35:a6:c9:b4:60:a5:6b:c0:59:97:62:
d1:e5:64:fe:79:63:da:31:c0:7b:54:9b:53:ac:35:
90:73:b2:54:c0:92:aa:a0:89:aa:75:1c:79:1e:df:
81:04:1b:2f:9b:a8:18:db:11:36:51:87:a6:54:e2:
3c:1d:b9:cf:bd:1c:55:cc:95:81:fd:e4:0d:10:b9:
a5:66:f5:d0:07:49:10:a9:dc:cf:d6:b1:87:4c:d9:
4e:9e:43:bb:87:29:53:94:db:bc:1b:ae:74:68:83:
31:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2C:A2:B1:1A:08:33:B0:D0:E1:77:51:88:B9:A1:66:E4:20:94:08
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:2d:71:40:a9:51:ff:3f:3d:77:ab:04:f1:eb:c9:63:e6:db:
8f:52:bb:fc:dd:3f:e5:e1:a2:d3:85:04:6f:cd:bd:c1:5f:35:
d3:eb:d9:73:d8:3f:97:07:d3:12:c6:a0:55:8f:71:53:1e:62:
4a:99:9f:0a:a9:1f:bc:75:77:46:d6:c0:c9:d3:98:84:a7:59:
41:49:e3:23:45:33:33:0a:b6:4b:79:ea:0d:6b:e3:e5:d4:f9:
ba:e6:ca:bf:b6:c3:e6:ae:3b:04:30:6d:b2:ca:ff:77:8f:79:
1e:0b:cb:45:6b:d6:b5:04:f9:6f:e0:ea:b1:d1:51:6d:26:2c:
cc:c8:02:e9:08:a7:ca:48:fd:eb:cf:ce:f5:15:de:b5:fe:93:
6a:79:cd:48:00:d2:92:6e:8f:dc:b1:fd:ea:76:2b:0f:fb:c5:
cd:24:03:48:25:bc:7f:11:ad:a2:2a:88:03:ff:34:1f:df:1e:
9b:42:b3:1a:78:d0:67:26:08:bd:f4:5b:be:20:a8:8e:db:59:
38:1c:9c:f0:4d:33:ff:f3:7b:d1:35:bf:47:5f:21:03:e4:48:
1a:e9:bd:21:63:44:93:8d:20:c0:56:0e:ac:bc:a8:82:54:a9:
03:54:2d:66:ac:ac:19:98:f2:e7:9a:33:25:e2:06:1a:a3:bf:
0e:c8:11:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:38 2025 by rpki-client