Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: NeEh2/g9I4Xo1oo7csB3zPsr9RJxUGxz1afPtwghKFA=
Subject key identifier: 74:AC:8A:C2:F2:62:5D:ED:20:07:23:13:9C:77:B9:34:D5:4F:F4:A6
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 0197B6D78EA0FFA28C171B10947A72EDF4FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0FA0
Signing time: Sat 28 Jun 2025 14:01:09 +0000
Manifest this update: Sat 28 Jun 2025 14:01:09 +0000
Manifest next update: Sun 29 Jun 2025 14:01:09 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: vOiyBy1cjj9FGffQpDZ8dlUQPDUySypuI4yipPaf4WQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:8e:a0:ff:a2:8c:17:1b:10:94:7a:72:ed:f4:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Jun 28 14:01:09 2025 GMT
Not After : Jun 29 14:01:09 2025 GMT
Subject: CN=74ac8ac2f2625ded200723139c77b934d54ff4a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:85:98:93:3a:82:06:f3:b4:20:cf:c2:77:20:
84:37:25:71:4a:e2:ed:51:24:82:2e:58:93:aa:bc:
87:a2:1e:49:36:d8:25:f0:ef:10:2b:3e:2d:d9:cb:
c5:ab:9e:d1:03:bc:e4:c5:3c:c7:4b:9e:6f:f8:b1:
ab:e8:e7:fa:71:ba:bb:56:e7:73:0b:76:74:03:81:
86:63:e8:78:24:3e:df:31:d4:3d:60:e2:94:23:b0:
17:5e:bb:da:6a:4a:c7:86:18:a8:90:59:23:2c:b7:
e1:6c:ef:54:b8:0c:9d:2f:c1:a9:28:71:ae:02:0a:
4a:f0:18:37:a8:fb:19:78:75:7b:79:36:35:b8:7f:
89:39:2e:3d:a8:ed:eb:9d:c9:59:fe:f7:93:e3:23:
3a:8f:d4:34:f1:9d:49:54:9b:d7:0e:c5:85:e2:96:
ac:ca:1c:ab:1f:74:ff:5f:24:dc:85:3a:f7:a0:44:
43:61:73:6c:86:9d:ae:32:3a:21:ef:2d:ba:17:a6:
ce:64:4a:37:92:77:8d:5b:72:fd:ad:7e:51:35:fc:
76:0c:f8:4a:d2:83:7d:94:b0:be:32:c0:4e:6e:74:
25:ce:85:81:e2:9e:54:22:de:cc:5f:61:86:ef:18:
97:4a:05:ca:dd:a3:ff:f9:ff:fe:de:ff:db:38:0b:
ec:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AC:8A:C2:F2:62:5D:ED:20:07:23:13:9C:77:B9:34:D5:4F:F4:A6
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:72:08:09:be:71:2d:06:60:c0:fb:3f:a2:c9:eb:d4:aa:ac:
b7:3a:7b:49:e5:79:ce:23:5d:64:0b:14:3a:e6:9c:49:fb:a9:
3e:eb:a6:c0:32:2c:bf:f2:cf:12:60:f9:ce:59:4d:8e:ec:a7:
d9:3b:ae:37:75:e4:d6:dd:18:4d:57:c6:e1:84:af:25:8c:3f:
9f:c0:31:d9:85:0e:e8:1a:e4:17:86:f5:f6:89:66:19:76:12:
92:be:63:26:89:f0:3e:bb:3d:41:bd:ee:b7:5d:ff:b8:10:4d:
8e:a8:bf:75:32:2d:2b:57:2f:ca:08:b5:10:14:31:05:c5:20:
88:31:05:e8:f6:c7:64:11:67:ba:1d:52:53:38:a6:32:9b:59:
fe:de:c5:11:cc:9f:13:f9:75:08:6c:6a:c9:6a:47:c5:55:89:
1e:09:46:7a:9f:8e:c7:3f:8f:58:91:26:a1:91:13:52:33:2c:
3a:ea:84:19:fd:c1:52:69:d2:8e:c1:1f:14:df:e4:19:5e:c2:
53:ad:8e:5e:23:c1:0a:c3:60:84:9b:fa:68:b1:43:64:ce:63:
65:49:0f:91:2a:15:45:a0:68:70:6f:1d:f2:1d:ac:b2:01:cb:
72:19:fa:24:62:33:6e:b4:65:5b:d8:5f:21:62:d2:3a:54:4f:
ea:0d:7e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:24:01 2025 by rpki-client