Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json)
Hash identifier: 9rXl3xXz3vWLhwEeCKwbSW40NZN0wnNYqSIjDB7IMR8=
Subject key identifier: 6B:0A:77:BA:AA:95:EF:1E:D3:96:9B:8B:0A:B1:AC:A9:4F:0A:DD:CD
Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397
Certificate serial: 0197B88F7F78EFC986ACB259DE316B578EC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
Manifest number: 08D5
Signing time: Sat 28 Jun 2025 22:01:41 +0000
Manifest this update: Sat 28 Jun 2025 22:01:41 +0000
Manifest next update: Sun 29 Jun 2025 22:01:41 +0000
Files and hashes: 1: mMmymzplWMeJzzgdG7P3tHtpBaQ.roa (hash: /bqXbIc2T1Ug7GTSXeUaRuS3D15TA3H+LDCDm5yP2ts=)
2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: n3Pd2f06Uiqntxtoe1qlGwj6LddYkYLgzs9bqKaWP8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:7f:78:ef:c9:86:ac:b2:59:de:31:6b:57:8e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31938bc720282444babd3b26b3492b456adb397
Validity
Not Before: Jun 28 22:01:41 2025 GMT
Not After : Jun 29 22:01:41 2025 GMT
Subject: CN=6b0a77baaa95ef1ed3969b8b0ab1aca94f0addcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f3:75:44:a6:ba:63:30:33:14:0d:05:9d:b6:
e1:93:41:e5:78:6a:25:9f:64:3e:3e:6d:2b:bb:0e:
c7:60:5d:aa:51:8c:c4:b6:46:c5:27:2c:69:42:c1:
bd:7a:b6:5e:a2:5e:09:e9:5b:64:97:ef:36:f1:aa:
7e:5f:10:dd:c5:3e:98:86:18:72:bf:2b:4e:49:22:
ca:f9:28:1f:5c:14:d2:a7:9d:ef:95:09:da:57:f1:
d2:3a:0b:97:4c:c3:89:7d:ca:3f:30:bf:bf:c4:dc:
16:66:60:bf:9a:57:76:2a:5c:57:4b:c7:4f:ea:ba:
7b:bc:d8:9b:03:b7:12:ab:5f:f9:0f:8a:f3:10:62:
0d:8b:f1:ee:26:f0:42:57:e1:46:be:d6:23:22:e8:
fe:25:20:c5:12:56:ae:78:c4:c2:08:57:29:a2:d2:
56:af:e9:11:d3:04:12:63:f9:75:47:1d:bd:73:a2:
7a:af:5f:2d:5d:22:12:5a:9f:8d:b4:57:60:98:27:
89:b3:65:b1:c6:21:c6:7b:9e:5d:0c:29:59:89:5c:
bd:67:0f:54:04:88:41:9a:00:5f:5b:9c:f8:0f:43:
74:70:81:b1:d4:cf:cc:89:c4:6b:66:a9:26:58:06:
cf:c2:d7:de:86:ab:f5:d2:a4:01:5c:48:5e:59:39:
7e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0A:77:BA:AA:95:EF:1E:D3:96:9B:8B:0A:B1:AC:A9:4F:0A:DD:CD
X509v3 Authority Key Identifier:
keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:45:29:a1:6b:31:95:ad:2c:6f:95:29:78:3f:78:f5:fd:df:
c7:9d:76:64:fc:52:49:97:2f:d0:74:de:ea:0a:c8:fd:da:06:
8a:cc:a0:34:92:92:82:fd:60:71:af:e1:57:62:30:d4:e3:25:
2c:e7:ce:47:13:29:08:a0:1c:61:71:1c:b4:6b:98:c3:b0:df:
22:f1:23:e4:43:6a:32:c0:ec:94:64:49:fd:91:64:55:ef:f8:
4a:ed:08:d3:b3:70:c7:30:fb:e5:b9:70:47:4e:c0:9e:23:07:
0c:9b:6b:9f:b4:c1:a3:5a:37:d5:67:c6:ed:e8:93:55:cd:92:
b3:38:0a:82:db:cd:2a:ab:01:82:a3:13:76:09:c3:4b:fd:40:
00:9b:a5:b3:5b:d0:ff:89:c6:6c:61:ad:35:46:d6:9c:cd:14:
b6:e1:0f:68:c0:8f:ac:34:b8:32:48:0a:4b:5a:48:e6:03:88:
bd:87:81:92:7c:d9:dd:7e:78:70:51:56:03:05:b9:b5:f9:ba:
62:0b:15:b8:be:08:88:c4:08:da:33:95:98:46:b6:ae:a2:8e:
50:d1:bc:48:f8:08:f4:f8:4c:06:36:a9:64:d3:24:bd:ba:6c:
8b:36:18:87:86:b3:8b:62:52:53:2e:fe:bf:36:e1:2d:6e:05:
e9:7c:b0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:25:58 2025 by rpki-client