Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: LBNGUXijMrJbQoR97NOFCJ3GTcQQ1e0wgXLSQGbaeqQ=
Subject key identifier: D9:14:CD:F6:6E:D4:17:FC:06:45:DE:F6:09:3A:A6:5A:E7:46:AC:08
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 0197B7B2E4FCAB07676DA8781D020FD3169C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 023F
Signing time: Sat 28 Jun 2025 18:00:43 +0000
Manifest this update: Sat 28 Jun 2025 18:00:43 +0000
Manifest next update: Sun 29 Jun 2025 18:00:43 +0000
Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=)
2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: kxmdC9o38O89q29jpqe+L81fpUzAspWIxIjGv2RKmgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:e4:fc:ab:07:67:6d:a8:78:1d:02:0f:d3:16:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Jun 28 18:00:43 2025 GMT
Not After : Jun 29 18:00:43 2025 GMT
Subject: CN=d914cdf66ed417fc0645def6093aa65ae746ac08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f5:c8:fc:61:bf:12:85:d2:92:12:24:a3:b0:
94:e2:be:12:61:18:83:5e:09:73:e7:9e:65:e0:6e:
b5:26:06:de:9e:47:1b:46:49:cc:a0:01:f6:da:61:
98:ba:59:da:f4:b2:d4:a8:0a:6c:21:a4:45:2c:88:
33:1a:e6:38:56:bb:b0:70:20:d6:b1:f6:5f:47:01:
22:c2:92:f3:3b:ae:d8:9d:5a:17:c5:92:71:a7:4e:
26:3b:98:ee:39:17:ae:87:0a:38:50:1e:18:80:df:
ae:db:eb:de:86:eb:86:31:a3:f3:3d:a4:0f:37:ed:
c6:8e:72:f2:c9:94:f7:51:a1:4b:81:08:08:8e:de:
02:0f:a3:7f:b7:6c:a6:69:92:62:ed:e4:37:15:1a:
a8:7f:b2:27:3d:0b:42:1f:ed:9d:27:58:8e:4c:e2:
9e:9e:e0:40:48:25:7d:0d:d3:a6:cb:97:cb:d3:5d:
21:07:a0:ff:44:dc:51:c2:ff:aa:4d:b6:94:f2:b2:
b6:5f:85:6e:35:fd:c0:64:85:8b:85:10:36:18:9c:
d7:de:78:76:2b:51:f8:67:61:1b:2a:c3:f8:3f:85:
92:6f:6d:c5:d5:0a:ca:4f:a7:a7:67:2e:3c:90:1f:
2e:bd:a6:28:a3:0d:01:a3:d7:13:95:b2:f7:f1:d3:
32:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:14:CD:F6:6E:D4:17:FC:06:45:DE:F6:09:3A:A6:5A:E7:46:AC:08
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:51:6c:3d:5b:50:2e:e9:4a:82:0d:0a:fd:d8:4f:11:fa:f3:
12:d4:d9:92:64:80:59:a8:00:96:2a:77:5d:fd:8e:6a:57:78:
57:05:92:37:9f:a2:59:42:f4:aa:4d:26:50:72:a9:5a:fd:f0:
2d:9a:b9:d9:4d:18:6e:bb:97:f9:d8:48:12:ad:34:f1:c4:43:
bb:f2:6b:de:d8:8a:98:1d:bd:47:2c:9d:0e:a7:5d:76:27:1c:
d2:db:58:d9:b1:84:93:8f:bc:d9:b6:61:07:52:0d:ad:c1:19:
2c:b9:de:0c:c5:25:a9:28:80:ab:d1:97:89:a2:49:5e:ee:11:
95:0e:de:99:62:e5:d8:2d:ee:80:f9:51:b2:72:a4:2a:81:0a:
b8:90:64:2e:4b:30:a5:4c:68:11:9f:e2:f2:f2:72:d5:2c:75:
11:d1:ca:03:99:9b:13:16:82:bd:47:0f:d5:17:77:68:e2:76:
80:9f:79:2c:5d:72:cb:27:4e:07:07:a1:4a:9c:8c:ca:93:67:
cd:a1:ab:f6:b3:96:f0:1f:22:60:36:4c:eb:e6:a8:b5:79:13:
c0:7e:37:92:a9:09:c7:de:54:ab:43:26:28:ed:67:39:c3:d7:
60:c4:48:25:81:b2:c4:34:ea:03:a4:ff:e5:fd:a0:36:ee:94:
a5:4b:80:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:02 2025 by rpki-client