Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier: 8lCqEK+Vju0WUxBw8giaMaVPnnjJ9nuHoCdnCplbi3E=
Subject key identifier: 4F:2F:DD:BD:D0:32:0A:0F:CA:AE:A2:BA:13:37:45:1D:6B:10:47:AF
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial: 0197B77CC3FCD4CD169C8DD79B0E294863F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number: 0528
Signing time: Sat 28 Jun 2025 17:01:36 +0000
Manifest this update: Sat 28 Jun 2025 17:01:36 +0000
Manifest next update: Sun 29 Jun 2025 17:01:36 +0000
Files and hashes: 1: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: y4RvGbjrT73KYoTnDcB3IXHR5Foz4PPr5qesZz6uzPo=)
2: qj9pJEL6aLQRmJQwwNdSHRT6Q7o.roa (hash: YXXU3MHXgJerIl9CeLyHeV8Hu3RdrFxQkf90wVwUCHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c3:fc:d4:cd:16:9c:8d:d7:9b:0e:29:48:63:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Validity
Not Before: Jun 28 17:01:36 2025 GMT
Not After : Jun 29 17:01:36 2025 GMT
Subject: CN=4f2fddbdd0320a0fcaaea2ba1337451d6b1047af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d2:07:4c:39:85:10:2d:6d:00:ea:7c:65:d1:
bb:60:f1:d7:31:c9:b0:c6:87:d8:0f:bf:72:40:39:
5e:b0:60:a4:ab:3f:e0:e7:2b:79:da:81:6a:ff:28:
da:3e:1c:0c:f7:ae:d1:f0:f8:14:24:a5:72:57:07:
b4:85:a3:d6:92:d9:df:4c:05:cf:a8:dd:9c:d8:18:
11:cf:bc:20:28:a1:33:8d:1a:a1:60:19:3c:9d:d7:
0f:28:05:77:9c:27:08:43:66:1d:93:45:a1:db:30:
a9:36:64:71:f5:bc:14:5e:9d:56:49:bd:a0:ad:67:
22:c6:49:b9:57:d4:cb:c5:61:91:67:39:6b:c3:76:
a1:00:20:60:21:0e:10:7e:d9:00:68:52:de:8c:d5:
0f:d7:56:c3:a2:f3:1c:4b:fd:e7:53:fc:0d:83:3e:
18:6d:93:df:30:d7:cd:64:76:84:d6:b8:c0:ff:66:
a2:67:ed:3b:35:d4:80:dd:69:c1:ed:b0:69:f9:95:
33:b2:ad:6a:0b:e2:7a:3c:6c:d6:01:eb:bf:a8:86:
47:9b:e9:04:1d:d3:c3:50:88:d0:3d:b6:c1:aa:4c:
1e:33:1d:c5:a9:69:89:db:91:1a:c1:2f:ac:4e:03:
59:53:2b:85:7f:9d:2f:79:15:8c:d0:59:a4:1f:4c:
53:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2F:DD:BD:D0:32:0A:0F:CA:AE:A2:BA:13:37:45:1D:6B:10:47:AF
X509v3 Authority Key Identifier:
keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:64:4a:8b:8f:09:52:d6:bb:22:bb:33:a4:af:04:80:2e:45:
de:b9:e1:1c:41:ae:52:4f:4f:84:6d:59:a0:42:a4:05:ee:3c:
0e:d6:fb:77:10:a7:b2:49:ed:2c:47:6c:83:b9:fd:e0:fc:ec:
7c:a6:6c:fc:b9:eb:c0:29:ab:da:4e:b3:ef:0c:30:a5:9b:3e:
48:98:b0:0a:98:f8:ef:7d:2e:b3:0a:c5:13:fc:63:8c:f7:4d:
81:8c:d0:1c:25:aa:12:6e:3e:56:be:a3:68:56:11:98:6f:4c:
d5:d7:15:ac:8a:e0:93:6f:d0:49:97:6f:0d:7d:2d:15:64:16:
2a:4d:11:2b:29:15:58:3f:87:24:bc:e6:48:5d:d1:47:c9:56:
be:d5:91:d3:73:95:c9:2b:28:2b:35:0d:07:cc:94:91:e8:03:
52:2e:43:c8:88:68:a7:d5:38:ac:a6:45:82:87:6b:9c:49:3e:
72:56:f4:f3:dc:46:39:cb:da:96:bb:b0:20:4e:d1:f8:e9:71:
69:fb:f1:1b:e4:86:b6:a6:b1:ee:23:25:04:f2:82:80:41:bb:
ba:f2:7f:14:7b:a8:44:ab:68:fc:f9:7d:1b:c8:74:06:7b:d8:
f0:76:3b:d8:09:47:60:f4:37:41:c7:da:53:c6:a1:be:e8:7d:
6f:8c:33:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:16:20 2025 by rpki-client