Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: G5de6RePcHEBWOIuHIAehVgQ6JwoLw0tHvdvi99TMq0=
Subject key identifier: 08:72:77:E1:50:87:5A:6A:C8:00:89:F2:7E:A5:F0:2F:49:19:EB:76
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 0197B5C50FBF269CFFD15ACD6849542B1B31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0545
Signing time: Sat 28 Jun 2025 09:01:20 +0000
Manifest this update: Sat 28 Jun 2025 09:01:20 +0000
Manifest next update: Sun 29 Jun 2025 09:01:20 +0000
Files and hashes: 1: 1ofY17NAwbyhAHFj_yBzaevRgc4.roa (hash: FPWNmGXZmy3JcSLxjIHQ6BJRP2baM9xmkXSCswGMYik=)
2: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: MUYsSb1M2SMQLLbHs0vp0PSM1WlA2TuwA/AY/PHANwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c5:0f:bf:26:9c:ff:d1:5a:cd:68:49:54:2b:1b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Jun 28 09:01:20 2025 GMT
Not After : Jun 29 09:01:20 2025 GMT
Subject: CN=087277e150875a6ac80089f27ea5f02f4919eb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7c:63:03:d2:9f:ca:87:b8:4b:f4:ef:21:3c:
36:64:9b:b4:39:6c:c3:14:5a:9c:78:f3:dd:35:50:
a1:79:5f:b6:43:d9:98:8a:ed:1f:fe:24:1c:b7:6e:
80:70:84:d7:52:c7:26:75:ce:68:90:94:a1:c8:5c:
e3:4f:a4:97:b8:32:c8:c5:de:da:df:cb:7c:31:7e:
3a:9e:fa:87:01:f3:a4:6f:e3:74:11:0e:d1:b7:38:
57:be:4e:b6:cd:88:56:95:41:0f:3c:5e:02:4a:f5:
44:11:94:02:79:b7:ce:31:34:ee:c8:1b:cd:32:90:
71:d4:a2:c1:86:46:9f:39:4a:d0:cc:ab:d1:2f:be:
a3:d6:64:87:f1:9c:5c:b8:9a:d1:54:8d:16:71:57:
5e:5b:37:d6:2d:96:0b:43:f0:20:76:59:e5:79:4b:
ac:44:2d:e4:d4:7e:36:b5:4b:ab:0e:f8:9b:82:47:
50:c9:26:f0:e1:4c:01:45:91:b2:cc:ed:bb:83:72:
b8:75:65:76:75:bc:1a:65:2c:58:33:b3:2c:fb:98:
ee:96:9b:10:95:71:3a:24:38:11:de:1a:80:78:d0:
64:42:85:64:ad:2f:0d:04:3c:16:a6:de:92:84:e1:
39:1a:16:16:82:94:9c:fd:20:f7:0c:e4:0a:76:c8:
1e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:72:77:E1:50:87:5A:6A:C8:00:89:F2:7E:A5:F0:2F:49:19:EB:76
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:77:60:6d:53:4b:71:f4:09:64:f3:66:a5:dd:7c:6e:12:68:
b6:89:d8:ea:d9:15:2d:37:33:1f:5a:00:08:58:99:aa:b9:24:
25:a8:77:4b:a0:11:34:ae:b9:21:d1:90:a0:67:57:b9:96:39:
fc:44:c8:36:cb:99:41:49:fd:2c:36:8a:f4:b5:34:1c:39:13:
7d:72:00:1e:be:2b:c8:32:71:37:51:f6:b2:75:96:45:f9:49:
0d:49:b5:bb:9e:c0:8a:d9:c1:2b:c9:42:63:6c:10:43:b2:4d:
11:62:ec:9f:5a:d6:8b:5c:97:54:47:02:3d:a1:93:b2:e5:0e:
79:96:fc:f1:4b:f5:c6:d7:c6:d6:a3:b6:73:e9:fc:eb:3b:b5:
9a:20:1e:8c:7d:58:26:ee:95:c7:ff:60:24:03:a2:90:e0:58:
9a:59:b9:d2:5d:be:7b:16:41:6e:44:04:57:99:56:c7:3e:65:
c3:ee:c8:51:07:05:a9:26:f2:7b:19:ac:0f:be:da:5d:f3:a7:
1c:1c:56:b8:9a:f9:37:f2:ec:97:64:4f:3f:ee:c7:47:df:c4:
48:04:45:9d:56:e3:1a:68:50:84:46:bf:da:77:fe:3d:c7:16:
be:de:2f:e5:a9:2b:dd:99:eb:39:63:18:0f:22:37:25:4e:27:
18:ee:51:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:13:48 2025 by rpki-client