Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: yKfVVNZgJGRgT31UKHAnSno1LFg8O3u5RJUHc02HmS8=
Subject key identifier: 71:C6:B2:56:1C:DA:C7:C9:AB:9D:C5:FF:43:4E:D4:9A:C5:D6:74:EE
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 0197B70F2306AD859AA77CE0F8E40A21DA14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 0203
Signing time: Sat 28 Jun 2025 15:01:51 +0000
Manifest this update: Sat 28 Jun 2025 15:01:51 +0000
Manifest next update: Sun 29 Jun 2025 15:01:51 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: JI5zI8IssrkUVEs0Jycu8eMrV+nSR8qt5oQlBrodeuo=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:23:06:ad:85:9a:a7:7c:e0:f8:e4:0a:21:da:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Jun 28 15:01:51 2025 GMT
Not After : Jun 29 15:01:51 2025 GMT
Subject: CN=71c6b2561cdac7c9ab9dc5ff434ed49ac5d674ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f9:4e:22:20:df:88:f9:42:dc:46:38:9f:02:
92:c0:9d:d1:d6:d2:c1:78:d8:b3:6a:23:96:ef:16:
69:db:c5:3f:87:ff:46:91:4e:91:6c:bc:31:50:b4:
5c:9a:c4:58:2b:07:9e:26:d9:41:aa:1f:16:1e:6e:
a1:ea:4a:63:28:31:85:7d:c3:40:70:59:67:ea:6b:
33:01:56:0d:6b:4c:d9:92:76:f3:b0:b7:2e:92:13:
b1:c8:05:01:26:ca:2a:5d:3e:cd:2b:4f:05:61:42:
fa:27:40:99:95:ea:07:f6:06:11:1b:e1:84:2d:4a:
34:1e:63:97:1c:fb:b1:8d:da:5f:e8:78:fa:ff:43:
a2:cc:e3:81:7a:ec:19:de:e7:46:f2:ab:1b:bb:09:
56:75:b4:ef:d1:1a:d1:e5:7e:fd:aa:30:2d:79:1e:
6b:86:b0:3f:d8:08:6d:9d:99:8b:3f:05:7c:33:bb:
65:d8:94:0f:bd:9f:60:f8:7b:22:8e:b0:93:91:b9:
ce:7b:b5:0d:a8:69:43:55:08:45:fc:f0:5a:60:17:
32:ca:73:07:9f:7d:bc:04:6c:08:09:ed:0b:f6:c4:
3d:db:4f:cf:c1:a2:8f:5b:2d:23:be:f0:e5:c2:34:
be:c4:02:ac:0a:e2:25:d5:f7:1a:84:97:67:1d:89:
8a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C6:B2:56:1C:DA:C7:C9:AB:9D:C5:FF:43:4E:D4:9A:C5:D6:74:EE
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:d3:8d:d0:c8:f2:cf:b0:88:40:47:22:53:92:2e:0e:3e:5f:
fe:fa:e5:c9:17:4b:93:3d:98:89:49:01:c9:2d:ff:f2:09:8d:
e8:1d:3e:95:d3:b2:1e:84:33:f0:a6:b2:71:0d:42:d1:fc:a2:
53:8c:5a:41:6f:b7:0f:29:fe:46:90:8e:2b:e2:16:ec:12:a2:
2e:c5:90:62:10:a3:c7:bc:64:78:b9:b4:6b:76:61:66:25:00:
d6:0d:f5:0a:32:bf:03:3c:c6:e7:61:d1:e6:f8:5c:27:a0:bf:
67:bf:88:9d:31:6f:55:c6:85:92:d0:da:17:5c:35:8b:a1:e9:
08:a5:c2:b8:bb:f4:67:5a:19:3e:de:b3:de:39:f3:1a:06:d4:
4d:da:1e:be:92:8a:5d:6e:d1:de:73:57:80:84:85:9a:2e:da:
bf:b4:53:10:68:22:44:4c:02:87:49:c9:5f:56:b5:c7:52:ee:
a1:80:75:cc:53:96:79:67:23:17:6f:90:4b:a5:87:5e:1d:44:
d1:a5:bd:da:3e:92:39:c9:8f:26:92:3b:23:b0:81:48:1d:f8:
09:6d:b2:18:08:90:fd:0d:93:48:b0:f5:63:14:19:cc:74:bf:
ee:d6:2b:82:be:32:88:37:ed:1c:f1:2c:25:bc:2b:1a:0c:76:
b5:4d:85:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:45 2025 by rpki-client