Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
File: EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft (raw, json)
Hash identifier: Pcdb6Ggm/KnuE2MedOHLEu3Tne27MeLLg/RxDxvY++U=
Subject key identifier: 7A:FA:6D:80:C0:2C:11:9E:7C:89:81:A6:5C:F2:08:0E:79:59:16:18
Authority key identifier: 11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
Certificate issuer: /CN=1170356135adf47ed9708cb0a13680894c2339ea
Certificate serial: 0197C6144898EEAF45D6CBFD0A90124C1CDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
Manifest number: 154F
Signing time: Tue 01 Jul 2025 13:01:47 +0000
Manifest this update: Tue 01 Jul 2025 13:01:47 +0000
Manifest next update: Wed 02 Jul 2025 13:01:47 +0000
Files and hashes: 1: 8u57ArQxKO_4JRsiP8ig9E_nJLs.roa (hash: ifzsEyICQHhNmNaBIhgOvnazrnhVrug9jj3mLB5h7cs=)
2: EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl (hash: HfakxiGOvHsR75hHVN3ti6kuIQiHe6emRDdo8/B9ipA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:14:48:98:ee:af:45:d6:cb:fd:0a:90:12:4c:1c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1170356135adf47ed9708cb0a13680894c2339ea
Validity
Not Before: Jul 1 13:01:47 2025 GMT
Not After : Jul 2 13:01:47 2025 GMT
Subject: CN=7afa6d80c02c119e7c8981a65cf2080e79591618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f9:eb:7a:a2:b2:0a:a8:56:35:b7:1c:d2:f4:
53:27:80:bf:77:01:f1:d9:97:47:9e:e1:f5:b5:e0:
05:bb:86:05:9a:25:7f:df:f9:92:c1:c8:98:1d:c5:
39:13:4b:ff:65:82:1d:e7:e7:f0:7d:cd:b7:cd:7e:
55:56:a1:7d:4d:e6:43:11:dc:fc:34:99:ad:05:fd:
49:9e:b8:8e:fd:b5:37:ad:a9:e5:7a:2d:69:8a:40:
d0:8a:c8:28:47:9c:95:f1:c9:bc:b0:8f:86:0f:d8:
4f:59:2d:a6:1e:26:c8:7d:40:66:39:d5:8b:73:77:
61:5e:53:54:6e:12:d5:84:66:08:ba:da:7c:8a:b4:
37:dc:9f:c2:03:d1:8b:de:b4:fc:da:1f:5e:68:a1:
ce:f4:3a:6d:43:e0:c0:13:df:a5:27:a2:36:eb:49:
14:6e:06:ba:7e:a9:d6:27:77:94:d7:75:28:e8:fd:
0b:bd:9b:8b:c0:72:dc:2d:da:d8:e4:41:3d:d7:83:
a6:57:40:dd:46:ba:55:2b:17:bd:7b:d2:38:de:62:
63:5d:fc:48:01:49:5b:64:68:ce:e1:3c:e6:da:3f:
c2:0c:87:36:a2:00:d7:6d:a6:de:1a:08:87:42:b2:
78:6f:c0:70:8f:d8:b7:5e:6b:71:d4:7a:bb:89:21:
14:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FA:6D:80:C0:2C:11:9E:7C:89:81:A6:5C:F2:08:0E:79:59:16:18
X509v3 Authority Key Identifier:
keyid:11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:d2:93:29:72:b8:cc:4c:00:da:50:99:9f:54:94:da:58:4a:
04:39:5a:1e:ac:52:78:5d:98:96:ef:bc:e2:93:c5:a7:46:03:
52:ac:f0:77:e5:cc:61:a7:9b:bb:29:61:04:a1:49:fd:87:1c:
48:ff:a5:a1:1e:dd:16:d2:50:59:de:ad:0a:16:92:0d:bb:7e:
6f:ad:78:13:20:81:df:d8:47:ea:18:8b:8d:eb:b3:d8:43:69:
52:4d:4b:c2:47:55:0a:d8:d2:6f:43:6b:3d:42:d5:6b:c0:ec:
ff:be:da:fa:01:30:ba:8f:6c:f6:53:7a:67:f5:c2:3b:ba:f1:
db:26:f2:30:fb:91:0f:a1:82:44:ad:ba:1b:a1:4a:58:e7:51:
3a:dd:8c:c9:d0:3a:7c:3a:3d:7c:2f:26:62:07:33:8c:48:55:
21:ef:26:c4:b0:01:83:ae:dd:55:a6:d3:45:c8:04:9e:90:cd:
2d:1e:f9:cf:42:a1:18:45:dc:f6:ab:b6:4b:07:81:67:ed:84:
47:f3:80:c7:91:6b:32:00:db:7a:49:c8:6d:d7:d8:6a:e5:e1:
40:3c:af:dd:67:91:79:0f:24:10:a8:c2:de:ae:4d:47:eb:37:
e4:5e:1a:bb:09:a4:f1:86:3b:46:ba:1b:f9:fb:4d:9e:ab:67:
e9:1f:fd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 16:09:16 2025 by rpki-client