Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
File: maykAWr4XVlpVITNYTzxiW39WaE.mft (raw, json)
Hash identifier: W6n3fvKyK70vkphF3rxGE5r87rvd+QPsWA8VQatC2hU=
Subject key identifier: D4:83:3D:E7:C0:27:CE:6F:CE:C1:E1:43:6D:BF:C2:1D:75:7B:E5:05
Authority key identifier: 99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
Certificate issuer: /CN=99aca4016af85d59695484cd613cf1896dfd59a1
Certificate serial: 0197BA0F993EF447547ACFD5AA77BD4959CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
Manifest number: 03CB
Signing time: Sun 29 Jun 2025 05:01:13 +0000
Manifest this update: Sun 29 Jun 2025 05:01:13 +0000
Manifest next update: Mon 30 Jun 2025 05:01:13 +0000
Files and hashes: 1: ZpEam4JrA75W3vKeb-kb3n0W0y0.roa (hash: kYGb95Bh9aZOERP/x6nIdXNnyuRNyDQM9q/MQE4pooE=)
2: maykAWr4XVlpVITNYTzxiW39WaE.crl (hash: RXp1TuKZAKyRshYoExeMtpmK6Pc6/XQaNAkFNqmw0Uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:99:3e:f4:47:54:7a:cf:d5:aa:77:bd:49:59:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99aca4016af85d59695484cd613cf1896dfd59a1
Validity
Not Before: Jun 29 05:01:13 2025 GMT
Not After : Jun 30 05:01:13 2025 GMT
Subject: CN=d4833de7c027ce6fcec1e1436dbfc21d757be505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:13:f4:04:05:49:92:9e:71:71:12:2e:c9:33:
6f:48:19:ad:86:eb:ca:b6:84:6e:12:d5:e0:bf:7e:
0f:2f:62:18:0d:9d:89:0e:60:1e:2d:ea:01:62:9d:
0e:33:79:78:67:98:fb:00:5c:58:c2:b5:29:5c:6d:
60:7b:06:e6:6e:9c:27:dd:94:49:89:02:a2:bf:7e:
90:4e:c5:4c:58:f4:d7:42:66:4e:3d:83:cb:33:4d:
7d:f5:62:d3:10:73:46:dc:5f:f6:4f:10:76:8b:a7:
9e:fe:52:1f:d5:6f:4c:66:47:ac:21:35:ca:11:a4:
42:ca:5e:85:2a:64:1e:ac:80:b3:2a:d5:06:b9:25:
ba:5d:38:b1:85:f0:df:1c:71:2d:12:44:b0:fe:03:
48:f7:68:31:04:f7:ac:e8:43:55:69:db:a9:01:d4:
e7:43:4c:ef:09:3d:61:fa:43:75:7a:7c:9d:1e:7f:
36:6c:29:ce:7e:7a:5b:70:c2:2e:6d:17:49:ff:86:
4e:8e:4c:4d:fa:e1:18:04:7d:a1:f5:91:b5:e5:68:
e7:59:64:22:82:f9:bf:66:7e:5d:b4:e8:db:90:c3:
e7:9e:3f:07:fe:44:14:11:29:73:65:ff:71:36:10:
f9:cc:ee:db:ee:a8:f8:d5:85:f6:5a:77:2f:c0:3b:
a1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:83:3D:E7:C0:27:CE:6F:CE:C1:E1:43:6D:BF:C2:1D:75:7B:E5:05
X509v3 Authority Key Identifier:
keyid:99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:cf:0c:39:19:d4:ef:5d:0e:b2:54:b5:b6:b6:6f:08:2f:5b:
8f:81:f1:c9:66:8c:01:ea:1c:6e:66:43:4f:ca:80:b7:5d:91:
e2:09:4d:08:b0:70:6a:dc:fd:0b:b8:09:09:3a:33:db:04:29:
07:e1:8b:d0:06:07:8d:24:24:22:f1:3b:08:01:94:21:b9:fc:
bc:8b:fb:c7:6a:28:11:4a:4f:07:30:86:c4:9d:14:ca:30:00:
a1:93:09:75:6b:bb:d5:38:5b:6b:bc:71:be:0a:70:71:02:20:
4f:ca:dc:5c:36:d2:f5:6b:e4:fd:86:51:b7:ef:83:97:6c:db:
96:a6:c9:0d:b9:07:87:34:4e:3c:51:97:ee:b8:ef:eb:a5:c7:
48:00:38:fb:a1:62:a7:59:0d:85:7e:7d:46:3d:fd:56:6c:da:
ff:74:33:06:33:a4:06:2c:2f:f6:c7:40:b6:af:eb:ac:2e:9c:
90:54:6c:d5:3a:55:66:82:3a:2c:c3:cb:7a:68:56:4e:68:f7:
56:7d:25:6c:3e:24:1e:2c:8a:d1:98:3f:ca:50:07:c5:32:10:
86:9b:aa:06:24:c7:d0:6b:62:66:d2:3c:cc:60:3f:39:16:59:
66:d3:4d:d6:8f:49:06:aa:74:a9:9f:f5:26:11:cc:bb:fc:e0:
cc:60:09:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:23:44 2025 by rpki-client