Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json)
Hash identifier: Kzew6CUw0rRr3ZfvJw2Ty4IM9ZJjVehKPW0DoofW9O0=
Subject key identifier: 7F:B9:A8:B4:D5:26:FE:4F:16:52:4A:5F:50:AA:27:03:82:8A:07:F5
Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Certificate serial: 0197B70EBC3D135C38DBB520788AE145B124
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
Manifest number: 08E5
Signing time: Sat 28 Jun 2025 15:01:25 +0000
Manifest this update: Sat 28 Jun 2025 15:01:25 +0000
Manifest next update: Sun 29 Jun 2025 15:01:25 +0000
Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: v+7uf6veLHWH5xsoosQQwN0VxV4PoOImAxJDjGuGFjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:bc:3d:13:5c:38:db:b5:20:78:8a:e1:45:b1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Validity
Not Before: Jun 28 15:01:25 2025 GMT
Not After : Jun 29 15:01:25 2025 GMT
Subject: CN=7fb9a8b4d526fe4f16524a5f50aa2703828a07f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b0:0c:9e:3c:d9:6d:14:77:53:d2:0e:d4:b1:
b2:c3:7a:93:44:f0:1c:6c:d9:0c:65:89:e4:04:6e:
3a:c1:90:d3:4c:97:96:a4:07:52:f4:31:c1:e6:36:
3a:ef:e6:9a:f3:66:83:73:75:a5:89:ea:bd:e6:45:
cc:db:87:97:34:c4:b6:f7:43:aa:25:69:70:53:1d:
e7:d5:5b:d9:34:b2:ed:79:e5:a0:fe:c9:78:40:40:
c2:f4:d4:ca:bf:3d:8c:b9:60:e4:3a:21:99:21:58:
e2:d0:7a:8c:73:e3:ca:ca:85:fc:b3:9d:7e:0f:b2:
9c:41:7b:fd:9b:32:ec:44:9e:b7:3e:27:cb:cf:c7:
fc:1a:6b:ef:dd:f9:6e:6c:d6:07:4e:d5:e8:e2:11:
61:9a:e8:b9:49:4a:99:39:54:08:91:d3:dd:01:71:
c3:ec:b7:86:a1:d9:22:11:15:05:b5:8d:3b:5f:37:
0e:fe:c9:0d:d4:95:ae:a3:a8:27:6b:46:df:c2:a5:
50:ea:f8:37:a5:63:5f:c2:db:a1:23:06:2c:b7:65:
1e:5c:4a:58:de:b9:7d:f6:87:0d:38:58:d4:d4:96:
dd:25:93:4e:5b:5a:a7:25:9f:07:39:b2:77:18:a7:
38:b2:50:7b:d9:f4:b8:1d:24:5c:b0:b6:2e:42:76:
4d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B9:A8:B4:D5:26:FE:4F:16:52:4A:5F:50:AA:27:03:82:8A:07:F5
X509v3 Authority Key Identifier:
keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:bb:c7:8a:5e:e7:09:db:98:fb:21:14:a2:5c:3b:26:77:73:
26:55:ab:58:bb:08:28:9f:47:8c:63:3e:5c:81:4e:6b:b6:73:
45:a8:96:d0:5f:63:d6:80:56:01:e5:17:24:c6:f7:c2:bc:55:
3c:46:aa:16:fb:0a:11:4d:32:03:a1:67:62:bb:fa:da:9a:e4:
d0:b7:49:fc:a0:31:b2:a8:de:97:1d:be:c5:9e:30:bf:fd:56:
64:65:f1:c0:40:54:59:ec:38:75:b3:66:7d:4c:09:3a:f9:95:
7a:85:18:0e:b0:5d:0f:68:c4:5b:ce:c4:14:0b:ab:f4:12:53:
c9:a9:cf:95:85:5f:21:b3:26:dd:64:90:50:58:b9:c8:28:23:
96:ff:5d:16:07:64:2c:7b:f2:f4:04:fa:8b:26:06:d8:fb:db:
0b:02:51:bb:29:67:99:63:b2:68:b2:4e:f4:3e:36:a0:cf:db:
6b:b2:aa:50:17:3d:91:cf:ca:52:db:9c:1e:8e:34:10:61:0c:
2f:f4:df:03:0e:e0:fb:1f:08:c5:19:d8:86:1a:92:f6:90:cc:
fc:be:77:29:89:30:39:33:fc:f8:49:75:df:de:03:b2:d1:d1:
8c:bb:aa:9b:0b:8f:fb:29:cb:bf:00:f2:3c:e5:99:f4:0d:65:
ab:cf:ae:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:59 2025 by rpki-client