Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: tsDmGoJREG47e96D4Em7J7TrwLjHoBWPDRrLg1z+TB4=
Subject key identifier: 69:3D:E5:20:62:55:73:E6:65:21:28:CE:85:11:D3:68:EC:5B:34:D6
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 0197BB2282CBD1152AF3EF736B513E714332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 0252
Signing time: Sun 29 Jun 2025 10:01:30 +0000
Manifest this update: Sun 29 Jun 2025 10:01:30 +0000
Manifest next update: Mon 30 Jun 2025 10:01:30 +0000
Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: EoGwczebAizCdoEdkOQbTmBoMye2bKE2UwYdyKnQmH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:22:82:cb:d1:15:2a:f3:ef:73:6b:51:3e:71:43:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Jun 29 10:01:30 2025 GMT
Not After : Jun 30 10:01:30 2025 GMT
Subject: CN=693de520625573e6652128ce8511d368ec5b34d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:17:77:0f:ee:37:db:85:2e:fc:5b:8f:fc:3a:
27:5b:03:47:22:57:ce:37:ad:0c:f6:b6:89:4d:d0:
10:62:97:5e:2c:67:1b:8e:bb:01:32:c2:d6:1b:01:
67:3a:4b:3a:16:2e:d1:e9:42:c9:ef:5d:ba:80:96:
da:8d:58:04:d0:7f:2e:38:18:70:33:6d:ad:0d:0c:
d0:06:b5:46:66:b5:fe:e5:7e:5d:e6:61:01:5f:92:
6d:6c:4f:e2:48:10:c1:24:72:af:f2:c2:89:4d:39:
e4:3b:17:66:ce:24:a3:30:21:48:bd:63:8a:fd:3a:
2c:0b:38:c5:72:59:74:47:c8:99:18:e7:3c:8e:a2:
11:eb:05:8b:dc:99:17:10:cf:8c:15:e2:48:c7:5d:
e1:ca:02:62:66:20:2a:d8:80:65:14:5a:7b:41:4e:
f1:94:8a:80:21:b9:ee:36:90:43:83:5c:5b:9a:a4:
21:d1:df:5a:e9:35:7f:41:7d:01:00:10:fc:a6:47:
d7:79:b1:2b:f0:5c:32:b6:bb:89:43:0d:48:d5:2f:
37:c5:c1:47:dd:74:52:5b:67:1d:6e:4c:14:6f:50:
e7:cb:b1:36:24:0b:3a:be:31:a3:a0:a0:0c:50:fc:
a9:c1:12:ad:e6:7c:29:0d:d9:5a:d4:1f:c4:1d:57:
4d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3D:E5:20:62:55:73:E6:65:21:28:CE:85:11:D3:68:EC:5B:34:D6
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:40:5f:d5:19:ed:69:02:4f:02:38:18:c2:35:d1:08:cd:b7:
3e:51:7e:b6:3e:0e:2b:2d:27:b6:3c:72:2d:aa:35:27:6f:fc:
3f:7e:35:6f:d5:2b:8f:ef:5b:e0:68:da:b5:d6:9d:58:60:9f:
38:76:ab:da:a2:1d:44:ed:e8:03:44:ec:6e:3c:ee:6f:25:d7:
cc:07:f1:c2:31:fa:f4:60:7e:b1:5b:f5:47:65:24:68:4f:8c:
bb:c7:8d:06:f2:ed:de:a0:e6:42:c3:e6:1d:0b:4b:db:52:4d:
e6:b6:76:1c:9c:29:85:68:4c:c6:ab:0f:2b:ea:15:08:b6:6f:
cd:43:5f:01:b7:6e:d1:30:20:ce:1a:3b:b2:de:fb:4c:cd:fe:
2b:80:26:5d:61:0f:22:2a:94:5f:63:ba:ba:0a:6e:35:06:a6:
94:6f:5c:51:cc:da:5c:13:34:b7:d8:4e:08:2b:6c:d6:b5:62:
c4:60:06:07:36:2c:c3:47:25:de:5e:fc:d6:b9:ee:62:64:de:
93:2f:d9:79:c3:50:f2:52:35:8d:e0:78:77:37:12:17:af:62:
9a:a3:e0:72:42:2c:93:e0:be:ef:f5:72:10:3d:98:a0:e0:ed:
b5:a2:12:84:be:94:3c:e0:19:ad:8b:c3:e6:3f:13:7e:d1:47:
bf:ed:51:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:47:38 2025 by rpki-client