Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json)
Hash identifier: rK21ywaWkK41YIAXzEwnWZ3i4ssqOD0EVneA5oxk3mY=
Subject key identifier: 5F:A5:08:B2:5B:1C:98:67:96:9A:F0:DD:20:8F:E0:51:1A:8A:1D:1E
Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Certificate serial: 0197CA26FFCA044A0A2610F5274512BC4CC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
Manifest number: 033A
Signing time: Wed 02 Jul 2025 08:00:42 +0000
Manifest this update: Wed 02 Jul 2025 08:00:42 +0000
Manifest next update: Thu 03 Jul 2025 08:00:42 +0000
Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: sy3UT/NTxrQg3O0ENdakz+5HioiRkE3M0YIE5n+629E=)
2: eBrn60Df7uG_ub_L-IV105lzs58.roa (hash: O8+G2XvuPwR1yEXnK+zmEZeJLzoyxFForxI59j5WNAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:26:ff:ca:04:4a:0a:26:10:f5:27:45:12:bc:4c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Validity
Not Before: Jul 2 08:00:42 2025 GMT
Not After : Jul 3 08:00:42 2025 GMT
Subject: CN=5fa508b25b1c9867969af0dd208fe0511a8a1d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2c:bb:b8:b4:41:c9:28:a2:fc:ec:36:d3:51:
88:42:9b:d3:b4:54:19:7f:9b:c3:ff:68:46:92:08:
46:7f:ec:04:60:31:c7:aa:d9:1d:c9:28:04:73:fa:
bb:2a:84:2c:c5:56:67:45:d2:31:ed:ae:4c:b6:d7:
fb:e1:ce:87:2a:ec:70:5f:b0:4a:c7:2c:2b:7b:bd:
1f:b3:c8:88:5c:ad:16:13:9e:c2:bc:fb:8f:3b:f7:
1c:56:b6:11:aa:18:02:ea:70:40:3d:2b:6b:fc:d4:
c8:c9:d0:ce:89:73:e1:05:ec:ac:10:27:56:ca:7b:
4e:71:ea:15:ff:ef:8f:88:66:99:70:a5:24:53:a7:
4d:1c:ad:68:5c:7e:de:0a:99:20:a2:97:17:c4:12:
98:e6:63:fa:2d:32:6b:35:1e:9a:1a:f9:73:43:81:
4a:7e:5f:88:b8:ce:a3:91:0a:0c:92:4d:fb:e5:a4:
20:2f:a6:d9:d9:b3:60:42:00:3e:90:73:b6:28:69:
89:a5:f8:40:f5:3c:8d:96:19:69:5e:3a:e7:49:6a:
ad:6e:9a:49:3c:98:48:6c:e8:2b:e0:b5:34:84:29:
a5:d0:f2:ba:91:22:5e:26:56:97:1b:43:a1:0a:16:
2f:6a:5a:5a:51:18:42:48:07:c0:bf:24:28:0b:89:
51:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A5:08:B2:5B:1C:98:67:96:9A:F0:DD:20:8F:E0:51:1A:8A:1D:1E
X509v3 Authority Key Identifier:
keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:42:ad:6e:01:f3:e4:56:ce:5e:83:69:62:4a:56:93:75:84:
3f:d1:5d:c8:9c:72:5c:48:cc:15:27:84:f6:90:ea:34:26:1e:
e4:e3:e3:da:9d:be:2c:c2:ff:8d:b2:db:98:e7:bf:a8:26:c7:
7c:87:34:6d:a1:c5:f5:ea:56:bb:c7:17:04:c7:e4:db:e2:72:
73:c6:87:2a:0a:b8:70:21:28:ec:9d:5b:84:a8:9f:da:b0:5c:
8c:e5:a4:bd:63:93:bf:51:86:7e:43:d9:44:73:f1:ef:c4:b7:
8e:5e:f7:7f:c6:e7:e9:69:41:31:0e:f1:73:6d:7c:64:1d:c7:
a5:1a:90:7a:9c:6a:62:4c:ce:98:85:df:c9:0e:d5:f8:f1:d9:
c1:f6:90:62:c5:e8:02:30:59:7e:25:86:60:71:c3:65:07:49:
c3:b7:a3:f1:48:f2:74:75:2b:79:fc:74:ad:c0:43:78:10:f6:
5c:bd:ab:cf:53:37:ac:46:de:49:4c:d9:21:50:b2:20:aa:a4:
8b:b9:fc:24:48:57:41:b5:da:ed:24:22:ca:59:a4:05:4c:be:
8a:53:86:e7:55:46:69:4f:3c:ec:7f:94:2a:50:27:fd:ad:00:
d7:92:e0:00:00:54:01:1f:7a:1f:41:6d:96:57:dd:b7:4f:50:
92:cf:5f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 16:38:42 2025 by rpki-client