Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
File: 25Kd7FwPI63Zuu7qe7OayHpykIM.mft (raw, json)
Hash identifier: cpXBKmk+xA+Ba74jOqUK0MR5zsTEbZtbXhHAnKtJ5q4=
Subject key identifier: EA:D1:C9:DB:92:07:6E:1F:0A:D1:0A:01:21:13:6A:61:69:25:78:95
Authority key identifier: DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
Certificate issuer: /CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Certificate serial: 0197B88F7C84F1161F68E2EB62A34D3ED54F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
Manifest number: 15BA
Signing time: Sat 28 Jun 2025 22:01:40 +0000
Manifest this update: Sat 28 Jun 2025 22:01:40 +0000
Manifest next update: Sun 29 Jun 2025 22:01:40 +0000
Files and hashes: 1: 25Kd7FwPI63Zuu7qe7OayHpykIM.crl (hash: 4ZVRnl9AFBYVDEHGV6CXyzTmcT8MbY7LAqZSIKDsz5g=)
2: N4n5sfqwVKR0MtRKu60VkuVT8t8.roa (hash: 7oA83Z9SKqiyh1q+LTyv1yKzsMJNh3uvhrwtOfQSMtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:7c:84:f1:16:1f:68:e2:eb:62:a3:4d:3e:d5:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db929dec5c0f23add9baeeea7bb39ac87a729083
Validity
Not Before: Jun 28 22:01:40 2025 GMT
Not After : Jun 29 22:01:40 2025 GMT
Subject: CN=ead1c9db92076e1f0ad10a0121136a6169257895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4b:67:c2:14:87:9c:c6:9b:46:43:98:ce:0c:
e1:40:f1:0f:e6:48:d8:d6:f3:cd:2b:02:01:d6:3e:
ea:d5:ec:58:63:1f:b3:a6:e6:4d:ee:75:a5:4b:59:
af:b7:cb:9a:b1:01:63:e3:e2:91:46:71:fc:c8:e8:
5a:eb:7e:88:7f:ff:76:4e:14:f1:4a:0e:0b:fa:be:
7b:d4:92:97:96:5a:09:9f:ea:11:25:dd:47:09:96:
e3:fa:7a:77:bc:49:c3:a9:b7:c7:a5:d6:c4:74:0e:
05:e6:98:34:af:5d:32:73:2c:6f:42:98:f8:01:b9:
be:aa:ae:10:d3:88:dd:26:ba:22:ee:28:34:52:a4:
4f:dc:f2:30:c0:b8:d1:20:8f:ea:0c:49:86:39:7e:
af:8d:f6:e4:c4:64:9b:35:07:fa:cf:d4:32:25:b9:
37:0c:a2:c7:e0:da:63:75:d9:58:ef:cb:e1:0e:af:
a3:c1:f9:c9:dd:bb:22:98:31:fb:78:50:3b:c3:a9:
b8:e1:73:d1:c6:b8:6e:bf:8b:55:75:81:de:3d:1b:
2e:e0:e5:5b:a9:31:d1:34:4a:f6:ad:8d:b1:68:f3:
76:75:62:37:e4:63:fd:6f:ad:a3:07:d3:f5:e3:a6:
41:03:a4:1d:ed:0d:05:b5:a3:de:ee:6b:71:f7:a5:
db:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D1:C9:DB:92:07:6E:1F:0A:D1:0A:01:21:13:6A:61:69:25:78:95
X509v3 Authority Key Identifier:
keyid:DB:92:9D:EC:5C:0F:23:AD:D9:BA:EE:EA:7B:B3:9A:C8:7A:72:90:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25Kd7FwPI63Zuu7qe7OayHpykIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/be5fff-c911-457c-95fc-d30b7e25ae0b/1/25Kd7FwPI63Zuu7qe7OayHpykIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:8e:dc:42:40:89:5a:fa:39:e7:1a:68:b9:28:b3:13:2f:dc:
57:80:76:f5:27:b0:d3:ce:4a:36:ef:64:95:e2:35:d7:19:76:
c0:b0:17:67:66:1f:9e:6c:cf:31:6d:f3:66:ac:94:d2:f2:9f:
d8:06:27:0c:1f:dc:2d:93:9e:87:32:cd:de:51:90:17:f1:8b:
84:5c:58:3b:55:ce:4c:46:8c:9d:d2:5c:51:fd:06:5d:53:0d:
29:22:ff:af:e3:2a:4d:f2:11:61:dc:97:39:90:c5:e4:44:19:
2b:5b:58:f8:7a:5f:9a:51:aa:f4:74:84:48:8b:6b:ac:db:b5:
c0:ae:aa:40:be:c4:34:e1:0b:2b:42:44:72:f9:62:f3:c8:92:
f4:da:dd:51:a7:d1:17:1c:77:fd:9e:e8:cf:f8:d2:d1:8e:9e:
20:a7:d3:06:fc:e5:ec:b0:86:ce:c4:dd:57:0c:bd:55:1e:37:
62:24:4b:0c:b6:dc:d2:be:dc:01:d4:8c:b9:71:4b:f1:a3:b2:
d2:c4:8e:21:3e:42:0d:6d:e7:b7:da:11:95:0b:90:67:1a:13:
ed:7d:f6:49:25:db:2d:ac:5a:80:f1:43:1a:ba:fb:39:d2:a0:
eb:28:63:ed:49:f7:a2:a7:5e:6a:78:34:c1:77:61:00:7e:92:
5c:22:7a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 05:59:45 2025 by rpki-client