Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: rhaMUit0+Hr70HbRvpFJWWBTzvAE7MT4PRiAeKX/KmQ=
Subject key identifier: 50:6A:0E:44:22:35:B1:98:90:4A:B7:1A:2D:83:54:CF:AE:2C:2A:86
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 0197B70E7527C36472D5D10813B52E4FFCD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 0EC1
Signing time: Sat 28 Jun 2025 15:01:07 +0000
Manifest this update: Sat 28 Jun 2025 15:01:07 +0000
Manifest next update: Sun 29 Jun 2025 15:01:07 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: DyIIc2MozoK4sHZ4to+E2eNw4pIJeTqb2U0oJAVoNTA=)
2: NZtS_yd4-bo9e2cvGKzyKvYI3pE.roa (hash: +rJHNNOfAgRLW2AYZ2GQZ4sJIXJPzKob0SOJ3Knzwec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:75:27:c3:64:72:d5:d1:08:13:b5:2e:4f:fc:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Jun 28 15:01:07 2025 GMT
Not After : Jun 29 15:01:07 2025 GMT
Subject: CN=506a0e442235b198904ab71a2d8354cfae2c2a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:0e:9e:f3:07:e1:42:d1:5a:f0:51:da:88:
f7:b2:64:90:16:ba:4f:22:bb:1c:f0:d9:e1:fe:d9:
ae:b5:e2:8b:6e:21:5f:e7:d9:39:56:e0:81:e1:d7:
72:97:ba:26:2e:62:64:5d:6a:d3:6d:6d:c2:95:be:
e1:be:35:bf:20:c3:95:7a:d0:f4:b7:05:3d:9a:38:
fd:de:65:9b:4a:56:10:b1:e8:b8:24:1f:07:41:27:
d0:08:49:17:48:04:5e:bb:6a:92:a0:ec:f6:90:25:
8a:20:d8:8e:55:7b:e8:fe:69:ac:3a:de:f8:d1:7d:
fe:36:54:0b:25:14:b4:b5:53:b2:2d:f9:d5:05:9d:
02:b3:c5:69:6f:d0:f7:84:f2:9d:12:0e:fb:e4:f7:
8c:1d:37:04:1c:24:6b:fd:50:56:23:21:85:1b:e4:
a4:79:ac:76:c6:9d:03:40:44:8c:ec:1f:b8:07:d9:
b2:40:46:f3:05:4b:4f:e8:9e:ff:ea:24:55:ae:f8:
39:53:9b:a2:d9:ef:65:2a:7c:22:c1:72:88:a9:e5:
9c:9c:ce:44:80:0d:48:78:7d:f0:26:2c:4f:ce:77:
78:9f:f8:b4:d5:d6:96:d4:a3:17:26:86:a2:8d:8f:
e5:45:82:c5:cb:b8:4c:55:2a:53:d2:c2:5e:ef:5b:
c6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6A:0E:44:22:35:B1:98:90:4A:B7:1A:2D:83:54:CF:AE:2C:2A:86
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:2d:9e:4d:51:46:83:ba:a9:3f:fa:df:5d:48:bc:4e:cb:cd:
d8:25:a1:e3:4b:09:30:4e:37:40:73:11:cf:85:d2:0c:94:a3:
65:47:b2:a0:0e:fe:40:b9:b8:dd:6f:b1:1e:ac:76:a8:51:56:
94:bb:06:ab:f8:95:8d:44:02:52:05:13:83:6c:b6:54:f2:e4:
90:11:4a:95:9b:18:ed:f3:c9:d1:a7:d8:56:4e:d1:18:5d:a1:
7e:46:35:48:a9:f9:ad:4b:d8:a1:31:62:45:e9:84:23:a1:d8:
1f:86:fd:b5:3e:bb:f6:98:69:1f:4c:de:05:d9:f9:a9:83:d1:
e6:2f:0b:de:f4:ff:b4:fa:d9:0a:dd:74:0f:97:f8:a4:c5:b2:
cb:70:b7:ce:00:f5:27:a1:22:2f:34:d7:4c:08:71:66:bb:0b:
dc:c9:c7:62:70:87:95:1f:b0:70:01:62:52:8c:54:52:57:7f:
bf:83:75:0f:e7:14:79:02:5e:98:d7:32:e7:84:a1:a1:9d:0d:
da:43:a5:2e:9a:c3:09:28:3f:9e:17:61:ab:2c:66:22:2b:e1:
99:72:69:28:78:69:ba:8f:51:8a:f2:81:01:3e:4c:11:e1:0b:
f6:36:89:5e:72:af:f2:bc:61:c9:b6:8d:d9:cf:a5:42:d6:9e:
ec:3b:41:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:42:16 2025 by rpki-client