Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: gdF6/53zVK9cTUC5jLNYjYrYHHWlCr/UcBKbnVxEbK4=
Subject key identifier: BD:83:CE:E3:9B:12:BC:18:E3:62:D4:64:F7:D2:24:C6:FA:C6:9B:B0
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 0197B820F6E29B4251066B9387494A8BB6E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 1307
Signing time: Sat 28 Jun 2025 20:00:57 +0000
Manifest this update: Sat 28 Jun 2025 20:00:57 +0000
Manifest next update: Sun 29 Jun 2025 20:00:57 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: P+y11pWJAX0og2CEr8ai04y11YMB48G6R5PzRDbAVFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:f6:e2:9b:42:51:06:6b:93:87:49:4a:8b:b6:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Jun 28 20:00:57 2025 GMT
Not After : Jun 29 20:00:57 2025 GMT
Subject: CN=bd83cee39b12bc18e362d464f7d224c6fac69bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:58:29:0a:df:6f:41:fe:f2:fa:84:d0:74:d6:
e0:7f:c5:c4:5b:bc:a4:88:1c:5a:d1:cd:57:d1:c0:
b9:32:cf:a5:7d:33:c9:a8:1e:7b:31:2f:ae:66:16:
1b:ec:d5:82:a7:6d:6d:bc:8c:00:55:2c:c0:76:f4:
73:f7:50:cf:a8:17:90:2c:52:e8:13:a8:eb:86:df:
25:a5:80:5c:b6:e7:a4:81:bc:5d:da:ca:12:05:45:
17:5c:51:a5:ef:45:b7:db:b0:1b:33:5b:b2:cf:f1:
25:6b:15:88:37:98:28:b5:54:4d:1f:5b:77:89:74:
85:91:2f:6e:89:67:dc:b4:85:64:d0:c4:cc:d5:ec:
da:35:f4:59:c0:c4:78:e1:19:ac:d5:d2:f6:ff:a6:
f8:f8:95:4d:d2:1a:c1:c6:66:f3:92:59:0e:60:91:
c3:c0:f4:b3:fc:29:00:02:5f:17:d2:7b:df:8b:3a:
f9:95:7a:16:1e:1e:5e:4b:f7:32:97:04:eb:67:19:
e1:3b:ae:fa:d5:3f:a9:5a:ad:6e:13:c3:d2:0e:f4:
3b:48:a8:5e:75:76:57:13:2a:5e:3e:31:39:39:24:
15:70:54:01:90:25:71:f8:ea:b0:dc:6b:b9:75:9f:
b1:32:ef:71:74:20:a9:98:c8:15:31:5e:c7:5a:fe:
3a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:83:CE:E3:9B:12:BC:18:E3:62:D4:64:F7:D2:24:C6:FA:C6:9B:B0
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:4e:4f:93:67:ea:86:a1:79:c8:b5:8d:c5:18:3d:5a:f0:a1:
28:77:f6:50:f7:81:98:7c:5c:ec:be:18:69:b5:77:c7:2b:2b:
f8:8d:b6:44:53:d7:bc:3f:e2:07:e0:18:a7:b1:b4:4b:1a:a3:
2f:fe:11:af:5a:bd:ad:17:d1:fe:70:cb:f2:1a:8f:e7:64:8a:
73:f5:37:83:e1:cd:93:c5:1b:33:10:b3:91:a8:aa:1e:cd:5b:
bc:6f:9a:65:b0:11:4e:ae:ca:99:05:88:26:d9:76:c2:07:ba:
06:12:ea:05:68:fb:4b:a0:31:bd:6c:06:99:d7:61:f8:0c:0f:
96:76:6d:78:0e:75:ad:12:45:7b:be:af:76:b3:d4:9f:55:24:
2e:e9:7f:e7:fc:00:29:bd:9e:63:ae:cc:88:71:25:26:a9:12:
36:ef:ef:03:73:0d:dc:bb:1b:09:c3:b8:bd:0c:07:19:a7:51:
b9:be:16:4e:db:97:82:89:c9:e7:31:f1:db:3c:c0:da:d9:ab:
41:18:39:ad:3a:71:08:08:a0:56:2b:d2:72:c2:0e:e0:25:9b:
3c:c3:f1:2e:83:3b:de:fd:74:64:47:da:7d:6b:9e:4c:2b:93:
f1:cb:33:62:63:11:77:f2:aa:19:be:7f:f6:b2:b9:fc:99:80:
4f:1a:2e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:28:02 2025 by rpki-client