Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: 9YJmNzm9D4bAZUALuELBoLpbaVbL55q4rTl9CpxHIpM=
Subject key identifier: 38:22:29:5C:11:00:2B:79:5E:76:13:51:6B:A8:6B:0E:82:11:FE:4E
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 0197B82137FC9B322145008248CA69D4D012
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 20:01:14 +0000
Manifest this update: Sat 28 Jun 2025 20:01:14 +0000
Manifest next update: Sun 29 Jun 2025 20:01:14 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: 17djmOdy+s8AVuqWoKC7TxiFKuOZV32XpLm4C9odESE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:37:fc:9b:32:21:45:00:82:48:ca:69:d4:d0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Jun 28 20:01:14 2025 GMT
Not After : Jun 29 20:01:14 2025 GMT
Subject: CN=3822295c11002b795e7613516ba86b0e8211fe4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:b5:f3:45:4c:d9:4e:19:c1:3c:14:2a:c4:
b9:43:3a:d3:d0:aa:53:e6:1c:44:ee:ed:db:9c:18:
e0:1e:9f:cb:ae:b2:98:a2:38:13:db:a0:d6:ad:d8:
37:09:cb:ff:9a:e3:8a:7e:d6:b0:1c:53:ff:cd:7e:
1a:77:7d:45:ed:fd:b1:93:32:7f:fc:78:5f:0a:fa:
a7:d7:88:d1:ef:33:06:1f:40:2a:86:e4:a1:71:65:
ce:1a:88:ff:5b:33:da:5b:ef:78:69:97:7c:01:7a:
38:c0:8a:a6:0d:ae:eb:e9:b8:f8:3c:5d:37:dc:6d:
d6:e5:32:2a:4c:ee:84:b0:fe:69:c4:1e:20:9f:fb:
34:a3:9e:11:0a:a1:bb:09:f8:1b:74:1d:34:0c:e0:
5a:f7:d0:e9:7f:f4:42:90:aa:9f:e2:37:46:f3:c6:
97:41:df:e1:3b:e0:d9:93:9f:b3:30:47:8f:d1:ef:
e5:ac:34:f0:e0:e3:6d:95:74:11:93:94:63:10:ee:
da:50:df:81:d6:1b:74:4f:c3:7c:41:c2:7a:40:79:
b1:c8:15:eb:a3:43:09:e2:cf:d1:ab:dc:1c:fc:54:
21:99:53:8f:65:11:ba:6e:bd:64:01:41:66:66:fc:
f9:51:8b:59:4b:9d:c7:d4:af:88:3c:02:8e:c0:27:
5b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:22:29:5C:11:00:2B:79:5E:76:13:51:6B:A8:6B:0E:82:11:FE:4E
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:de:98:f1:95:57:a6:9f:68:95:0f:4c:b4:0c:f8:43:66:3a:
cc:fe:3e:2a:27:04:e9:8e:b3:5e:39:04:d0:72:c2:e0:9f:d2:
7f:9f:41:5d:d9:75:16:69:ec:5d:c3:81:0d:27:d8:af:83:80:
9b:cd:c8:b1:f0:26:72:52:c9:a2:8a:a4:ce:2d:d0:53:58:d0:
b3:1b:b3:d8:4a:1c:de:89:18:ea:9d:20:80:19:c8:f8:9b:c0:
af:d7:8b:5c:31:1b:67:91:38:38:4f:3e:41:7b:4f:95:35:a8:
dd:33:9d:0a:7b:f3:5d:6b:1c:ea:73:b6:a2:34:81:e8:fa:8a:
6d:76:98:e2:fb:d8:1e:78:84:59:73:55:5b:84:64:ff:d3:96:
68:76:d9:9d:12:62:fc:73:a8:ab:81:c3:9d:c4:a8:e8:84:f2:
bd:67:8d:5a:70:28:36:a9:b5:08:6a:bd:ff:5a:97:99:ea:40:
5f:22:ad:b3:78:11:fb:4b:95:6b:c5:04:94:30:00:9c:58:0c:
9d:88:19:2c:fa:f3:23:f0:b6:a7:b4:a9:7c:f0:ff:dc:b9:b8:
0f:5e:50:bc:84:c1:e7:cc:c5:17:db:fb:9c:87:1e:49:d9:83:
d7:b7:10:fe:2c:31:0c:36:7f:99:54:f7:da:77:57:48:a5:19:
17:10:24:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:31:18 2025 by rpki-client