Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
File: D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft (raw, json)
Hash identifier: C3/bV8/WDDcfSdbFuIox1NeJjopwTaCUUfv/5pF4/QE=
Subject key identifier: B9:0D:1D:AB:90:D6:A1:D5:12:1E:57:C2:7B:03:81:AB:E6:62:78:34
Authority key identifier: 0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
Certificate issuer: /CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Certificate serial: 0197B6A1B3E3CDFE0853AC5AED3006E43C18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
Manifest number: 0E1B
Signing time: Sat 28 Jun 2025 13:02:20 +0000
Manifest this update: Sat 28 Jun 2025 13:02:20 +0000
Manifest next update: Sun 29 Jun 2025 13:02:20 +0000
Files and hashes: 1: D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl (hash: jXVKlmpQtdBNc/WwTWvlnKy0qM8ZQB2tVBexTNUT14A=)
2: FIHDrOZdPItJ1g7-VrAk_uoQnSo.roa (hash: 1BVoM3pIwN+Dth/AavDroFy4/aBiv0LMqKNh/mLZqqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:b3:e3:cd:fe:08:53:ac:5a:ed:30:06:e4:3c:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f671fec38f00c402f3066f13c792e1a0ed16db3
Validity
Not Before: Jun 28 13:02:20 2025 GMT
Not After : Jun 29 13:02:20 2025 GMT
Subject: CN=b90d1dab90d6a1d5121e57c27b0381abe6627834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:00:af:bb:06:30:d3:72:8f:11:c3:fa:f0:db:
fe:a9:57:bc:01:61:46:9c:9a:b5:6e:56:bb:2d:16:
39:84:c0:72:7a:33:64:1b:b9:7f:5d:48:a1:b0:34:
da:16:c5:7e:c5:e1:cd:68:ac:c5:e3:96:de:8c:63:
7a:a4:29:ca:62:a8:70:95:8d:4e:cc:55:f8:b1:6a:
88:08:8d:a4:7e:79:9c:da:b5:aa:94:47:0a:2f:78:
5f:0b:ad:66:2e:74:36:8e:e3:b4:be:cf:6f:85:d1:
95:e8:cd:dd:e9:36:a7:93:23:70:cc:ed:56:b3:59:
75:1a:56:e4:8f:9d:7d:ae:5c:50:70:92:e7:06:dc:
8e:f9:a5:7a:40:e6:46:16:37:f3:d5:d9:88:28:09:
e7:04:c2:da:30:32:f1:ea:0a:f0:f1:0a:63:ba:df:
a1:ef:8a:a7:ff:9e:ed:c5:87:23:89:9e:27:f6:f4:
64:ab:13:8b:92:59:bd:03:99:00:b3:0d:da:92:cf:
03:08:a6:26:79:1a:27:2d:e5:b0:cf:44:9d:4e:8b:
d1:e2:5f:fc:75:a4:c7:b9:91:cb:41:7a:42:09:45:
3c:c4:d0:4d:54:fe:f5:84:11:04:b8:8e:d0:ab:68:
85:d7:e8:40:06:bc:9f:99:9e:14:57:00:1b:32:b8:
9d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0D:1D:AB:90:D6:A1:D5:12:1E:57:C2:7B:03:81:AB:E6:62:78:34
X509v3 Authority Key Identifier:
keyid:0F:67:1F:EC:38:F0:0C:40:2F:30:66:F1:3C:79:2E:1A:0E:D1:6D:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2cf7DjwDEAvMGbxPHkuGg7RbbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/49bb69-dff9-448e-a8a2-977305c70051/1/D2cf7DjwDEAvMGbxPHkuGg7RbbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:90:0e:6e:a1:ee:b6:5a:36:c3:a0:09:f4:05:27:5f:14:3f:
82:48:c4:5b:4a:02:47:1b:39:40:24:7a:33:32:5d:11:f4:c8:
b0:19:4e:e6:4f:ea:74:f2:28:d1:2f:49:cb:db:ca:a7:85:b1:
6b:30:c3:f2:c7:b1:3c:74:19:f3:57:ba:9f:ba:2a:d1:eb:d6:
38:0a:89:4d:49:0e:64:cc:6a:f8:d2:53:9e:ad:79:e7:d9:42:
ca:57:2c:31:90:ed:d9:2a:0f:d9:37:9a:00:91:fe:5b:65:69:
bf:ae:8c:d1:cf:5a:d5:eb:a0:fe:7d:e3:b2:de:e3:95:9a:84:
a2:da:73:2f:50:5f:5b:49:e2:a8:40:15:0a:ca:79:27:44:1b:
90:48:bf:f2:03:16:a7:df:22:dc:36:b8:07:cd:a4:7d:25:52:
30:a7:5b:62:1f:32:0f:b0:a8:5b:8a:1b:13:b7:9c:1e:92:4d:
6a:09:62:a2:af:87:8a:7f:63:9d:31:37:e3:98:84:b9:ed:65:
52:66:d6:d3:9e:fa:b2:f6:7d:22:c8:c9:67:a6:bd:d4:34:0f:
f2:8e:98:7a:8c:15:75:48:f1:92:ee:4f:85:ff:b7:d5:e8:19:
39:52:6f:0c:e8:e5:ba:e0:5c:90:57:6b:d5:a8:b5:d6:81:28:
74:cd:31:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:23:26 2025 by rpki-client