Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: 6gLD+e45IGuBOene8IKbMXoj4/UzA15+HcCuwoFqEL0=
Subject key identifier: B7:2D:EE:D8:B3:58:AD:2F:21:D9:F0:40:F9:5E:E7:55:F7:7B:17:EB
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 0197B6A09CE82A6739A3604FFBD5A64746EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0C19
Signing time: Sat 28 Jun 2025 13:01:08 +0000
Manifest this update: Sat 28 Jun 2025 13:01:08 +0000
Manifest next update: Sun 29 Jun 2025 13:01:08 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: phl2epsEj50S4lSx8Pu1mU7d+1rOx2HuqTOPe6GC4yo=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:9c:e8:2a:67:39:a3:60:4f:fb:d5:a6:47:46:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Jun 28 13:01:08 2025 GMT
Not After : Jun 29 13:01:08 2025 GMT
Subject: CN=b72deed8b358ad2f21d9f040f95ee755f77b17eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:29:36:b7:11:4f:42:a5:56:93:29:93:c0:fc:
01:20:fb:ae:c4:2e:20:f6:81:81:32:bd:ff:d6:3a:
92:6b:22:5b:96:f5:d1:d1:f9:e6:09:3b:bd:d8:18:
bf:54:28:f4:b5:6c:24:e0:cc:89:14:bd:0e:50:51:
09:fc:7e:1c:30:d4:b2:09:52:b4:ba:2b:fc:f0:48:
83:af:26:8c:4a:f6:0f:9d:a1:4d:54:d8:42:04:9c:
52:c7:2e:31:d9:59:0f:8a:b0:d5:e2:88:f7:ea:eb:
6c:89:d7:bc:54:d3:da:33:1f:4a:09:63:19:d0:d0:
b8:27:7a:f9:0d:ee:93:f3:b6:83:d6:bf:a2:4b:8c:
4b:e8:7f:40:1c:bd:5f:e0:73:bd:46:db:d4:cc:4b:
ae:dd:25:23:1b:99:0e:27:62:ff:43:ae:0e:32:58:
7a:34:25:b5:32:08:9d:21:fe:f6:89:a7:5a:3b:0d:
b0:2d:cb:2d:b1:15:61:1a:53:6b:ed:34:d3:06:32:
bd:f3:f0:47:f1:eb:4d:5d:94:7f:78:2a:72:ba:4a:
15:b7:56:5f:a7:78:08:38:22:42:b1:d8:6f:87:5d:
c9:59:c5:00:f4:f2:ed:29:58:f2:8b:45:56:30:f8:
28:a7:07:e1:88:56:62:dc:53:e6:b7:55:25:6d:13:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2D:EE:D8:B3:58:AD:2F:21:D9:F0:40:F9:5E:E7:55:F7:7B:17:EB
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:8e:9e:d9:a4:ac:fe:1e:b5:74:37:46:45:3f:bd:c4:98:a1:
20:87:32:2c:af:a2:2f:f8:47:0f:6a:b9:f4:e9:b5:2f:c2:09:
cb:70:e9:51:b3:f4:da:b9:a2:99:5e:51:9f:4e:47:0f:2b:be:
bf:a0:10:2b:69:0d:d4:5c:9e:96:33:d2:7e:9b:91:e5:c3:13:
84:2f:2d:ba:83:b5:bf:a8:9b:71:b4:3a:06:5f:63:4a:3f:39:
d4:60:fa:79:c3:88:eb:6d:a8:af:b3:23:50:c6:71:6a:01:72:
ef:f2:b2:08:7f:d5:2c:50:e7:4b:5c:4e:bd:ae:d9:53:1c:be:
e4:db:67:5f:cc:3f:31:14:da:0b:03:a9:bb:d2:3f:49:3c:c1:
d8:86:f4:0b:a5:df:1b:3b:14:69:27:71:92:8a:7a:74:62:20:
14:63:68:64:4a:b2:d5:7d:5a:c4:a9:df:d4:ff:9e:1e:11:a2:
97:e5:26:de:03:c2:8a:fc:c3:61:26:ed:2a:c2:3e:5e:58:8d:
6c:4b:92:44:03:d9:27:39:40:cf:29:2a:e1:9a:cd:10:35:07:
b1:ac:ee:88:df:d6:57:0a:34:88:f8:84:cc:05:6e:15:56:82:
0a:30:16:96:7e:2d:47:94:a7:ef:44:2b:e3:ba:96:02:a4:34:
a8:b4:48:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:47 2025 by rpki-client