Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: fzmUklWwjODtgNW3arXx5FW0s9UgK9GPHDF3YGAc6WA=
Subject key identifier: C3:0D:B6:DE:DF:D6:66:94:5C:07:84:5C:BC:D8:91:7B:60:5A:48:BB
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 0197B7B302884375E7F66B86B6E4CB32E440
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 0FB0
Signing time: Sat 28 Jun 2025 18:00:51 +0000
Manifest this update: Sat 28 Jun 2025 18:00:51 +0000
Manifest next update: Sun 29 Jun 2025 18:00:51 +0000
Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: LWXjlr7NXAJ1tyc9PMNBJqeBl8kLpeDE2QvplmJBkpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:02:88:43:75:e7:f6:6b:86:b6:e4:cb:32:e4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Jun 28 18:00:51 2025 GMT
Not After : Jun 29 18:00:51 2025 GMT
Subject: CN=c30db6dedfd666945c07845cbcd8917b605a48bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ea:0b:29:2f:fb:a5:8b:73:44:e5:f9:8a:4e:
93:db:12:2d:11:b9:0e:6f:d6:c1:b6:35:29:88:2d:
b4:ae:bf:27:ae:59:43:c7:b7:32:9f:1f:21:93:79:
06:c0:aa:28:74:9b:44:1c:a1:76:9c:df:f5:cc:98:
99:58:5a:ac:15:f2:07:b4:60:65:58:ce:25:46:42:
cd:93:8a:9f:fb:8d:a2:a5:2c:3a:5b:9d:8a:b8:8c:
61:5d:76:47:ad:11:27:f0:cb:24:4d:21:84:a4:75:
a4:76:e9:17:9f:83:f3:4d:fd:89:9e:de:68:91:bf:
1f:ba:2e:2e:be:de:59:11:db:90:78:8c:1c:ca:b7:
ce:df:6c:35:d8:d3:84:2d:65:33:71:73:ae:6d:51:
af:9e:0b:5b:7a:5a:2d:29:4a:65:39:26:a3:83:29:
f0:13:d9:fa:42:e2:80:d7:33:1e:f1:49:9a:f6:b6:
86:59:92:06:53:cd:35:ba:a5:20:13:7a:d4:a5:80:
c3:2d:34:dc:ba:a9:71:15:70:2b:86:9d:95:a0:e1:
83:7b:b8:96:26:0e:67:ed:2f:9c:37:4f:48:43:19:
01:0a:0a:e0:40:6d:48:94:ef:55:b4:29:2e:1b:a2:
91:73:f6:74:e3:2a:36:89:dd:bf:4f:41:4c:80:fd:
09:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0D:B6:DE:DF:D6:66:94:5C:07:84:5C:BC:D8:91:7B:60:5A:48:BB
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:6f:11:14:57:5e:ac:5c:ad:53:21:5d:9a:81:20:33:f2:64:
68:96:db:d9:0c:0a:05:0b:cb:98:fc:58:d7:ab:6c:88:a3:b8:
da:ab:b6:4b:7f:d2:50:29:bc:b2:10:c6:62:fe:a2:32:62:06:
48:ef:05:c8:50:64:cb:4d:df:83:1a:8e:ce:c4:cb:01:0f:5e:
7d:bf:6b:2e:7e:ac:64:68:1d:03:03:14:2c:d0:a3:91:22:99:
c2:c1:e1:a9:74:98:6d:11:10:26:c3:fc:69:22:de:ae:82:3c:
06:4e:b3:0a:c1:9e:55:28:b1:2e:04:21:61:f8:7a:35:9b:81:
07:b5:d2:22:06:84:ba:9f:32:96:43:51:05:39:74:96:07:ab:
f3:b3:e1:47:84:35:42:0c:aa:91:be:2c:46:7e:be:19:ab:9d:
64:85:4c:32:3d:a3:ab:4f:04:81:fc:bf:de:20:d7:b4:93:6d:
70:6a:59:61:a8:b8:62:d6:03:87:1b:1e:ef:86:6a:27:89:65:
5e:9c:fe:2a:eb:27:7f:94:13:81:50:9f:fd:50:2e:e9:2b:f9:
e3:b1:73:a2:b2:d1:bd:ba:bf:e9:9c:c9:22:f0:6b:e0:5b:e5:
9a:f2:9e:b7:4c:07:bf:92:d7:bc:7d:90:43:0d:23:90:71:5b:
f2:b7:9a:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:29 2025 by rpki-client