Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
File: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft (raw, json)
Hash identifier: QGCN5CkC3mgoHTAXv/pM9e7bO9Upjoe/Oyjc7DkPPQA=
Subject key identifier: 3E:DC:F3:73:B6:49:C3:7F:DC:80:49:2F:E6:F8:F3:FF:F0:00:21:6A
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 0197B6D7A0EF7A0A692210E94ED499E1AFD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
Manifest number: 10DE
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl (hash: S1xkB41b+5R0u4n7JBos+tabMCVIlUfhqySRJ0ARYPA=)
2: SAF1KbjuvZdI9BSVM80ADIZ6zn0.roa (hash: wfp9L/QbKQTs8wDMXGcfyHh9p8y5+4/kclZuUrsUs5I=)
3: jOqd2wJBuE3wT3pRawlL9knhjV8.roa (hash: pvOd4te8ScnLLx0JwvYK3xwrNCWYubvf6Z+FLbM/DCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a0:ef:7a:0a:69:22:10:e9:4e:d4:99:e1:af:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=3edcf373b649c37fdc80492fe6f8f3fff000216a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2e:b2:fb:85:32:16:a5:f4:af:fd:e2:e9:49:
e6:ab:b2:9e:69:1b:fa:a4:76:4a:9d:a7:a2:6e:ff:
84:74:d3:c1:65:c4:c0:c3:00:ac:29:f1:0e:94:a6:
09:f2:cc:da:10:a7:8f:45:53:d1:98:d3:1c:e6:99:
53:fc:65:9b:b3:06:e8:81:fc:43:d2:da:59:6c:43:
fe:00:fb:08:db:44:ff:75:f7:6e:9e:6d:7f:16:26:
d1:1f:7d:77:f1:4b:a4:b3:dc:35:79:a7:1c:a6:98:
99:4f:be:f2:73:88:44:af:79:44:d9:97:af:33:9a:
80:f6:9a:16:8f:8e:de:ed:a4:16:99:bf:62:dc:39:
f3:7e:5f:df:84:d2:cc:f4:ff:7e:71:34:22:0e:57:
08:ab:a6:7d:65:61:35:7d:b7:10:17:f1:bb:87:8a:
8c:72:96:b2:0d:9a:d2:a8:d6:e0:4f:32:f7:13:cc:
61:61:2f:5e:f9:35:7a:71:19:a6:87:bc:b3:33:48:
16:d0:ac:41:ef:05:7b:91:0f:56:88:96:00:21:12:
cb:15:3c:34:f9:97:5a:db:47:ea:4f:d4:fd:25:74:
b3:cb:1e:06:88:b7:e0:f2:4b:ef:22:e5:06:3b:41:
f8:c0:55:02:2a:77:99:30:bf:10:51:69:9f:96:80:
9d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:DC:F3:73:B6:49:C3:7F:DC:80:49:2F:E6:F8:F3:FF:F0:00:21:6A
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:66:a1:8a:09:4a:19:79:5c:88:be:4c:79:2f:54:0b:7a:93:
dc:69:50:76:a5:b7:41:c3:d0:a1:06:65:c8:42:95:e9:53:65:
fe:98:cd:5c:54:c3:cd:32:2f:13:d3:10:57:94:f8:cd:df:00:
7c:15:e4:93:fc:07:8a:f0:ab:a6:ee:48:5d:d0:b1:77:b9:e7:
9c:54:e3:d6:e1:1b:4f:74:55:98:cc:ca:43:26:5b:54:94:80:
fd:a4:65:c7:4b:53:68:ee:de:55:10:79:9a:e8:2e:0b:dd:51:
59:6a:c1:f1:a9:c2:77:83:5f:28:50:ae:9d:08:86:f8:f1:63:
11:cc:e3:23:4e:f1:c5:d0:5a:76:87:67:7b:07:14:18:1f:01:
84:11:b0:aa:5e:f8:a2:8d:96:0f:4c:48:0b:05:eb:91:d7:ab:
27:28:c0:46:01:71:07:18:07:76:7f:a1:d7:8a:73:d8:3a:15:
08:0c:cc:c9:c8:4e:2a:09:3c:93:f1:76:6e:fd:6a:f2:f1:5a:
c5:68:f3:33:37:c6:54:ff:ba:fe:01:75:66:31:30:9e:7c:72:
e9:fa:f9:a1:30:aa:56:68:9d:cc:16:02:8d:27:08:29:5b:36:
e2:27:2e:ed:91:f0:34:dd:2e:29:7c:8f:aa:90:1d:05:28:a8:
c2:0e:70:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:45:31 2025 by rpki-client