Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: T5zPEphlJacM/eS/o4xfmZLCpRUht7KuQXXxm6hvrUM=
Subject key identifier: 08:77:97:92:0C:0D:22:66:E6:D0:C1:F6:DA:E0:85:F0:BB:C0:B4:09
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 0197B70F3CD86B7D54BD0BBCE348437974C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 0288
Signing time: Sat 28 Jun 2025 15:01:58 +0000
Manifest this update: Sat 28 Jun 2025 15:01:58 +0000
Manifest next update: Sun 29 Jun 2025 15:01:58 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: YZlUgSg4mHPR/NKPuIv10J1lXhr/mF6JVKid8hi86Bg=)
2: zto4NeQB1_I3QORAJXQ-oNO5db0.roa (hash: 4X/MAtxcgqfp8hiwe6Iai+qfAWiiXuU0LC7+GPHFtZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:3c:d8:6b:7d:54:bd:0b:bc:e3:48:43:79:74:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: Jun 28 15:01:58 2025 GMT
Not After : Jun 29 15:01:58 2025 GMT
Subject: CN=087797920c0d2266e6d0c1f6dae085f0bbc0b409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:19:7d:a9:e9:79:0e:e3:c6:95:99:d6:67:cb:
8e:b5:75:c8:31:dd:b1:4d:c6:83:74:c3:30:19:17:
7d:9c:4f:a4:45:c1:94:a6:59:2d:ee:7a:37:8d:bc:
90:6e:b9:83:31:da:ec:3b:86:8f:b4:58:f6:e4:d6:
c5:31:b7:75:36:29:f5:a5:97:0b:47:a2:86:84:e9:
5e:89:7b:dd:b7:27:aa:1a:a8:b7:13:66:d7:c7:da:
b0:ff:16:b3:3d:8b:7b:29:ef:cc:84:ce:db:99:0a:
e9:36:43:5f:e1:93:89:1b:00:1b:8b:bd:97:1b:27:
f3:d6:07:f7:99:f6:65:c4:02:7b:5c:f8:75:ee:c2:
a1:18:01:55:33:b2:e6:f0:f0:74:cf:91:8f:ef:29:
ef:dc:44:17:c0:14:79:a8:8a:3a:c2:fd:ff:e0:4f:
4a:95:a1:af:fe:97:06:23:a0:e1:00:3c:a3:7a:29:
7b:ae:d2:33:20:48:e7:d4:68:71:9f:a6:99:f9:64:
16:20:64:d5:84:61:8d:41:6d:a0:3c:1e:a0:f1:8a:
a4:41:6f:4c:11:3e:24:11:1b:16:ea:8d:c1:59:e5:
fb:88:2b:2a:1c:97:2e:f0:8c:f9:76:de:d6:89:03:
d2:74:95:55:14:88:34:b4:15:84:d1:1e:11:0a:25:
01:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:77:97:92:0C:0D:22:66:E6:D0:C1:F6:DA:E0:85:F0:BB:C0:B4:09
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:6f:72:f8:68:6b:77:fe:10:10:db:19:8e:14:4e:bd:01:f5:
08:75:d6:52:7d:d2:d0:7e:51:07:c8:8c:34:e5:19:ad:90:6b:
eb:08:ba:a2:78:2a:ac:8f:55:0e:9d:fe:a1:55:26:9a:d6:d1:
2c:b1:db:11:ec:e1:8f:ea:4d:25:44:2c:2d:66:26:ae:b2:47:
3c:e7:d3:f8:94:0a:73:96:60:f7:67:8e:f5:32:95:b2:b3:80:
f0:b4:24:d9:ab:18:03:39:ba:b3:98:98:34:59:e3:07:fb:3f:
57:a9:7c:5e:2a:ab:5d:61:0d:aa:66:d1:81:d4:64:1f:cf:01:
57:e0:5a:dd:d5:ed:e0:70:70:a3:4c:80:61:0b:ad:d1:6e:b2:
d3:b7:c9:f1:8e:29:4f:ce:c8:07:eb:2a:8d:eb:a8:3a:94:00:
f8:c9:04:0b:96:5f:8e:56:3d:24:bd:e2:90:2c:41:d3:09:7d:
8e:fc:42:8f:2d:5c:21:0f:49:34:b2:7d:6d:d4:fb:b2:50:3a:
ba:9e:95:27:b2:47:0d:6a:4e:4a:c9:06:54:6e:fb:3d:7b:c0:
51:34:49:53:fd:c1:a5:05:53:ac:ad:26:f9:0d:ed:fc:b7:f0:
61:c1:9d:1f:f2:46:35:20:23:16:e1:40:aa:02:c4:4b:e8:80:
56:60:91:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:52 2025 by rpki-client