Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
File: wb80sZClHOUwAleRGvMEBPSVH7Y.mft (raw, json)
Hash identifier: ByrJ9Iq1FSDj+Z9OpJqdb5kgdxztnFGevXK7RIqTFI4=
Subject key identifier: 1D:61:88:63:DD:08:5F:A4:6E:0C:B8:9C:F4:91:2A:D4:B0:5D:8B:52
Authority key identifier: C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
Certificate issuer: /CN=c1bf34b190a51ce5300257911af30404f4951fb6
Certificate serial: 0197B6A0FB3CBA9C3942D38C7E0123FAF6F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 13:01:32 +0000
Manifest this update: Sat 28 Jun 2025 13:01:32 +0000
Manifest next update: Sun 29 Jun 2025 13:01:32 +0000
Files and hashes: 1: 0tyV27ZaRKIuc5h8kTDsBiv4BZI.roa (hash: 1dyOdZnQpGVWWsvnKswgEprRwbXy0vsePve+ulQremU=)
2: wb80sZClHOUwAleRGvMEBPSVH7Y.crl (hash: IIMI1Yu31BeeR5I2n8hWbpl+ctC4xPKh2eL2JzMxF6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:fb:3c:ba:9c:39:42:d3:8c:7e:01:23:fa:f6:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf34b190a51ce5300257911af30404f4951fb6
Validity
Not Before: Jun 28 13:01:32 2025 GMT
Not After : Jun 29 13:01:32 2025 GMT
Subject: CN=1d618863dd085fa46e0cb89cf4912ad4b05d8b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:d5:d4:0e:2c:bf:87:9d:cf:76:79:b6:3d:
a2:6c:19:75:78:8c:33:5b:32:8c:7b:4e:94:5d:a0:
bd:41:36:f9:8b:ef:8a:e0:ea:2c:06:47:e5:f2:66:
1f:d2:c5:36:7c:b0:45:97:87:1e:cb:71:13:c0:c1:
62:64:76:44:a8:05:9d:34:68:f5:60:4f:ee:06:ab:
80:9c:1c:f7:fd:fe:d4:26:50:e7:12:59:2c:63:7e:
40:0f:f7:3b:d8:54:1b:2c:bf:7a:f2:a7:c8:63:db:
69:46:b4:92:46:0c:b8:e1:e4:e7:aa:4f:83:7d:81:
3c:6e:1b:1b:46:60:03:24:8c:19:04:aa:d0:66:8b:
b0:be:a0:8b:7f:c8:de:63:b0:c4:14:48:38:f1:a8:
ca:b6:1f:c6:a8:c8:28:db:c0:80:92:74:bb:d4:3b:
aa:20:ae:19:9e:1f:12:dc:e2:23:f8:ee:a6:5a:a8:
de:b8:88:99:1d:06:b1:0e:39:8e:77:ce:0f:d4:f3:
5b:6e:a7:0e:23:d2:72:21:b9:f2:37:3a:4e:07:1c:
5a:c3:c2:a3:16:4a:2d:ca:11:2b:be:6b:42:42:dd:
34:d3:1d:c0:ae:31:f0:ab:33:e2:5a:7b:8a:b6:a6:
8f:14:29:32:ea:dd:82:3d:11:a4:af:c9:34:39:f5:
61:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:61:88:63:DD:08:5F:A4:6E:0C:B8:9C:F4:91:2A:D4:B0:5D:8B:52
X509v3 Authority Key Identifier:
keyid:C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:39:3f:bc:b0:62:ea:33:70:ae:7f:da:0b:20:a9:bd:56:92:
a9:14:b3:80:5f:cc:ac:b4:31:6b:52:2d:d3:f5:8f:fa:07:f8:
af:ce:e9:b5:b3:86:c1:43:70:c7:9b:7e:d7:41:d0:d6:88:1e:
c2:50:d5:e9:d1:04:2f:78:05:f5:cf:d3:3e:63:ca:51:ae:77:
15:8b:86:e4:9b:f9:66:44:09:50:4b:34:ff:c9:05:9e:89:60:
cb:84:31:3e:4e:5a:f8:70:4c:c8:04:30:01:5f:d4:01:63:b8:
f4:f6:1c:cd:a2:5e:17:a1:26:ff:bb:fa:b9:8c:20:03:cc:94:
a4:a5:31:cd:7d:8b:ef:61:12:29:51:62:9c:06:19:84:06:1e:
10:55:27:c7:ee:c8:9e:91:27:ce:7a:34:e3:2d:fd:80:3e:40:
5f:fc:a2:f9:45:f1:17:6f:89:64:2c:53:cb:29:fc:df:3a:9e:
ee:e4:b5:83:dc:6f:6a:d7:22:bd:a7:89:c6:45:ce:0e:f7:88:
17:d6:46:27:a9:b9:62:f2:d5:34:5f:59:2a:2f:dd:ac:cc:8f:
d5:ad:15:d6:77:09:1f:42:c2:c6:73:c2:30:26:e0:95:d0:d3:
e1:f0:d1:e9:6f:5b:3a:55:60:a5:ae:b5:95:5c:6e:a2:9c:3c:
f9:cf:f5:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:26:55 2025 by rpki-client