Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json)
Hash identifier: 7jfh067fi/JYIB5BOCsH/zL75QzrrTj9ji3hI/+MJO8=
Subject key identifier: DB:3F:9B:96:90:A9:5D:38:C0:CA:A5:D4:4B:AE:B4:BC:C2:62:7C:73
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 0197B74548CBF6FB5AD29696A45BE8B9F621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
Manifest number: 0699
Signing time: Sat 28 Jun 2025 16:01:00 +0000
Manifest this update: Sat 28 Jun 2025 16:01:00 +0000
Manifest next update: Sun 29 Jun 2025 16:01:00 +0000
Files and hashes: 1: 6BgZvuvQdTTnHkpFXfURizE8XGQ.roa (hash: 78Xx7tAnFjhWDtWYiSHC9JJs2O6w1we6/J46orAWVbc=)
2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: er3nxeZLFc3M2i+e7no89OSTx/c02eXvm0mzjMTQLN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:48:cb:f6:fb:5a:d2:96:96:a4:5b:e8:b9:f6:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Jun 28 16:01:00 2025 GMT
Not After : Jun 29 16:01:00 2025 GMT
Subject: CN=db3f9b9690a95d38c0caa5d44baeb4bcc2627c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0c:1a:ac:47:5d:d9:0c:48:20:7b:0a:28:1a:
ea:ed:09:69:a8:1d:29:b8:13:9a:09:1d:93:05:6d:
e4:76:9f:d8:15:ad:cf:67:eb:fc:9d:55:4d:80:25:
6b:4c:e8:3d:5b:72:f8:13:38:e2:78:73:7f:28:72:
f5:9f:df:8a:d1:33:0a:a5:10:91:5d:86:25:0b:94:
20:62:d3:39:46:4f:24:dc:b0:cf:a8:94:2e:56:db:
70:19:6f:46:71:2e:7a:f7:eb:e3:00:21:80:35:a7:
1c:c6:ab:db:55:d8:78:32:08:04:63:fb:13:7e:43:
5d:6d:0f:21:83:9e:11:18:73:e6:64:5c:15:a8:7c:
73:53:93:db:3f:94:01:c5:bb:5e:0d:c3:67:b7:d4:
06:6f:d6:8d:34:88:2d:2a:88:4d:f4:72:31:cf:23:
03:7e:11:e6:e8:8f:86:77:2b:eb:b6:f7:14:c6:b7:
04:2e:af:9e:e9:0f:8e:e0:39:78:4f:62:4d:f8:31:
b4:7a:19:81:13:08:56:8e:06:85:60:4c:87:e7:e1:
9f:83:44:59:3f:5a:af:9e:00:71:71:11:1a:ab:ca:
14:73:b0:38:08:a4:85:1e:10:8f:8c:a8:76:70:eb:
d9:e8:72:f1:a8:29:4a:a3:3b:ef:86:c8:2b:33:5e:
6c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3F:9B:96:90:A9:5D:38:C0:CA:A5:D4:4B:AE:B4:BC:C2:62:7C:73
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:e2:c0:80:67:9d:0d:ab:b9:26:91:96:5f:db:a3:a3:bd:4f:
7f:fc:a6:e7:5d:33:e2:d2:a2:e9:17:6b:39:19:33:13:f4:1b:
2b:35:d5:14:a4:42:1f:77:07:f1:98:c6:7e:ba:49:10:28:07:
ad:5f:9d:20:53:56:9e:5f:32:bd:90:3a:b4:39:51:9b:41:75:
92:23:c8:50:73:2c:60:4a:6c:6f:d8:26:a2:fe:bf:f9:b2:01:
49:91:4a:cf:d4:41:b3:3c:7a:72:e5:7d:cd:f7:ea:d3:41:9d:
e0:1a:dc:eb:f7:85:d7:88:34:f8:63:49:0d:36:53:b7:95:25:
2b:71:27:64:41:93:be:c4:82:15:87:ae:51:25:63:6f:63:12:
65:19:89:db:7f:15:47:e0:a0:60:dc:80:54:ff:d9:61:77:0e:
7b:3a:30:27:92:65:38:b9:d6:c8:f2:1f:29:ca:41:af:79:c4:
7a:38:33:70:2e:cc:5b:a6:11:c1:63:9d:68:cc:f4:95:0d:fd:
0f:a9:06:31:ec:0f:c2:11:64:fa:b5:ee:fd:29:a7:b1:14:99:
b2:1b:d4:66:af:72:c7:d4:35:f8:eb:75:5b:1f:8b:6f:61:27:
50:13:4f:4f:12:4d:20:df:37:85:24:7b:4f:87:73:4e:b2:a1:
66:0c:d5:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:29:41 2025 by rpki-client