Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
File: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft (raw, json)
Hash identifier: Cnu/bDFzJkWPvSaLV7usK4NXqbdfglRf945ac2Zu1aw=
Subject key identifier: CF:07:11:B2:19:54:E7:08:27:F2:C1:1A:B9:CC:4C:0F:26:0A:4B:13
Authority key identifier: 0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
Certificate issuer: /CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Certificate serial: 0197B6A1ACE21F8FA09B9F1918CD218AD384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
Manifest number: 09A2
Signing time: Sat 28 Jun 2025 13:02:18 +0000
Manifest this update: Sat 28 Jun 2025 13:02:18 +0000
Manifest next update: Sun 29 Jun 2025 13:02:18 +0000
Files and hashes: 1: 7XdSGfevcJJsevy7fOceWvja7nc.roa (hash: 738FMMf7Atyvq/JMYg2GIhaCbgWHQKUbxrDxkyANCA8=)
2: De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl (hash: PR7cPRFKgjSp1tQznNib7xx+q3IAWUmEveEP9JNBcss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:ac:e2:1f:8f:a0:9b:9f:19:18:cd:21:8a:d3:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ded66d2c5a493a09534357e5ca26f03d1a4ddd4
Validity
Not Before: Jun 28 13:02:18 2025 GMT
Not After : Jun 29 13:02:18 2025 GMT
Subject: CN=cf0711b21954e70827f2c11ab9cc4c0f260a4b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:93:62:a6:73:89:b9:4e:5b:9e:88:c5:97:78:
e0:59:44:d9:67:c8:94:3d:2e:b5:4e:20:d9:d8:e9:
46:d1:22:aa:e8:9e:b9:30:d5:50:d1:0b:2a:8a:76:
7f:42:5c:52:f8:0d:9a:24:63:ce:4c:45:a1:96:4b:
4f:11:29:c1:96:64:67:74:10:e0:0f:d2:a3:53:d0:
69:3e:10:4c:70:a8:45:d9:a6:1a:f3:e0:93:25:7b:
07:83:03:c9:3d:37:05:53:49:e6:86:d4:5b:0e:c2:
47:99:93:34:82:b9:51:fb:20:70:ca:db:87:84:36:
d8:a6:16:ba:22:12:5e:1d:8b:16:17:a9:11:e8:88:
09:2e:aa:7b:bb:bc:08:e3:89:86:c7:32:db:cb:4c:
a8:34:ec:be:bd:93:d8:61:20:02:a8:a4:03:4b:ed:
70:c3:da:a3:bf:38:21:7e:4c:9b:9b:51:58:ca:ff:
07:3f:8a:6f:4d:bc:39:7e:47:d0:03:ca:d7:01:3c:
d6:ce:7e:b8:f5:9c:5b:29:39:bb:8b:0d:49:08:bd:
f0:ef:18:99:b7:11:29:a4:40:9e:ab:7d:e1:e8:b3:
01:03:0f:fa:62:ba:53:ef:7d:62:e5:51:22:dd:cc:
50:ab:5d:b6:3a:43:0f:7a:10:71:69:55:70:e3:59:
48:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:07:11:B2:19:54:E7:08:27:F2:C1:1A:B9:CC:4C:0F:26:0A:4B:13
X509v3 Authority Key Identifier:
keyid:0D:ED:66:D2:C5:A4:93:A0:95:34:35:7E:5C:A2:6F:03:D1:A4:DD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d9cc5b-f868-43fe-9c5c-37b96ffba76a/1/De1m0sWkk6CVNDV-XKJvA9Gk3dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:38:1e:c5:93:16:32:69:a3:db:20:85:a9:99:e5:e6:2c:3e:
75:55:e6:c5:3d:5f:95:ea:9d:62:62:aa:4b:d5:fc:05:00:a4:
0b:41:ea:60:79:c5:a5:f5:9f:a6:11:93:df:f7:f7:5d:11:b1:
dd:00:da:6b:d2:38:51:a1:1e:f5:20:be:07:4d:66:69:27:d7:
0a:03:2a:45:e6:52:f4:43:7c:31:f3:21:4e:5c:e1:cd:19:b6:
76:9d:25:03:70:49:34:2c:6a:d8:71:d0:36:12:4a:c8:18:f7:
9a:05:64:8e:e1:5a:84:6c:1c:2d:58:41:4d:68:c5:af:33:bb:
27:e2:46:b3:0e:20:54:b8:47:49:07:fc:62:a6:5b:e2:61:aa:
f4:2e:c1:2a:8e:5e:51:71:58:1a:ff:7b:fd:f1:13:7b:36:29:
1f:18:90:9a:6e:ea:5c:97:c6:51:1f:63:83:5d:54:4b:61:32:
8e:8a:de:e5:d5:3d:94:1c:8a:7f:2b:79:c2:b7:92:21:6b:59:
a8:48:ab:bc:81:01:8e:2f:e6:6e:e4:ed:c7:5f:43:63:9f:6c:
60:1c:f1:4b:36:d9:d4:b4:90:f2:33:66:bb:58:97:13:cf:81:
48:79:c7:26:de:67:84:e5:95:87:61:e2:13:9c:1d:48:69:08:
7a:06:03:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:19:28 2025 by rpki-client