Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: Rmm7THS6fjt5pYwvz9gjSEH++xHpatuN3CfUpaJfizE=
Subject key identifier: EA:2F:5D:DE:7C:63:FC:A9:98:DB:56:4C:2C:26:92:F2:1C:27:BA:8E
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 0197B77C97A1BEE883F6A8CDD33F29FE0540
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 0F7D
Signing time: Sat 28 Jun 2025 17:01:25 +0000
Manifest this update: Sat 28 Jun 2025 17:01:25 +0000
Manifest next update: Sun 29 Jun 2025 17:01:25 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: Eq5lWuXjhya8TsruUruZ/Akj14wrxc+FmZ2yx5S8UVA=)
2: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (hash: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:97:a1:be:e8:83:f6:a8:cd:d3:3f:29:fe:05:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Jun 28 17:01:25 2025 GMT
Not After : Jun 29 17:01:25 2025 GMT
Subject: CN=ea2f5dde7c63fca998db564c2c2692f21c27ba8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9c:bb:e8:46:20:f3:ca:ca:75:fe:2d:40:4f:
0f:20:ca:d1:64:3d:e3:ae:da:e1:e7:10:72:b7:4b:
e4:c8:ec:b3:ff:54:73:d4:4c:5f:b7:9d:c1:ba:d4:
aa:16:e1:9a:8c:90:66:49:4a:29:80:74:84:8c:73:
18:91:99:1b:83:6c:a4:94:2d:83:98:c3:25:4e:40:
1c:0c:61:57:ff:a6:1b:47:d0:a8:f1:61:3c:9e:e9:
8e:b7:65:3f:38:8e:b7:c6:36:82:9c:44:c9:55:13:
c7:1c:34:5d:ba:59:4e:4c:4b:45:9d:b9:7b:ea:70:
84:ed:8e:5a:fb:b0:2c:bd:8d:ea:67:78:86:32:d0:
2a:07:9c:b9:ca:11:80:8e:7a:8f:84:8e:75:2a:97:
fa:5a:8d:53:d5:8e:30:5c:bd:f7:2e:94:98:1a:e4:
ff:8b:a8:9c:e4:94:ee:15:2e:c1:bb:21:e2:b3:da:
e6:27:92:3d:61:70:66:ec:84:a5:ff:2d:cc:2d:7b:
bd:79:e1:83:70:25:d5:ce:f2:c2:b0:72:8f:d1:c5:
75:97:0f:9a:37:87:62:6d:02:30:03:61:52:ec:d3:
20:a0:62:34:5a:f1:6b:eb:dd:62:ac:91:c0:bc:e2:
63:6d:84:ba:60:97:b3:97:a1:bc:80:f4:46:73:ee:
cc:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:2F:5D:DE:7C:63:FC:A9:98:DB:56:4C:2C:26:92:F2:1C:27:BA:8E
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:45:fb:18:33:25:56:04:af:b1:9f:2d:99:13:86:0f:ba:2b:
96:66:3a:d9:28:64:71:d6:f1:66:d6:6e:d1:4f:ce:1a:9c:4b:
c2:cd:bc:00:c6:0c:af:d8:d2:bc:cc:a6:20:ba:6f:e4:e8:ef:
6c:df:b6:f6:b2:08:d7:30:44:2d:3f:e6:64:da:cd:fb:79:09:
a3:23:38:76:f0:02:43:d1:78:12:b5:fa:79:c6:7f:ad:b1:84:
cc:c5:5c:40:82:87:f7:af:c0:47:d3:e3:52:0e:33:31:2b:11:
a8:7d:4b:5a:53:7e:9a:90:6d:2e:54:a8:bb:91:57:4c:80:e8:
22:5a:c2:f0:ff:28:a5:d0:2c:4e:a6:b4:61:3d:c7:2b:a4:e2:
f6:d9:bc:55:5e:2a:de:5e:07:49:54:ff:e2:06:6a:48:81:16:
0e:84:e1:99:49:01:41:31:5c:03:e2:8a:23:48:8f:2e:62:ee:
6c:d3:3f:dc:4f:0d:b9:68:3f:0f:b2:e0:ab:d4:85:33:6f:7c:
26:29:0f:82:8f:f8:6d:3d:9d:17:75:da:f1:02:40:96:63:5b:
54:c8:9e:aa:27:94:0a:28:38:a7:b5:82:44:03:c7:d3:06:27:
24:42:f5:e9:02:98:fa:0c:f0:85:2f:23:83:08:86:c1:b0:f6:
c9:9c:ee:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:41 2025 by rpki-client