Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
File: 28sc89PzzcNCb7SfCgwz3ATIaBw.mft (raw, json)
Hash identifier: lmwqrK1lVk7wCnbLKqZEeO2n9vb5aHuxzGWHD/0c4bk=
Subject key identifier: 03:B0:25:89:3D:05:5A:00:15:86:1A:F8:BE:BF:A3:E6:A9:AD:8E:44
Authority key identifier: DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
Certificate issuer: /CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Certificate serial: 0197B7454331CE65C528922B4573E753891D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
Manifest number: 0F4B
Signing time: Sat 28 Jun 2025 16:00:59 +0000
Manifest this update: Sat 28 Jun 2025 16:00:59 +0000
Manifest next update: Sun 29 Jun 2025 16:00:59 +0000
Files and hashes: 1: 28sc89PzzcNCb7SfCgwz3ATIaBw.crl (hash: GrnrZ4TklzyrgOImAwSmmqeL8jNA29erUli8qKogQvI=)
2: I5ms-9-HDQyJVXC11lx_-uEpynE.roa (hash: +pNOsJjPZEu3zURh4NPSrLLV4Ki6TCXOgrQW5jhS4rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:43:31:ce:65:c5:28:92:2b:45:73:e7:53:89:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Validity
Not Before: Jun 28 16:00:59 2025 GMT
Not After : Jun 29 16:00:59 2025 GMT
Subject: CN=03b025893d055a0015861af8bebfa3e6a9ad8e44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4f:19:42:cc:c1:5a:65:0b:3b:ad:ad:6b:d9:
4f:be:b5:14:58:72:7f:7f:cd:09:d1:7a:08:98:0b:
18:b1:d7:94:50:3c:3b:77:e3:28:4c:49:3a:63:78:
56:e0:61:c6:b9:b3:22:7a:6f:02:dd:21:76:fb:55:
5b:32:20:a7:95:20:cd:25:7e:e9:9f:36:f1:c1:28:
e0:c4:18:02:6b:a8:17:21:7f:18:e6:82:c8:e2:0e:
e3:6e:27:5a:84:ae:fe:07:b0:f4:c9:2e:ed:f9:a6:
6e:e5:bb:e4:c8:7c:25:e2:4b:7b:d7:2a:f5:7b:cc:
5f:ff:61:13:92:4d:c5:30:85:6e:0c:b2:2b:11:f2:
39:1e:b0:cf:70:43:5d:eb:fc:0b:c1:db:cf:b1:a4:
77:2f:c0:ce:bf:50:f4:7a:5a:9e:78:bb:58:a1:9e:
e3:22:e6:9f:ca:9f:a0:fd:fa:25:2d:39:5a:ef:64:
94:f5:ff:4d:a3:49:eb:80:99:7f:d8:52:23:e9:39:
9d:ca:8f:90:46:43:bb:20:ac:1e:7c:2c:41:ce:7c:
5c:41:1d:6e:ad:1b:6b:2d:7e:2f:e4:83:e1:44:8d:
db:34:4f:fa:8c:aa:35:b6:a7:6b:0b:b7:01:68:78:
b2:03:67:e6:81:fa:49:78:00:0a:f1:7d:94:20:80:
e5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B0:25:89:3D:05:5A:00:15:86:1A:F8:BE:BF:A3:E6:A9:AD:8E:44
X509v3 Authority Key Identifier:
keyid:DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:71:21:a6:dc:e1:ae:e7:4e:94:2c:82:79:7d:45:b5:ad:d0:
49:34:89:f1:1f:7f:dd:e3:a3:4b:7d:e5:e7:5e:6f:d6:b0:ec:
a0:8b:23:41:bc:83:98:50:5c:2e:62:53:c8:b1:bb:ed:4d:a4:
5c:0b:81:fb:26:17:f8:a9:44:b5:a2:9c:0b:c2:80:9a:64:ae:
b0:12:05:58:ce:c6:9b:09:c1:23:6e:0f:92:7c:3f:f2:77:29:
4d:a7:7e:ca:57:ea:06:c3:e2:30:d2:60:e8:12:00:eb:77:b0:
fe:4c:4a:92:07:48:9c:c5:c5:f1:ee:8a:7d:11:26:26:77:b3:
49:2a:7a:ff:42:17:7e:13:d0:d7:9d:d1:d8:cd:9f:19:4e:03:
15:45:b8:ed:9b:6f:36:b2:4d:a8:e8:e6:09:87:86:b0:21:1c:
56:5f:c6:4b:67:26:22:b1:ae:c5:7e:d4:c9:f1:cd:05:94:23:
02:80:2c:15:ee:4a:ee:1e:85:c9:0f:50:3a:44:63:8b:14:c5:
54:86:be:d3:12:d8:f6:03:31:da:c0:b1:30:f9:d8:c6:47:c7:
09:4c:3d:0e:c5:ec:61:3a:ff:ea:85:14:ec:e0:66:94:29:b5:
57:13:08:78:8f:e3:43:f3:a2:94:7c:cb:fc:79:7f:02:0d:9d:
a6:51:25:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:16:08 2025 by rpki-client