Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: 7v/c3qiDRwoX9u5jANpHgRbmFc+ps6MlKMoK3azdTlo=
Subject key identifier: 51:CA:B7:31:0B:CA:87:27:DB:A2:18:F9:CC:90:96:41:37:34:0D:43
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 0197BEFF39C6D86AFD2FF55290E229F17B0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 15BB
Signing time: Mon 30 Jun 2025 04:01:26 +0000
Manifest this update: Mon 30 Jun 2025 04:01:26 +0000
Manifest next update: Tue 01 Jul 2025 04:01:26 +0000
Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: 1SZX9J9IC8EJTihi9P3JmUsdd1ghW4KgVBdl8F9rkRw=)
2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 04:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:be:ff:39:c6:d8:6a:fd:2f:f5:52:90:e2:29:f1:7b:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Jun 30 04:01:26 2025 GMT
Not After : Jul 1 04:01:26 2025 GMT
Subject: CN=51cab7310bca8727dba218f9cc90964137340d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6b:ed:71:b4:c6:23:51:56:98:57:1d:86:e3:
05:d8:2d:46:59:3c:f3:71:5c:0e:54:2c:b1:d8:7c:
36:11:80:17:bd:0f:ec:a9:0c:dc:5d:c2:5e:3b:57:
02:3d:6a:20:75:d8:83:6a:ee:66:e1:f0:47:00:f7:
dc:32:df:22:63:34:eb:04:19:56:16:8c:96:75:be:
6d:83:2e:85:4b:13:cf:83:b8:c7:b9:b0:0b:fb:79:
9b:d9:5e:4e:a4:d4:13:cc:94:3c:63:70:0f:2a:99:
a9:31:57:62:ce:b8:75:67:6e:8d:81:e3:f5:44:ef:
a0:ac:8b:6a:a7:d3:60:f2:9b:e7:ef:83:7b:d8:4e:
34:d2:ea:c2:bd:05:0e:46:c3:ab:78:43:6f:27:ea:
31:12:06:36:6e:c8:3a:d7:e4:13:4f:6b:14:15:5d:
78:77:bd:87:6e:80:4e:e3:3c:62:14:c7:64:3d:c8:
57:c1:c2:22:4a:70:8a:81:cf:33:b9:c3:c7:70:31:
93:c8:4c:ab:ea:f9:95:f9:77:d7:b0:35:2b:c4:25:
33:94:90:70:e6:9f:24:d6:74:87:2f:e3:f6:92:71:
53:7a:de:98:27:b6:78:22:9a:66:2b:cd:47:52:82:
d7:dc:e2:d6:07:cf:23:1c:2d:59:07:ee:5a:d7:77:
97:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CA:B7:31:0B:CA:87:27:DB:A2:18:F9:CC:90:96:41:37:34:0D:43
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:da:83:cf:ad:f9:03:ea:55:cc:6f:ac:d8:81:f5:9d:5a:eb:
2f:67:d8:6e:42:b7:93:87:60:0d:46:8b:eb:a0:dd:a3:0a:2e:
d9:1c:b0:5f:0d:c1:ae:38:5b:7d:68:35:20:ab:b3:a8:7f:cd:
fe:35:67:7f:59:91:1b:3e:63:a8:bc:fb:48:79:27:bf:14:34:
c1:95:a0:38:d9:0b:0e:3a:83:89:fb:46:df:6f:31:a1:95:3a:
2c:98:07:0e:d0:20:a0:a5:77:ff:76:53:f6:30:c3:dc:c0:b0:
bf:aa:c1:e0:c8:7e:22:5c:c4:2c:79:92:c3:c4:06:18:01:e1:
6f:f1:89:9c:4c:25:e4:d2:90:e9:5f:6c:88:e2:8a:df:76:08:
28:0f:99:e5:cc:61:bd:74:29:0b:09:61:c3:85:23:76:cd:4e:
1b:8b:bc:b8:e0:10:ff:23:05:ca:08:ef:9f:1f:25:5f:53:7e:
bd:58:11:b7:50:66:a7:b6:d8:7f:6c:00:0a:b6:cb:a2:21:37:
ca:8f:ff:c1:f6:8d:07:de:ce:e8:c5:30:85:39:db:e9:25:b5:
76:42:82:26:8b:2e:6f:b5:a8:45:3a:91:19:95:48:17:04:02:
b6:13:6b:de:2b:d8:a3:ee:8c:61:09:e3:b6:c4:45:a9:cc:e3:
be:ee:99:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 13:32:31 2025 by rpki-client