Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
File: 1XgxwfXmACVCvOut7yQSithG6vk.mft (raw, json)
Hash identifier: e3sQhrEel4lOp6oiqACM9I7at+4l0+yCv4C2dq6qts8=
Subject key identifier: DC:07:D6:6E:04:CA:73:89:07:90:19:1D:5D:17:A0:0F:79:8C:0B:3B
Authority key identifier: D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
Certificate issuer: /CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Certificate serial: 0197B7452CCF4594BF2021E972DFA517B4B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
Manifest number: 75
Signing time: Sat 28 Jun 2025 16:00:53 +0000
Manifest this update: Sat 28 Jun 2025 16:00:53 +0000
Manifest next update: Sun 29 Jun 2025 16:00:53 +0000
Files and hashes: 1: 1XgxwfXmACVCvOut7yQSithG6vk.crl (hash: rALKVZTKszupwvJTz1v6gJdIOcKzOBXM7xVWBKWztzg=)
2: GLKnJ3LTIabZeoGVzMCaJjFByNY.roa (hash: +WAt95sFiKCWSXPNQeYrpYryf9q0NJaDtl61QpO/UCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:2c:cf:45:94:bf:20:21:e9:72:df:a5:17:b4:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Validity
Not Before: Jun 28 16:00:53 2025 GMT
Not After : Jun 29 16:00:53 2025 GMT
Subject: CN=dc07d66e04ca73890790191d5d17a00f798c0b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:44:68:a6:05:36:8d:6f:83:95:a6:e5:41:
32:1e:7d:6a:cb:a6:4e:b4:3d:9c:6f:13:c5:d3:94:
a1:6a:ed:09:f0:a9:99:a4:ef:c9:cc:83:d0:09:40:
b2:cd:68:0d:67:07:74:93:9b:81:9c:82:90:e0:df:
1b:f3:0b:4e:c3:c4:30:52:d7:33:7a:c9:bf:e6:74:
9b:9d:8c:8d:ea:64:5d:da:61:43:6a:79:e9:cd:be:
af:b2:11:4b:a3:d4:b8:26:b6:ba:e0:9b:24:0b:c6:
91:37:cc:ca:e4:7f:81:6c:f3:77:36:9b:44:2f:9d:
e9:55:94:cb:40:b7:e9:6b:f8:d1:1f:3a:c9:2e:15:
c0:e2:45:be:cd:12:1e:52:5b:60:b5:ce:6a:39:02:
20:d4:c7:eb:43:e9:4d:0f:51:66:7a:1f:25:c7:6c:
78:fc:0c:26:f5:40:ce:89:b6:f9:d0:be:44:03:70:
01:a4:a4:44:7a:eb:ee:60:02:ff:1c:4e:e3:51:d5:
b2:80:d2:89:f9:b5:dd:b0:d8:07:de:74:ee:a8:42:
8d:ee:12:26:8f:8d:d7:2b:ff:ee:31:d4:12:91:5a:
69:1a:69:10:26:96:39:93:7f:22:b0:89:a0:51:87:
e1:19:f2:92:b5:0a:db:5d:b7:5f:57:0a:39:fd:f6:
7a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:07:D6:6E:04:CA:73:89:07:90:19:1D:5D:17:A0:0F:79:8C:0B:3B
X509v3 Authority Key Identifier:
keyid:D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:ee:04:b1:e9:cf:c4:38:4b:52:8c:97:17:74:48:09:17:97:
23:7e:ef:c2:d8:5d:f5:86:c1:06:d3:bb:32:2e:64:fb:09:a0:
61:f3:15:85:f7:9c:2e:32:83:1a:8d:84:b8:34:d2:5d:15:a9:
fc:5f:24:44:55:da:b4:5e:a5:f8:2a:72:ea:5e:0b:a4:66:29:
fe:b8:bb:84:9a:98:66:0b:1c:ee:a9:44:d5:d4:e1:e0:d0:28:
ea:bc:14:39:a9:0e:4a:b2:45:34:5d:76:05:02:8c:b7:33:13:
87:8b:6e:33:75:01:b4:c3:1c:98:8a:9d:b5:ce:0d:62:ae:c1:
74:55:e6:b1:80:b9:d4:71:b3:01:f8:77:ed:9c:53:20:fa:13:
19:b6:cd:92:93:22:72:7e:bf:d9:d3:d9:31:92:8f:56:af:71:
fb:29:9a:d0:20:7b:38:e1:d8:cf:f0:bd:86:c6:be:25:b8:41:
67:ab:a6:e1:94:13:e0:b9:77:ff:36:a9:8e:fd:9f:2c:3f:25:
00:e5:41:92:d0:09:ba:7d:e1:60:6d:1e:2a:1c:35:d4:41:2d:
5a:56:fe:8d:2c:28:28:f5:01:25:82:15:16:a8:c8:7e:9d:ba:
a6:11:8a:bf:e6:ce:60:71:14:75:51:2a:11:c9:d8:ce:a6:bd:
30:66:12:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:47:42 2025 by rpki-client