Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
File: 02JOkIx0mP22E1QnU-9Wx1zXBL0.mft (raw, json)
Hash identifier: buvaqDFri7O0qSu7ojOirv9cyFVQVmvJluLa9PhoAqA=
Subject key identifier: 70:D7:EE:D3:8E:37:60:81:0D:4E:59:3F:1D:08:61:AE:9F:81:B7:E4
Authority key identifier: D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
Certificate issuer: /CN=d3624e908c7498fdb613542753ef56c75cd704bd
Certificate serial: 0197B7453F70134B5CD7BEEC330F0F887E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
Manifest number: 09F1
Signing time: Sat 28 Jun 2025 16:00:58 +0000
Manifest this update: Sat 28 Jun 2025 16:00:58 +0000
Manifest next update: Sun 29 Jun 2025 16:00:58 +0000
Files and hashes: 1: 02JOkIx0mP22E1QnU-9Wx1zXBL0.crl (hash: yN/dLZEE7ICMaIP7V4kn7xEI0MkUYxUgre/VDJW68vs=)
2: _l8jrf0myWSyZHEusIZ6cmnQafE.roa (hash: gjseV+JPjv3tCrp8kMrsCJYjL6BjqLfcHlxvbKTgJog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:3f:70:13:4b:5c:d7:be:ec:33:0f:0f:88:7e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3624e908c7498fdb613542753ef56c75cd704bd
Validity
Not Before: Jun 28 16:00:58 2025 GMT
Not After : Jun 29 16:00:58 2025 GMT
Subject: CN=70d7eed38e3760810d4e593f1d0861ae9f81b7e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f8:0a:77:51:a8:72:fb:31:68:97:40:16:1a:
d3:8b:eb:26:e7:ff:75:14:7b:38:6a:7d:a8:3a:04:
bd:ef:0b:62:d7:16:a8:c4:99:ec:ca:58:54:d1:38:
1a:da:85:d1:00:6b:29:95:0b:5e:1b:dc:c8:05:49:
73:53:0d:77:2e:8b:90:b3:8a:7b:6b:e6:e1:fb:2f:
f2:60:98:46:ca:bc:34:33:49:31:ca:56:95:dd:29:
30:bc:2c:0c:dd:ec:cb:d5:87:40:f8:5c:9c:77:e9:
15:61:b3:b7:50:e6:2e:28:29:d8:c5:5b:ac:f2:57:
44:52:c5:cb:7e:26:6f:47:6f:ee:27:bb:b6:85:f8:
a9:04:84:48:93:ba:4a:6b:9f:5e:cc:a0:de:f5:72:
f5:5f:77:ac:61:8f:14:58:92:09:33:42:88:c8:c9:
98:1e:dc:b9:c8:58:e3:f1:5b:84:f3:51:d3:24:b0:
da:c3:64:c0:2c:2c:05:75:26:52:24:48:f8:a0:a8:
46:00:a8:e2:1e:fa:f1:61:36:a9:6b:bc:75:13:5b:
bb:af:eb:18:34:5c:46:6c:59:15:b2:15:c5:b4:66:
b3:54:39:bc:13:83:45:6c:5e:1c:85:22:4f:85:e1:
48:fe:28:cb:69:c9:f4:e7:a5:5d:12:3b:d9:21:bb:
95:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D7:EE:D3:8E:37:60:81:0D:4E:59:3F:1D:08:61:AE:9F:81:B7:E4
X509v3 Authority Key Identifier:
keyid:D3:62:4E:90:8C:74:98:FD:B6:13:54:27:53:EF:56:C7:5C:D7:04:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02JOkIx0mP22E1QnU-9Wx1zXBL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/42ef1b-10c7-4dac-9c13-6450f1841122/1/02JOkIx0mP22E1QnU-9Wx1zXBL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:6b:cd:b0:da:6e:7f:a3:3f:04:84:f3:90:c0:bc:1e:0e:ac:
bc:a1:e1:2b:e2:ee:1c:bb:8d:f9:7d:4a:0b:85:f2:e6:77:c5:
3e:48:a0:d1:bd:25:8e:6c:2a:3d:76:9f:80:a1:f3:14:b7:72:
c2:1b:5b:f6:56:f0:64:9f:11:0e:31:03:76:fb:a4:41:6b:3c:
36:bd:bc:7a:20:b0:a6:03:55:57:02:1e:2f:66:2e:31:d5:de:
81:ed:c9:31:c8:82:6e:76:57:95:df:38:a6:97:b0:39:ff:e0:
73:af:0d:ba:16:fb:9c:54:64:e1:c1:11:f6:d4:69:f5:a1:3c:
26:17:ea:21:21:9a:e9:20:a3:ad:e7:ba:a1:ce:cc:ef:74:8e:
f7:b4:fb:ce:ea:b1:a5:24:42:bd:aa:0e:ce:18:40:7c:27:c5:
74:81:9a:77:7e:84:9c:d9:f6:ed:3c:a6:96:98:1c:f6:e1:bd:
51:e4:c2:3e:9f:70:13:f0:25:a5:d9:17:4c:5d:07:66:3c:12:
a8:b2:15:72:ac:52:59:31:d0:e0:0f:8f:4e:a0:fb:d5:6f:46:
e2:93:1a:72:34:c8:99:32:2f:63:42:83:59:ba:6f:e6:3b:be:
e0:05:9c:b7:9a:8f:ca:1b:4a:b3:b4:16:81:bf:b4:68:3d:95:
7d:ae:5a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:07:22 2025 by rpki-client