Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
File: w3URP9S_vTixBDhDwwkmoRDMD1E.mft (raw, json)
Hash identifier: hK+In0gG89MkdjypFsgXmK64m0/9bR/OrGkIuWRnVY0=
Subject key identifier: 86:39:5E:5A:C6:0B:73:A7:97:F1:79:80:29:5E:D0:E3:83:17:39:46
Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Certificate serial: 0197B88F71E9214F0A54015F151EEBE084D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 22:01:37 +0000
Manifest this update: Sat 28 Jun 2025 22:01:37 +0000
Manifest next update: Sun 29 Jun 2025 22:01:37 +0000
Files and hashes: 1: TPJl-AnyNAOqe20bKX-5t3SrM4E.roa (hash: X6UgSBrAhCQSnYi9DhkcF/hdYKpsagcSW2GIdlVKxUg=)
2: w3URP9S_vTixBDhDwwkmoRDMD1E.crl (hash: Dya8DqgdK7BnyzrDPX8o5BgG13lxfLfthJCVo1YiYfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:71:e9:21:4f:0a:54:01:5f:15:1e:eb:e0:84:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Validity
Not Before: Jun 28 22:01:37 2025 GMT
Not After : Jun 29 22:01:37 2025 GMT
Subject: CN=86395e5ac60b73a797f17980295ed0e383173946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3f:42:6f:0f:89:f6:00:21:6d:9e:c2:12:4e:
65:52:1c:8d:4c:c7:e2:56:a7:45:29:68:ad:9d:f4:
fa:9c:47:83:83:3d:e6:e9:d1:9b:be:d0:2f:62:59:
b5:41:57:44:72:96:58:7c:48:82:e1:5d:91:79:fa:
a4:be:a8:22:2f:9e:49:85:d5:3d:e3:a2:27:98:6d:
05:9d:c3:d4:8e:da:19:d5:83:bf:19:ac:07:18:c0:
3c:c6:46:98:b0:a6:4b:d4:1b:50:cd:3d:0a:35:eb:
21:5a:5e:7f:8a:f2:1b:4d:fa:f1:9b:d8:83:34:6c:
0b:78:15:59:a7:ae:e9:ec:94:fd:9d:84:56:a9:7b:
26:18:4d:c0:67:4a:33:74:5b:21:4c:32:b5:07:1f:
a6:41:73:9e:f0:50:c2:90:11:5a:f7:dd:5f:18:73:
06:8d:a0:1d:92:0c:57:78:d5:4a:f3:c6:76:f5:41:
cd:b9:09:7a:d7:61:c0:9b:b4:c2:80:d1:48:c0:a9:
f0:0c:e2:5e:9c:59:96:c3:73:c4:e9:4b:26:c0:86:
38:dc:7a:22:6b:04:74:3b:6b:f6:63:a5:fa:9b:a6:
0c:70:bd:2b:44:3a:07:1c:57:34:bb:8f:15:e3:40:
c2:dd:8e:68:94:e8:ab:b4:e6:58:3a:38:1b:5d:d4:
c5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:39:5E:5A:C6:0B:73:A7:97:F1:79:80:29:5E:D0:E3:83:17:39:46
X509v3 Authority Key Identifier:
keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:d9:4e:a4:e6:05:ac:ba:4b:18:eb:08:82:46:b6:48:ff:d0:
18:ef:3a:47:53:b4:43:69:de:e5:94:8f:6c:6d:da:7b:24:04:
b5:86:03:b5:66:1d:89:a6:28:70:6c:4d:58:86:06:2e:e9:52:
d9:ad:f4:f2:5e:35:00:29:77:42:97:4b:a3:c4:a8:af:d0:a8:
2f:fd:6d:e3:f8:4e:0a:19:25:cd:ab:b3:67:0f:85:e9:9c:f8:
40:31:31:57:ee:05:82:db:23:2c:5c:53:84:5f:16:4a:0a:5b:
08:01:3b:b0:72:b5:d6:51:bb:bf:5f:e0:c7:a9:86:89:f1:f5:
a3:52:cb:b5:eb:e6:21:25:53:ee:a0:14:ea:3b:6c:8a:a2:5f:
b2:cc:23:1a:ae:b5:97:a0:00:6a:1a:ad:8e:a6:85:b8:0b:51:
8c:a9:fa:5f:df:69:0e:9d:3f:ec:d8:19:98:13:10:83:ac:8c:
f3:7a:28:33:c4:00:cc:3c:f8:6b:68:5c:74:98:4b:d4:1d:f6:
95:8d:c2:9d:a0:b0:84:3c:99:2c:3c:8e:e4:d8:da:07:ae:3f:
24:04:1c:5a:d5:a4:a1:a8:ee:38:df:69:49:14:b1:bb:e4:fe:
54:c6:5e:3b:57:4c:47:a3:bd:9e:ab:46:ce:d1:d6:c6:a3:56:
d3:40:de:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:08:35 2025 by rpki-client