Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
File: dThqb64eVfV2pAW9dLfwjnpsRlM.mft (raw, json)
Hash identifier: LBtqmo+ZbO4hhQukIm21UDXvjyvBd06Fs2bH5fnjvys=
Subject key identifier: EC:C2:35:46:14:80:A8:82:3B:0A:6C:3C:EE:8D:82:6D:2C:7C:29:CB
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 019747428C4CA8A344577D84D85761C55D2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
Manifest number: 0828
Signing time: Fri 06 Jun 2025 22:00:33 +0000
Manifest this update: Fri 06 Jun 2025 22:00:33 +0000
Manifest next update: Sat 07 Jun 2025 22:00:33 +0000
Files and hashes: 1: RbCZ4FuBiM5bQVW3sP5PrxSE_ic.roa (hash: heyjJE1M941WJSvHrhTQkBoLwbj5RIQs9kFiPjSVnUw=)
2: VgQVNXTLznzmHsP79v3Zsr2IWwU.roa (hash: V8Zv8ak7cEH62i1TGjfWmCMowy8kun9bTSlwi87+E9s=)
3: dThqb64eVfV2pAW9dLfwjnpsRlM.crl (hash: f46tVe+kZXb5IJKGUtC+xYCa0Ql5O1qONnsyCrkUjIo=)
4: rgad5_QrqjzIqPuzW_IRWvVFFb4.roa (hash: CW37KfuVvlCtejt5YGCTadY3jiqhfL5iQfoIqu008Bo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:8c:4c:a8:a3:44:57:7d:84:d8:57:61:c5:5d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: Jun 6 22:00:33 2025 GMT
Not After : Jun 7 22:00:33 2025 GMT
Subject: CN=ecc235461480a8823b0a6c3cee8d826d2c7c29cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:31:a9:99:2c:c7:24:d0:4e:15:c8:b6:d6:
91:64:df:0a:9c:60:a2:f9:0b:9f:93:26:08:5f:87:
24:e2:34:eb:b3:fc:78:c7:fb:af:f9:fd:dc:8a:b9:
fa:f9:d3:f9:5a:2c:af:8e:3b:4f:80:2b:23:28:f4:
f3:97:9f:5b:d5:94:08:ad:56:31:1e:1d:6f:08:ec:
a7:c2:58:7d:ae:36:59:da:3b:19:5e:99:c2:ad:b3:
64:9e:0d:f4:23:43:c4:a9:66:d2:61:75:92:d1:54:
6c:89:56:3c:cc:bb:a1:34:27:cf:93:54:68:55:86:
e4:c1:93:09:32:9f:e6:c8:19:05:f1:3e:31:cd:91:
04:76:fd:4d:03:22:e5:ef:52:74:a8:4f:bb:a1:ff:
73:85:7a:83:11:46:80:1d:62:76:64:a6:09:d7:df:
0c:7c:19:e9:a2:56:38:d7:9f:44:93:98:8b:8d:3a:
00:d1:95:90:6f:f0:8e:24:9b:0b:a7:cf:57:54:8b:
4c:a0:d7:90:7d:72:aa:46:a5:36:57:9e:4b:24:29:
b2:50:4b:6e:02:54:69:f3:79:a1:bc:04:41:76:cf:
04:d5:9d:36:a8:e8:33:21:a7:cc:f1:17:a0:91:5b:
f2:00:29:1b:18:db:f7:20:e5:4f:aa:df:3d:eb:eb:
bf:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C2:35:46:14:80:A8:82:3B:0A:6C:3C:EE:8D:82:6D:2C:7C:29:CB
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:c2:f2:12:26:cd:8d:aa:cf:ba:db:a2:99:ef:6e:af:ca:ba:
5d:e5:73:e0:b4:51:bb:ed:bd:c3:20:b8:1d:0f:91:b3:fb:1f:
df:25:f4:9f:90:af:ea:49:e8:ad:6e:2e:c5:69:e3:d4:41:b7:
de:1f:f2:47:9f:79:f7:e0:21:6d:38:6d:4c:45:a0:17:0e:ae:
96:38:86:7f:67:db:6c:cf:e5:9c:29:ae:10:7d:17:04:6f:00:
ad:1a:fa:f7:cf:e4:8f:43:50:0f:88:a8:b2:8b:91:07:7f:e0:
99:83:74:70:62:b8:27:48:d5:2b:cf:8a:3a:c7:f0:3f:3e:5e:
d1:b8:77:3a:b5:49:55:61:0d:43:70:40:2f:4d:78:b7:f7:e3:
75:1f:3a:ca:15:06:10:e6:28:aa:97:f6:f8:1c:e5:cb:59:1b:
44:3b:67:07:4a:5e:36:37:07:eb:a9:72:bf:68:e1:35:14:1f:
be:4e:f7:b6:6f:31:28:8a:2f:c2:08:6a:af:d3:83:89:02:e7:
a8:9a:6f:3a:24:7d:c4:be:72:a6:43:e2:d2:64:56:1d:03:bb:
10:9a:02:fa:d7:ab:b0:82:5c:3c:9c:01:c5:51:b2:4e:8f:29:
3e:bb:a6:7f:b8:8a:ed:71:11:45:05:9c:74:6e:0f:c2:6e:44:
d0:fa:80:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:18:41 2025 by rpki-client