Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
File: dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft (raw, json)
Hash identifier: H1lWfvy1kxWzZ/8bdW6YMlk4C/6/NVj1A+I7fy8FW7Q=
Subject key identifier: 35:D4:83:1E:FD:AB:E4:94:A3:1C:9F:2D:F2:6D:BB:E8:5C:E7:FA:62
Authority key identifier: 77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
Certificate issuer: /CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Certificate serial: 019752A25C83B85FD61EA0AA72DE1C2097BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
Manifest number: 1250
Signing time: Mon 09 Jun 2025 03:01:01 +0000
Manifest this update: Mon 09 Jun 2025 03:01:01 +0000
Manifest next update: Tue 10 Jun 2025 03:01:01 +0000
Files and hashes: 1: Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa (hash: C4rOq98XQlQBOJoaFTi64wzA4+qXQilqH0FLuH6cokY=)
2: dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl (hash: VOL6M1YMmXBecN2Cb3XgtiCLDLptjZmoBN63OUUzFLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:5c:83:b8:5f:d6:1e:a0:aa:72:de:1c:20:97:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Validity
Not Before: Jun 9 03:01:01 2025 GMT
Not After : Jun 10 03:01:01 2025 GMT
Subject: CN=35d4831efdabe494a31c9f2df26dbbe85ce7fa62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2e:fa:ed:f0:e5:94:d6:4c:f4:5d:f4:3d:74:
1d:28:2e:44:6f:85:1e:59:e9:a5:29:95:13:c7:ba:
e5:b3:66:98:2a:e9:29:1e:60:23:4c:b5:49:9a:94:
8b:9e:6b:44:80:19:7a:f8:8a:d3:5c:a9:52:04:97:
7d:92:c7:76:24:5f:2b:88:0e:aa:89:21:5d:c1:29:
57:24:20:e8:44:3d:d7:a2:de:41:1b:af:32:95:2f:
95:69:fa:1a:e3:55:fe:2d:4d:f7:65:d5:60:c8:44:
84:ae:4b:92:49:dc:2a:a0:c2:4b:35:41:74:12:82:
de:24:01:3d:da:1a:d5:3b:0a:9b:28:a2:d4:ad:dc:
04:7f:a8:b4:4e:2a:b8:4c:41:72:3d:07:45:41:a4:
6b:96:3d:b3:fe:cd:67:be:8e:78:e9:0d:f4:5b:76:
7c:b0:f1:e2:e8:3a:0f:aa:88:18:90:53:34:24:9a:
ad:1e:68:80:4c:e4:3a:50:3a:fd:f9:aa:c8:8f:c5:
4a:d3:c3:5a:2f:4d:3f:c7:25:c9:f1:68:bc:e5:ca:
c3:42:cb:dc:fb:99:91:8d:c4:3f:e2:af:f3:c6:fa:
e6:f2:17:a6:ae:7f:6b:38:69:e4:36:6f:b5:40:7e:
e3:6a:1a:88:02:d6:8a:30:02:1e:96:24:3d:0f:6e:
f4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D4:83:1E:FD:AB:E4:94:A3:1C:9F:2D:F2:6D:BB:E8:5C:E7:FA:62
X509v3 Authority Key Identifier:
keyid:77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:9d:d4:1d:8d:ec:f3:97:04:4b:df:99:5e:0a:a0:f3:44:6e:
ca:09:f4:14:68:40:2c:b9:68:40:33:36:49:84:10:92:2b:53:
c4:a8:96:3c:2d:a2:4a:78:6e:19:d7:27:30:b4:c5:b6:a7:b8:
ee:23:c8:a6:78:f6:ac:03:4e:8d:7e:4f:60:c4:8f:2b:59:83:
12:c9:d7:3f:01:95:e4:b4:6d:78:af:74:da:8c:34:a0:9f:e6:
c4:c7:a7:c5:18:69:3f:c4:46:1c:d1:32:54:cc:ae:b7:42:b7:
de:8f:d4:d8:f4:79:8b:bc:8c:41:b1:ba:f7:c8:f0:d5:24:af:
ff:02:26:1c:76:0e:c8:a2:fe:cc:fb:6f:c1:4a:b2:54:27:41:
c5:c8:30:d7:c2:11:f4:12:d4:fd:e5:fb:ec:19:e8:87:97:f0:
0b:29:f8:4e:7e:0f:3a:38:08:c3:02:bb:21:d7:05:7e:94:28:
b9:fe:d3:7f:6e:ef:a5:95:d4:b5:f1:21:da:e4:ca:53:60:2c:
c6:dd:65:b4:fd:fe:c6:d8:fd:01:80:54:58:64:b0:05:f6:08:
1e:70:65:a7:90:db:20:72:a2:7d:40:8c:a9:f7:5f:c8:58:ac:
f7:65:ea:33:64:bc:e7:d4:33:d1:c6:4b:59:f4:1a:4b:62:7f:
43:04:df:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 09:55:00 2025 by rpki-client