Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json)
Hash identifier: dO4WvJ/OXthai0WTxWJWOCpN2+dn+e55cHwO3KqG9k8=
Subject key identifier: 03:C4:A3:0E:A3:8F:06:A5:53:04:7D:FF:DA:62:9E:26:2B:0E:DE:0E
Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Certificate serial: 019749D62B0627A3D449D2EC9F027214A92F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
Manifest number: 0875
Signing time: Sat 07 Jun 2025 10:01:01 +0000
Manifest this update: Sat 07 Jun 2025 10:01:01 +0000
Manifest next update: Sun 08 Jun 2025 10:01:01 +0000
Files and hashes: 1: 24PmMpD-bHbUV8mxF_RlzuSRjLU.roa (hash: ohLVMvfqoqKO1xPsU0QfK7dKJZtv+ZBmQ14II/YiXms=)
2: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: fEWYDWYrNZ7G4mDawyaWMVwmYy0Q/EyObOSq3QuRcZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:2b:06:27:a3:d4:49:d2:ec:9f:02:72:14:a9:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Validity
Not Before: Jun 7 10:01:01 2025 GMT
Not After : Jun 8 10:01:01 2025 GMT
Subject: CN=03c4a30ea38f06a553047dffda629e262b0ede0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:61:5c:a8:7a:cc:ed:91:6d:ca:51:63:6a:ce:
30:6a:75:9a:25:ea:3e:c7:64:6d:4a:2e:54:60:b8:
2b:6e:36:3c:59:ca:79:5e:b2:57:39:5a:c1:aa:3f:
5d:b5:0c:98:af:41:f0:f3:ff:ff:f2:17:c4:47:48:
ec:d1:dc:a1:f7:ae:7f:53:12:a4:f2:a0:fd:73:b5:
3f:ea:b6:e5:26:fb:84:72:a3:79:3b:f7:73:ee:11:
c4:16:1b:e7:99:8e:2a:aa:20:0a:94:e7:8f:62:28:
74:7f:29:f0:6c:02:a2:9c:1d:9f:20:a2:70:6a:1c:
16:d1:68:33:39:12:9c:ea:5f:96:3f:9e:2d:db:2a:
e8:cd:f1:5c:fc:ac:c0:4f:e4:5e:ec:69:16:47:04:
6a:40:f0:0b:83:f8:97:b4:fe:c6:b3:37:b6:a6:b4:
5c:5c:07:dc:bc:6b:9a:14:1b:53:63:21:2c:4d:1b:
e0:09:c2:8c:cd:80:c1:dc:c9:f3:6b:c6:86:b0:0f:
30:9a:af:a5:52:34:47:29:59:81:c9:83:95:9f:84:
39:76:f8:fc:77:8d:4f:7a:14:a0:a5:25:66:e9:ec:
20:ae:cb:85:9a:9b:e8:56:86:07:38:6e:87:a2:5b:
65:73:40:db:0c:5f:0c:3d:63:14:84:58:fa:f7:13:
56:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C4:A3:0E:A3:8F:06:A5:53:04:7D:FF:DA:62:9E:26:2B:0E:DE:0E
X509v3 Authority Key Identifier:
keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b4:0b:14:af:d3:d9:7a:a4:d5:fb:2b:c9:8b:09:6b:bf:34:
ea:69:2a:ba:34:98:68:5c:e9:6a:75:dd:b3:35:b3:27:b2:7f:
6a:b2:35:c9:78:3c:8a:a2:70:35:3d:ea:a4:a7:19:27:87:48:
43:5d:68:7f:5d:61:de:0c:8d:02:55:28:05:f5:8a:10:82:34:
2b:1e:1a:f8:d9:52:63:0e:38:f2:a3:37:65:38:c1:7b:7a:83:
ef:6d:e4:be:b5:d3:f6:d2:a2:83:1a:2b:20:f4:3d:98:7f:99:
f9:6e:f1:cc:87:11:ad:85:62:25:10:f6:a8:36:d6:c7:b2:f3:
81:9b:05:87:94:88:4f:40:92:60:6c:e7:76:13:5c:d1:3c:e3:
5e:c7:1b:3c:b6:07:52:2c:52:73:52:23:41:bc:3a:76:90:1f:
1b:6d:75:b5:e7:f8:62:7e:8b:5d:8c:7e:a9:d6:ed:8e:8e:67:
43:90:d0:6a:bd:5a:b7:fc:e1:f0:38:dd:5a:ad:9e:3e:54:76:
1d:63:ea:99:7f:2e:c2:92:4c:b4:99:2f:91:c2:15:ea:37:6e:
fb:76:17:21:57:ed:7d:72:90:cf:49:10:9b:f3:1b:fa:60:c5:
c3:5f:18:bc:e6:23:d6:1f:eb:0e:e2:b6:ba:06:15:b2:41:ff:
44:a1:98:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:39:40 2025 by rpki-client