Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
File: spIJTWkd9KfDjxa3VVfpwm1KxpI.mft (raw, json)
Hash identifier: 6Hr+niWWjYhnfQg9jo9u+U+i2vNUTR+MSbCFYpdqkPk=
Subject key identifier: 3F:82:E6:84:57:F2:CD:FC:91:2F:12:9C:0A:B5:DC:98:25:B5:E3:F9
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 01974A7A8A38AE659AFF7C0FAC8B82A57B7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
Manifest number: 1482
Signing time: Sat 07 Jun 2025 13:00:34 +0000
Manifest this update: Sat 07 Jun 2025 13:00:34 +0000
Manifest next update: Sun 08 Jun 2025 13:00:34 +0000
Files and hashes: 1: OmeM_n0y_6-zOQ1ggpf3SAaIYGM.roa (hash: nPLGIcarXsWhg9mWE06KhP99Y61Hg7uEiGrRbDzptwU=)
2: spIJTWkd9KfDjxa3VVfpwm1KxpI.crl (hash: ovzPQ06BWhsAsSMOXL6D/ciQEdM64QSdGShlutHERDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:8a:38:ae:65:9a:ff:7c:0f:ac:8b:82:a5:7b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Jun 7 13:00:34 2025 GMT
Not After : Jun 8 13:00:34 2025 GMT
Subject: CN=3f82e68457f2cdfc912f129c0ab5dc9825b5e3f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8b:e7:dd:20:11:97:06:8b:3d:12:02:2e:59:
de:13:1f:9f:d7:e1:41:ce:21:e7:1f:f1:f0:8f:ea:
c2:74:91:0e:f6:0b:e6:57:99:b6:5f:45:46:8b:20:
6d:c2:42:46:55:09:e8:a9:3d:ed:35:c3:28:5a:8a:
54:a5:46:6b:27:14:fb:a0:39:a2:1f:7b:c6:b3:0e:
34:7a:a7:93:34:d1:86:f4:33:7f:52:3f:5d:f3:53:
c8:85:aa:08:60:95:4c:29:38:55:5d:fa:0b:d3:28:
26:8b:57:9d:15:28:09:2c:4e:ec:43:31:5c:ce:3a:
c9:ab:c8:dd:3b:27:78:0d:8f:88:b6:2d:e5:e5:f3:
e2:52:fa:89:e0:9b:2b:73:46:ab:a0:92:21:7b:83:
87:49:96:c4:22:71:04:3f:89:18:6c:30:4d:b4:fa:
de:e9:71:fe:77:87:1f:4e:26:c9:b4:e5:9c:60:21:
72:eb:60:6a:0a:59:02:36:6b:93:b1:08:61:dc:bc:
25:44:3b:50:9d:c0:4e:ce:b6:e0:1f:d8:1e:7c:d6:
c9:58:12:b8:c6:aa:38:8b:77:fe:98:05:90:8b:19:
5a:f5:f7:9c:f7:f0:04:4b:67:31:b3:06:44:d7:c9:
20:57:2e:11:80:21:25:09:9d:ab:65:43:ea:dc:2d:
07:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:82:E6:84:57:F2:CD:FC:91:2F:12:9C:0A:B5:DC:98:25:B5:E3:F9
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:ab:6c:20:2f:03:99:1b:77:2b:dd:bc:15:2e:21:cb:6e:0a:
a5:11:8c:05:b1:59:e6:4e:8e:d5:40:fe:5d:47:29:b6:a8:68:
4c:2c:39:7e:e1:14:f2:51:1f:e3:dd:7b:f6:2a:c5:2a:12:0c:
cf:22:3a:12:a7:a9:eb:d8:4b:67:13:b9:d9:05:b3:93:bf:8e:
46:96:38:fc:56:f3:83:e0:cf:cf:42:07:ab:a6:a4:6d:9d:d7:
d5:66:df:19:2e:b8:4d:fa:f2:dc:15:9b:46:02:19:df:c9:31:
9b:4f:af:b9:d1:a8:cf:4c:1e:74:80:ad:f0:b1:b6:9e:1e:83:
c1:bb:e8:91:d7:72:1d:e7:90:a9:65:92:dd:d4:5e:e1:21:5f:
65:55:53:a6:24:14:83:7c:4b:af:58:d5:6b:18:3f:9b:fb:45:
64:ab:c6:57:97:7d:00:c2:78:e9:0f:d7:dd:3a:20:73:21:ba:
4f:77:e0:1e:c4:43:0b:a2:11:25:eb:03:dd:b4:ef:f5:bb:dc:
1a:94:b6:52:c6:ae:0d:9c:d8:da:64:33:21:da:40:c0:13:c4:
03:58:d1:3d:e7:0a:1e:df:23:55:d6:97:68:34:54:66:5b:38:
22:69:56:bb:53:8f:a2:91:bd:3c:22:b0:4d:53:65:44:38:2d:
e9:a5:d2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:04:21 2025 by rpki-client