Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
File: S5o7nhAjIJXBjSZERAzlxYoTizU.mft (raw, json)
Hash identifier: aLQ7jDtBGJQhoook7UzMLwjByJhEHEPa0iqZVRb1cew=
Subject key identifier: 42:7B:E8:FE:CE:DB:FD:AB:FF:6C:3F:6C:1A:6D:E8:54:46:CF:12:C9
Authority key identifier: 4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
Certificate issuer: /CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Certificate serial: 019745C21D82482E8A22AF8BAB1D57408E5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
Manifest number: 0D12
Signing time: Fri 06 Jun 2025 15:00:38 +0000
Manifest this update: Fri 06 Jun 2025 15:00:38 +0000
Manifest next update: Sat 07 Jun 2025 15:00:38 +0000
Files and hashes: 1: AGFXaqT3BvJjfsfWKc-WZgyT260.roa (hash: otB7RONJ2iX79r/3n1UHcffodGPsIg2+hKNGewXNd5g=)
2: S5o7nhAjIJXBjSZERAzlxYoTizU.crl (hash: Y6QzXWYjDu1Kg6O9ggNWZejxlBAV/R70Pu4kV+fjKtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:1d:82:48:2e:8a:22:af:8b:ab:1d:57:40:8e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Validity
Not Before: Jun 6 15:00:38 2025 GMT
Not After : Jun 7 15:00:38 2025 GMT
Subject: CN=427be8fecedbfdabff6c3f6c1a6de85446cf12c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:76:6a:18:19:88:7c:b6:4d:87:22:65:89:55:
5b:05:73:ef:83:a5:2a:99:76:29:f2:06:16:70:72:
99:54:96:f5:3a:b3:c1:db:7f:03:4c:1d:12:7f:02:
92:a4:66:ec:1a:b3:d2:2e:54:0f:9c:52:04:95:bf:
f1:23:3d:ea:db:6a:25:cf:6b:4a:d2:a2:67:42:87:
28:aa:b6:42:21:80:29:ec:bb:18:e6:8d:d7:d9:a3:
d6:39:67:fa:ff:9e:b7:d2:e7:3f:9a:df:e2:84:c0:
91:4d:34:b9:11:40:be:f9:99:c4:15:34:3c:70:9f:
71:14:78:60:49:5a:d5:2f:42:d4:47:10:79:15:10:
fc:fe:86:21:ec:44:b4:b3:e4:7b:e7:d8:4f:fa:7b:
5c:96:8a:79:6d:c6:0a:26:0d:82:03:f8:0d:c6:00:
f9:95:e9:bc:42:03:68:ad:b1:e8:61:e9:a0:c6:16:
95:b0:2e:c2:d1:2b:ea:e1:35:e7:98:05:32:7b:87:
ef:54:b3:6b:f4:b6:a2:f2:a0:ae:80:f1:bf:c5:41:
be:16:0e:d2:1a:66:b6:40:52:ab:84:69:b7:a6:ce:
25:3a:6f:4a:cf:23:4d:3f:1b:83:c0:e6:a3:11:aa:
ea:53:ca:7d:f1:d2:99:d7:bf:58:12:e5:5d:eb:2d:
ac:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:7B:E8:FE:CE:DB:FD:AB:FF:6C:3F:6C:1A:6D:E8:54:46:CF:12:C9
X509v3 Authority Key Identifier:
keyid:4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e7:db:86:24:8b:2f:d1:08:4c:40:6b:b4:6e:1f:38:08:8b:
df:33:3f:84:a4:35:5a:8d:f8:5e:d9:68:69:43:9d:6e:d6:b2:
ff:0a:af:2e:60:f3:c4:d0:0b:94:8f:6f:b5:02:7d:ad:0f:e5:
70:05:e4:3b:23:dc:2a:ce:95:b1:d9:e7:2b:9f:36:79:41:19:
90:2e:63:47:47:e7:c4:e0:8c:1a:4d:41:9a:b5:25:ef:85:07:
94:9e:94:7c:ce:1c:2e:fb:fe:f5:2d:eb:9b:70:2a:e4:20:83:
c2:f7:21:e9:b0:e8:7c:1b:99:62:d0:19:45:33:59:9b:a1:37:
b1:aa:09:45:85:59:79:15:76:bc:d7:07:4f:54:e2:ad:10:cd:
5b:2f:b8:b2:88:9b:cb:94:4d:19:42:34:56:79:08:65:66:36:
e4:f2:26:e5:89:c7:f7:e4:e2:ee:4f:3a:17:d8:fd:9a:c9:76:
fa:e6:23:82:9c:89:1a:93:88:8d:b7:dd:93:3b:78:d0:bc:a3:
91:16:e9:69:f9:7a:f6:22:d7:02:71:49:10:96:24:d8:63:ed:
5b:5a:27:5e:16:ab:27:72:83:f7:1f:dd:04:3c:75:d9:34:4f:
69:33:51:a2:1b:50:1c:d3:25:eb:d1:c3:08:02:d4:ed:2b:13:
97:50:0f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:29 2025 by rpki-client