Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: Oi5tFpZUrCOlMYpavi4PW3Uw6dX1Afa0LMEYA012w70=
Subject key identifier: 21:E6:90:3D:C8:21:22:5F:C4:6B:9F:D1:A5:0F:69:1C:A9:40:34:F9
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 019748C338D29EA341388E5BD985B3295994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 01CF
Signing time: Sat 07 Jun 2025 05:00:42 +0000
Manifest this update: Sat 07 Jun 2025 05:00:42 +0000
Manifest next update: Sun 08 Jun 2025 05:00:42 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: Mu70ESXQ8bXXadcKT32hHTMPhdLFU7UEZBnow1oL10s=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:38:d2:9e:a3:41:38:8e:5b:d9:85:b3:29:59:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Jun 7 05:00:42 2025 GMT
Not After : Jun 8 05:00:42 2025 GMT
Subject: CN=21e6903dc821225fc46b9fd1a50f691ca94034f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:45:2e:56:b5:82:fc:3d:bd:22:24:a9:8b:f7:
f1:ee:8b:26:21:4e:38:5e:11:35:da:43:0e:a7:eb:
7b:6c:1f:a5:f3:4d:14:35:7b:9f:3e:3a:5a:7a:d8:
2e:6f:00:39:3e:a5:b7:1c:53:fe:28:4b:e6:1e:e4:
73:eb:77:52:09:8e:d3:70:7e:a6:97:7b:1c:f8:a6:
1e:cf:15:24:86:65:8d:61:7c:53:8f:d1:9c:a0:9b:
b2:10:6c:fd:a6:20:9d:f8:9b:6b:8f:78:92:1f:83:
cc:20:6f:75:48:33:33:e9:70:3e:de:8e:ec:2f:e3:
b0:b3:0d:10:21:a9:df:42:91:6b:bc:1f:4f:18:21:
70:81:b2:ba:ce:d6:8a:35:99:36:7e:b5:b8:84:33:
ca:08:04:dc:5d:eb:6e:27:2b:e2:7a:66:e2:36:65:
25:9c:e4:13:dc:a5:79:5e:85:5f:78:ec:47:1e:8f:
5e:05:17:c5:f3:05:1a:16:e5:35:d9:16:95:46:4c:
ce:af:b8:71:2e:3f:9a:5a:d6:ff:3f:86:9c:fc:5b:
8b:dc:06:23:73:9d:0c:b1:a4:99:c6:37:dd:93:23:
91:04:b0:44:89:84:b0:2d:04:ad:99:a0:5e:aa:11:
41:15:fb:c7:ba:98:89:1e:23:d4:72:92:8a:57:f6:
bb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E6:90:3D:C8:21:22:5F:C4:6B:9F:D1:A5:0F:69:1C:A9:40:34:F9
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c8:9f:55:2e:10:91:88:7d:19:a5:24:81:99:02:fa:83:f3:
29:c9:9c:a7:af:f8:55:51:6c:66:5a:ea:b0:81:0c:63:dc:2b:
26:29:54:df:1a:6b:27:30:22:48:77:63:20:03:45:da:85:66:
0c:4a:4d:a4:7f:54:28:69:cf:40:a2:cb:67:90:93:7b:fe:df:
e3:1a:3b:7a:d8:38:84:1d:92:5a:ec:82:2a:95:f5:52:f6:3b:
94:34:74:46:92:6f:ac:53:a0:18:fe:ad:81:82:cf:68:1a:ff:
01:c8:d3:27:f1:cf:d3:ba:87:a2:3e:cf:a5:20:9a:5e:53:d3:
3f:e2:d2:a1:e5:dd:8a:2a:43:10:a4:c9:fc:d4:a3:5e:4d:7b:
02:13:ed:dd:3e:c5:69:95:76:8e:56:5c:8d:70:e5:42:f3:d5:
7a:87:39:c6:49:36:63:5a:54:dc:11:64:44:af:ce:2d:9e:fe:
66:6f:f9:cf:26:9e:f5:d4:70:a4:7f:85:f9:4d:d3:74:bc:7f:
5e:aa:6e:98:bb:5e:32:2a:27:4a:a5:5e:8c:be:74:00:d7:b5:
9e:3a:7b:60:2b:06:ff:dc:36:01:b0:d6:bb:a7:91:b7:48:8f:
6f:0e:0d:87:5a:ee:31:40:50:20:56:95:85:ce:c5:81:9c:dc:
18:a3:2e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:52:40 2025 by rpki-client