Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: s+A8d5yyt50IM18JimgkjsLHvyHEYSVKiaT2G1Htvrk=
Subject key identifier: 69:D3:6B:AF:3B:32:5B:53:53:BE:C7:4A:A4:2D:B5:CA:4A:CB:17:8F
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 01974C69FBA882DDF030777FA3643C4AA2D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 22:01:43 +0000
Manifest this update: Sat 07 Jun 2025 22:01:43 +0000
Manifest next update: Sun 08 Jun 2025 22:01:43 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: o01bcZJrkRSpA6wLFr6b1ark0jTn/CbFx69DGxKMC9w=)
2: zKQIfOeURvANDMREU7yI_nE_KFw.roa (hash: rsODojes6psnJwHqpB6iZWFEwYShL6Rps2nkmwoPbsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:fb:a8:82:dd:f0:30:77:7f:a3:64:3c:4a:a2:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: Jun 7 22:01:43 2025 GMT
Not After : Jun 8 22:01:43 2025 GMT
Subject: CN=69d36baf3b325b5353bec74aa42db5ca4acb178f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8e:9b:39:ca:ab:62:8d:95:70:e3:f1:56:8a:
53:04:b9:ee:97:98:f7:b5:d4:b4:cd:6a:13:e9:2a:
1c:61:40:d3:64:5d:bf:24:2b:61:7f:fa:6c:a8:95:
cd:f6:50:0c:21:57:0f:1a:f5:13:ed:e7:60:d6:3f:
7b:4f:a3:99:3c:4f:6f:7d:80:59:26:3c:0f:6e:e0:
9c:fa:f9:7e:84:81:9d:df:0d:0a:a7:3b:e8:95:d1:
41:ca:35:77:c8:aa:7a:d4:77:ac:40:af:e2:5b:b6:
d5:b5:10:c5:7a:0d:c6:11:6b:d5:20:43:d3:b4:72:
a1:f3:d9:cf:63:d3:1a:b6:ce:36:7f:9b:e2:73:67:
97:1f:e2:eb:8e:46:7b:ae:c3:dd:57:b9:ac:5e:9e:
8c:1b:c9:b0:6a:b9:13:eb:ec:52:47:04:a8:62:36:
1d:f5:ec:5e:cc:75:fe:bf:14:1d:f9:75:83:cf:e8:
03:c2:c6:93:a7:bf:0e:62:cf:5a:12:04:dd:60:cd:
59:76:94:4a:39:a6:ce:b7:2b:49:3f:fc:82:cb:ad:
4a:c5:e1:8d:a8:d0:5e:6b:0c:cf:df:cc:53:cf:82:
5a:fb:f5:fc:f9:c9:4e:2a:1c:c2:f2:9a:44:4e:8a:
b6:ab:7c:48:ef:3c:1b:e3:08:53:ac:5e:38:dd:83:
41:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D3:6B:AF:3B:32:5B:53:53:BE:C7:4A:A4:2D:B5:CA:4A:CB:17:8F
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:8b:cc:22:b1:f4:8b:b7:bc:69:47:93:be:55:64:d8:95:ab:
98:58:82:44:20:80:ce:ab:11:d2:1b:7b:b4:91:68:02:6a:b1:
51:82:cd:75:ee:76:ce:2c:ed:24:92:d8:13:88:8b:3d:ab:74:
f0:ac:47:f2:96:8c:49:0e:55:86:fa:31:2d:34:0e:c8:be:af:
d8:81:ee:4a:89:a2:97:5a:d7:36:3a:7a:cd:f1:b5:ab:c5:ad:
62:d9:7f:89:da:81:a7:e3:59:29:e6:93:6a:e5:fc:43:c9:98:
c9:11:6d:2b:5a:1c:3e:d9:28:8c:ac:4f:0b:e5:6d:27:b5:97:
e4:30:48:df:ce:24:b1:9f:f2:f2:10:20:87:1b:8a:64:95:fc:
63:78:98:5c:f1:00:14:77:4a:82:ec:2a:18:b0:1d:60:a1:48:
97:22:65:27:17:dc:33:f8:21:32:0c:09:e7:55:7f:82:0f:a2:
5c:e4:0e:12:35:c6:9c:dd:d4:ec:1c:56:c0:fd:19:0e:56:c7:
d4:80:b1:56:58:cc:c7:ef:a6:10:4c:5b:62:19:6f:ae:d1:b7:
44:6d:35:56:4c:5c:74:c2:34:91:7f:37:74:89:1e:0b:02:bb:
68:5a:62:c4:02:ec:a6:20:38:52:0a:e2:67:2f:f6:4d:73:c2:
bb:76:d2:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:26:49 2025 by rpki-client