Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
File: SiHJG2O7vaiASnSfPWEOiyF_m3M.mft (raw, json)
Hash identifier: WEJxCxsviATBZ2FoqJweGcleOHB+226MKohQvPAqoA0=
Subject key identifier: BD:EA:93:50:60:48:FE:3B:5A:25:45:B3:6F:DC:EA:4B:47:7C:93:67
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 01984A09D42E84BE5118CBD933291ACF47FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
Manifest number: 11FF
Signing time: Sun 27 Jul 2025 04:00:14 +0000
Manifest this update: Sun 27 Jul 2025 04:00:14 +0000
Manifest next update: Mon 28 Jul 2025 04:00:14 +0000
Files and hashes: 1: 1Z1yWNgRSnqR3pt5WlApDelQe4o.roa (hash: 7G52qXZFDFq0XDjJ+/lW8m4SCa70rkFS2r1Ec1zORA4=)
2: SiHJG2O7vaiASnSfPWEOiyF_m3M.crl (hash: JAH6W9bnHJG/19YHrzZOc3YbQjd46Dn0ygsDMLraO24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 04:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:d4:2e:84:be:51:18:cb:d9:33:29:1a:cf:47:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Jul 27 04:00:14 2025 GMT
Not After : Jul 28 04:00:14 2025 GMT
Subject: CN=bdea93506048fe3b5a2545b36fdcea4b477c9367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:51:07:7d:3f:f3:bf:b8:1f:b2:e4:20:1b:50:
ee:66:67:4a:70:03:29:ee:bf:2b:c2:c5:4d:b1:44:
e9:9d:c9:f9:8b:83:0d:d4:7a:f2:32:6f:ef:75:fa:
00:c6:69:57:38:96:9b:4c:76:7f:c3:76:d6:34:31:
11:5b:19:8b:b2:51:d3:aa:55:d3:14:7d:8f:e1:17:
13:54:42:89:4b:d9:5f:79:9f:29:68:c0:33:4a:59:
e5:73:44:0e:03:47:dc:ea:9e:6c:c5:a8:ee:98:8a:
2f:d7:f3:33:8f:b2:d4:be:2e:be:dc:45:c6:f9:94:
89:c9:a5:28:f5:e3:f6:56:15:58:a1:fa:49:b7:98:
c6:02:ad:49:9b:fa:ff:b1:cb:de:96:b5:07:ef:47:
b3:91:84:49:33:57:20:30:4a:85:8c:28:9c:7b:36:
43:a4:f7:be:5d:75:58:12:9a:b1:02:a7:31:5a:19:
51:10:87:c9:84:76:f7:55:e9:a4:82:5d:08:77:92:
25:75:8c:2b:59:64:d8:fb:a9:7a:3e:f1:79:cc:a5:
3b:be:7d:50:bc:37:83:f5:97:b5:94:f7:f4:39:0e:
73:a3:95:70:50:9b:ea:ef:2a:65:b4:3f:b3:8c:d1:
b2:a5:84:d0:d6:86:2d:57:ac:14:71:e8:f7:d1:4b:
f4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:EA:93:50:60:48:FE:3B:5A:25:45:B3:6F:DC:EA:4B:47:7C:93:67
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f3:1f:e9:c2:0b:52:ba:f3:9d:7e:f0:07:f9:71:b6:e3:29:
f3:4b:88:4b:55:88:d6:8c:68:2c:54:bf:e6:28:c9:58:a2:a3:
31:1e:1a:7f:ab:11:ee:ca:2d:e4:bf:e3:fd:6a:5d:65:48:46:
bb:b2:70:21:89:b4:73:0b:a9:a6:41:38:06:96:d3:87:31:ab:
63:8a:a4:68:bb:7a:7e:71:85:8b:99:4d:5f:93:85:9d:a6:90:
60:10:23:af:32:1c:14:e3:70:97:73:f6:0f:19:ef:30:eb:51:
ec:18:90:34:86:31:3b:81:09:7b:df:9c:ce:2e:8f:56:28:a9:
8d:6a:af:25:6f:77:1c:89:b7:fb:c6:4d:ce:d4:58:81:69:9a:
f6:24:17:f5:ca:0e:87:01:5f:16:7f:ba:c9:17:eb:01:93:40:
dc:ea:19:5d:c3:be:f0:45:5a:77:7c:9b:9b:f9:54:0c:23:42:
d4:33:c5:31:1e:75:6b:0f:98:0d:47:04:20:31:80:e4:b7:af:
5b:58:aa:e3:e3:01:ef:3f:b8:0b:95:00:38:ce:9f:19:c8:f5:
47:06:01:35:57:22:9b:6b:69:a7:dc:3c:66:58:ba:52:fa:25:
02:09:17:9d:84:6c:73:5c:af:34:e5:27:c0:c7:69:9c:62:34:
51:d7:a2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:10:01 2025 by rpki-client