Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: vjfGy3Cd6bFvqmHQd0mpi3UGTwgvfzcuGw74w/XA38A=
Subject key identifier: D2:06:23:42:AA:43:FE:18:3A:43:B4:DE:AF:AD:4B:B9:30:FE:3E:02
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 01974AE89275E9231B458FE030FF528BFCBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 03D3
Signing time: Sat 07 Jun 2025 15:00:45 +0000
Manifest this update: Sat 07 Jun 2025 15:00:45 +0000
Manifest next update: Sun 08 Jun 2025 15:00:45 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: hT/GqhsT06TmKWnWSCN6Qh3Ro+jCcR9/i2li0oYkatE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:92:75:e9:23:1b:45:8f:e0:30:ff:52:8b:fc:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: Jun 7 15:00:45 2025 GMT
Not After : Jun 8 15:00:45 2025 GMT
Subject: CN=d2062342aa43fe183a43b4deafad4bb930fe3e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:58:70:96:62:bf:c9:19:0f:d0:83:eb:10:de:
4d:ce:bb:42:a1:58:20:f0:5a:7d:68:b5:62:18:34:
46:2a:68:02:5b:df:83:a7:36:95:40:99:04:2e:84:
7d:de:f0:4f:44:a7:42:17:9f:85:46:0a:3b:32:eb:
08:59:6a:ec:b9:eb:5e:1b:f9:f6:8e:f0:6c:45:6e:
4a:f8:7a:9b:d3:8c:b7:91:63:d1:65:6f:37:fa:b1:
0b:02:ac:ff:4b:c4:88:7d:07:20:bb:46:62:eb:dc:
f3:eb:8a:1c:1e:f5:c5:79:b8:34:4f:5f:16:ee:0d:
d9:25:4c:98:72:83:3b:db:ca:9a:fb:b6:19:4d:1b:
c7:38:70:50:ba:22:0b:85:3f:e6:3c:44:6e:ab:d0:
30:b0:17:b6:3a:00:c9:ed:ef:f5:36:c0:04:c4:40:
89:1a:34:c4:7e:82:f2:24:c7:31:49:af:89:17:85:
08:a1:9d:50:d4:14:78:17:da:0c:d6:a4:17:8d:4c:
44:d8:3d:35:d0:b2:b2:2c:35:d0:59:52:29:5a:f8:
b3:d2:bc:80:ca:6c:74:5a:7f:22:70:55:f1:55:18:
6e:f4:ea:9d:10:d7:7d:a8:59:bd:8b:1a:92:fc:f6:
23:da:5e:54:12:a6:f9:da:f9:5e:1e:14:66:8d:d1:
40:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:06:23:42:AA:43:FE:18:3A:43:B4:DE:AF:AD:4B:B9:30:FE:3E:02
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:8b:5e:a9:66:88:f4:a6:29:ff:73:7a:6a:ab:65:f7:ab:80:
93:7c:ee:5c:1b:3a:e5:91:89:42:31:48:8b:da:46:f5:c9:e6:
ae:36:2b:02:3d:73:6f:fd:95:b1:ab:ab:eb:e5:19:83:e6:7e:
ac:b6:72:b6:46:4d:05:97:4a:ff:f1:1b:95:e0:db:7f:5f:2a:
6b:bf:f4:b6:df:c1:de:d4:48:a3:93:14:cf:7f:5f:a0:1c:45:
d4:96:71:d1:1d:ac:e7:10:5f:83:f7:cc:44:83:99:36:95:54:
af:fe:9f:18:06:4a:84:cd:5b:91:12:de:0c:63:ec:2a:ac:87:
93:4f:b3:1d:84:8a:ae:24:31:3e:0f:81:8b:32:a0:40:11:c2:
9f:66:af:1a:48:55:3c:24:ab:2b:ad:3e:f2:f6:5d:19:55:3e:
61:df:06:f3:de:0e:48:70:20:0b:2c:0a:03:fc:43:7e:ef:e8:
72:05:c0:9c:d1:1a:e3:ae:d2:f6:47:dd:f8:33:f8:cd:29:e6:
f5:83:f1:a7:27:3b:bd:17:bf:a1:31:fb:49:30:52:13:fa:4c:
5f:03:ab:e6:8e:95:6a:09:97:cb:5c:86:47:1e:0f:f1:9e:c0:
89:7c:82:9c:20:fe:f4:e6:66:70:80:fa:45:8e:9f:14:b2:d8:
79:65:56:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:59:07 2025 by rpki-client