Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
File: 1DsiEwqpp3NCVHaewTv-Fx-h4os.mft (raw, json)
Hash identifier: xnuDlxrtJRmwZD65cSR5t2Y6OvIS/zOJlUC09T5yduo=
Subject key identifier: 75:76:E5:C2:A0:4D:63:B9:57:3E:10:D6:E5:0C:E8:BC:20:C4:59:D4
Authority key identifier: D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
Certificate issuer: /CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Certificate serial: 019749686A362F5BA752FC30F4ACAC0722EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
Manifest number: 0A86
Signing time: Sat 07 Jun 2025 08:01:08 +0000
Manifest this update: Sat 07 Jun 2025 08:01:08 +0000
Manifest next update: Sun 08 Jun 2025 08:01:08 +0000
Files and hashes: 1: 1DsiEwqpp3NCVHaewTv-Fx-h4os.crl (hash: s4lQN08eJEzp77brbIYIQSCaJSl/RRzyEmWWTT4gcGA=)
2: wEdGwXpwYmsgP9g00gzYyHwBX_w.roa (hash: xXn4YaJmCyamPKNCyA6d81IZAPpAi8iJdAjjF+NkEPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:6a:36:2f:5b:a7:52:fc:30:f4:ac:ac:07:22:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43b22130aa9a7734254769ec13bfe171fa1e28b
Validity
Not Before: Jun 7 08:01:08 2025 GMT
Not After : Jun 8 08:01:08 2025 GMT
Subject: CN=7576e5c2a04d63b9573e10d6e50ce8bc20c459d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:79:3e:43:09:80:cd:9b:06:1e:00:a4:c4:4b:
24:fb:97:d3:3d:71:c4:25:a3:bf:b3:36:4b:fe:00:
63:65:a5:82:16:b5:c4:c0:a9:6c:0f:50:ee:7a:07:
26:6c:74:02:b3:1c:83:2a:8f:d1:a8:a4:81:7c:31:
f5:ed:6f:ad:fa:bb:4d:86:e7:75:86:71:cb:4d:dc:
75:c1:50:f8:a6:90:5f:02:93:ab:b8:89:ba:f1:6a:
ed:c9:21:7c:8c:d4:cd:f4:a0:91:f7:21:35:ed:9c:
ea:27:10:1e:dd:68:81:c7:87:76:94:3b:42:2b:a2:
dc:d2:0b:f0:56:3c:67:bb:b3:53:c0:a4:de:78:cc:
49:18:36:2b:5c:c6:a7:76:99:77:73:dc:56:3f:ff:
c6:c3:23:31:b3:68:40:bb:31:93:b6:c0:0b:3c:ca:
4a:ee:e3:d4:71:e3:6b:20:a6:e4:c0:0b:9a:2d:26:
3d:36:3e:8a:b4:47:b0:c9:b4:9b:c0:be:7b:a1:72:
30:0f:81:3d:7a:75:0d:a0:9c:e4:41:9d:37:44:7c:
ce:52:7d:b9:a4:6c:75:c8:e2:58:3d:06:ac:b4:81:
ae:01:f1:39:87:18:fe:6a:66:a4:ff:1a:1e:ac:1c:
11:71:8f:9a:f9:69:70:85:4a:9f:aa:d5:36:28:38:
22:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:76:E5:C2:A0:4D:63:B9:57:3E:10:D6:E5:0C:E8:BC:20:C4:59:D4
X509v3 Authority Key Identifier:
keyid:D4:3B:22:13:0A:A9:A7:73:42:54:76:9E:C1:3B:FE:17:1F:A1:E2:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DsiEwqpp3NCVHaewTv-Fx-h4os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/080569-3bb5-46de-82ba-a630c2ea23f9/1/1DsiEwqpp3NCVHaewTv-Fx-h4os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:73:09:0a:72:fd:f0:1e:9a:29:4e:66:12:69:98:4d:56:84:
b9:77:4c:3e:f9:5a:48:78:87:0a:43:65:97:7d:1e:6a:4c:9a:
c6:f7:4f:5f:e1:45:be:c5:e4:5d:c9:b5:69:4e:bc:96:94:00:
18:10:be:f4:87:22:83:96:2d:b8:4c:59:61:e1:df:1b:f0:1e:
fb:94:58:6f:e3:18:86:93:0d:d8:33:00:0e:c1:fc:77:3a:d0:
f5:54:56:22:47:72:6a:44:9e:9d:53:81:00:5d:00:54:c0:a6:
43:80:d3:80:c9:73:4d:68:65:37:ad:f4:96:05:5c:1f:2c:5c:
bb:fb:15:21:ca:dd:2d:e6:49:79:41:f4:b7:62:1e:93:ae:a2:
bb:a6:f7:88:89:3d:e3:b4:42:cb:0e:53:4a:c5:e5:4c:58:76:
f4:75:24:ce:da:ba:7c:c2:7b:0b:6f:8c:cc:b2:e4:6d:0c:1e:
75:bf:49:31:d6:35:84:80:e6:47:96:58:0a:c7:de:8c:56:88:
c1:3f:a5:e7:f4:5c:95:89:8b:96:25:b7:38:9c:ae:33:f9:c2:
3f:2b:0d:ce:f8:e3:34:89:e8:48:20:89:1d:e6:d2:d1:82:7d:
8c:41:ee:4b:ba:2f:0b:6d:29:29:db:9c:38:93:f5:27:4a:df:
12:38:5a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:40:05 2025 by rpki-client