Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: 849uu1JNtyApk1BWTI96H07S4zxLKg8peLfBOF4o1QA=
Subject key identifier: 0E:B8:1C:77:B1:0E:43:23:DE:D4:D2:DB:1D:AF:36:E7:4C:DD:5E:DC
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 0197469D971DEE4EE9777B43E2B6C4D02FBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 13C8
Signing time: Fri 06 Jun 2025 19:00:22 +0000
Manifest this update: Fri 06 Jun 2025 19:00:22 +0000
Manifest next update: Sat 07 Jun 2025 19:00:22 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: 7vAQ2XOBHIXWn5KJVB/cld2Ir7broz2EveEBsM9vthE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:97:1d:ee:4e:e9:77:7b:43:e2:b6:c4:d0:2f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Jun 6 19:00:22 2025 GMT
Not After : Jun 7 19:00:22 2025 GMT
Subject: CN=0eb81c77b10e4323ded4d2db1daf36e74cdd5edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a1:95:55:b1:3d:94:7b:d9:52:8b:11:38:ed:
26:2e:99:42:9c:a5:32:15:d2:ec:84:9c:bd:d6:6f:
bd:38:81:18:21:77:89:e7:0c:c0:0f:94:52:c0:03:
1f:12:71:55:96:95:2b:d2:ca:bc:ed:23:b0:32:95:
17:75:b9:d9:61:5a:69:0c:c1:3d:75:03:43:1c:e3:
e6:bb:54:4e:af:27:ba:5a:69:a8:14:b0:41:54:b2:
01:c6:81:aa:fb:36:08:ca:6c:78:b9:f4:39:0b:e3:
de:39:c7:93:fb:c5:42:fc:9d:e2:74:3f:40:fd:21:
7d:3f:b9:e2:07:84:92:55:6b:03:a5:fd:dc:4b:74:
83:7b:63:20:16:4e:bc:96:ff:64:19:e0:f9:59:0e:
35:2a:0b:e6:f0:85:93:13:c8:7b:7c:f1:58:2e:1c:
10:3b:e8:58:fe:d1:07:ab:1b:e3:81:57:56:25:d0:
04:f1:99:65:e0:2f:20:45:28:2a:14:5c:c7:f4:17:
bb:53:a8:11:5b:12:04:4c:bc:71:e4:bc:bf:6d:10:
75:7e:2d:65:cf:9d:8f:74:11:79:9c:d8:86:1d:0c:
81:b4:4a:b3:d3:2a:fe:a9:be:68:bf:24:fa:6a:9c:
77:2b:61:e2:46:04:7c:3a:47:d1:ae:08:68:b1:68:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B8:1C:77:B1:0E:43:23:DE:D4:D2:DB:1D:AF:36:E7:4C:DD:5E:DC
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:6c:f8:b2:de:47:c3:ad:8c:cd:a6:c0:ba:94:3a:a5:bd:11:
f2:33:93:d9:c8:5f:7e:c0:11:38:1f:07:dc:a0:f4:b9:75:91:
8c:a3:28:46:b6:27:d9:ea:7c:1e:9f:98:21:5c:c8:7b:99:d5:
61:4a:a9:2f:0e:d4:69:d4:4e:c7:1e:ec:e2:b2:fd:25:66:e9:
ed:f5:10:f6:5f:af:f5:0a:bc:0b:4f:3b:72:97:ee:4b:99:15:
8b:fb:6f:ad:ae:fb:07:0f:96:57:4d:08:91:53:5c:de:6c:60:
59:0a:90:b4:3c:91:73:6b:de:3d:82:77:2b:f3:7f:23:bd:09:
cd:95:1f:36:f2:04:a2:da:fc:65:98:f8:74:61:90:84:39:36:
3a:61:82:8a:b5:1a:9e:23:93:3c:6f:58:bb:f6:21:b8:94:a3:
87:f3:fc:78:1d:e6:5a:8e:9f:eb:94:6d:08:13:c1:3e:08:ec:
a2:e7:03:1d:a1:9a:69:83:9e:b7:ce:17:83:52:9b:47:89:bf:
72:c4:9b:a8:f4:74:fe:e2:40:1c:09:ba:ba:79:a0:e1:34:d4:
c2:e9:cb:c6:0a:69:b7:48:07:79:02:16:3f:df:08:0c:bb:b3:
18:ec:eb:84:83:8f:d5:d3:4e:49:c2:25:0b:06:a0:e1:5c:b5:
e2:21:58:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:13 2025 by rpki-client