Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
File: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft (raw, json)
Hash identifier: a/Gy0ppXH8O0kpryGzvBKuQt368IS/LMCWxGiyLRwJ8=
Subject key identifier: 00:DA:F7:0B:C1:79:19:AE:95:E3:06:58:D4:D2:86:EE:F2:11:C1:6F
Authority key identifier: D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5
Certificate issuer: /CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5
Certificate serial: 019746301011247841148686CA47CF6F7D04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
Manifest number: 75
Signing time: Fri 06 Jun 2025 17:00:44 +0000
Manifest this update: Fri 06 Jun 2025 17:00:44 +0000
Manifest next update: Sat 07 Jun 2025 17:00:44 +0000
Files and hashes: 1: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl (hash: Qotv+z/luquBA7VxnUEMRjIQ0LnJXKU71mVEewDwUwg=)
2: BcelUhdXxacAQU97XkdcwjtJzVg.roa (hash: XXQpfHpkHgSaCtL3AHunwK9n34HNeTtzIRJIEYTmJHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:10:11:24:78:41:14:86:86:ca:47:cf:6f:7d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5
Validity
Not Before: Jun 6 17:00:44 2025 GMT
Not After : Jun 7 17:00:44 2025 GMT
Subject: CN=00daf70bc17919ae95e30658d4d286eef211c16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ca:1a:01:de:ff:78:f3:cb:75:e4:64:f4:f4:
ac:d1:45:db:20:43:82:8e:32:f0:37:4c:ae:9d:5f:
5d:4d:b4:32:d1:3e:4f:77:83:1e:fd:53:b6:44:9b:
3c:75:bf:af:0e:13:f8:64:42:eb:ef:93:ab:4a:15:
cd:39:7c:d7:7b:27:c0:72:ad:22:35:32:8f:9a:a4:
f1:73:f8:9d:29:78:ef:cb:37:fe:8d:f2:8b:10:f5:
4e:c3:2c:8f:2d:e8:c9:03:ac:ab:1c:dc:87:13:1d:
a2:33:5e:9d:73:41:6a:1f:e1:2d:fe:f6:59:d8:24:
26:d8:5c:94:3f:cf:8c:aa:2c:d5:69:fa:9b:9f:fa:
c7:65:91:84:c4:37:f7:3d:e7:5f:52:46:ea:20:70:
56:b4:43:c5:0c:ef:0a:c9:00:14:0c:b6:cd:a0:ab:
89:e2:a1:c4:b1:a5:2c:ac:09:b2:38:13:4d:cf:44:
c9:00:a2:66:41:b9:26:bd:57:75:85:5a:63:b4:ff:
0a:35:28:45:8b:9f:bf:81:46:10:0a:bd:09:13:d6:
8b:b0:0d:a6:c5:64:a0:f5:7c:9a:2c:d4:1e:36:28:
a6:a1:ba:2f:83:b3:a2:74:c4:7d:7e:95:ba:67:b6:
ba:29:f0:fb:40:fa:de:8b:c4:dc:49:8a:ce:c1:0b:
41:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DA:F7:0B:C1:79:19:AE:95:E3:06:58:D4:D2:86:EE:F2:11:C1:6F
X509v3 Authority Key Identifier:
keyid:D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:2b:ec:e1:fe:1f:b7:21:87:e6:4c:ac:be:32:e8:89:07:40:
a8:74:ac:78:f4:f4:5d:3e:0a:de:00:42:a9:6a:39:c9:4e:9e:
45:4f:4d:65:2e:b2:ed:2b:f9:6c:81:fd:e2:9f:ba:22:a9:54:
00:0c:d7:9f:23:c1:f7:6b:87:21:92:ef:09:57:08:b1:6f:7a:
12:28:13:ce:5f:97:e0:b4:23:c9:8a:5a:9c:6a:08:0d:1b:ad:
96:4a:08:f4:89:2d:1a:5e:39:bc:e7:89:a1:3b:4a:3c:41:d9:
5e:85:b8:f5:6a:a2:91:a3:f8:f1:37:1b:08:4c:20:be:f4:4b:
cf:a3:46:d5:34:d6:86:63:07:3b:1c:5f:7c:e7:ee:7d:b3:ab:
39:7e:16:1c:3e:c7:96:92:9c:6c:e8:1e:f8:c5:40:c0:e0:38:
7e:d1:76:c0:d1:3f:da:c8:c6:9e:df:55:98:12:fb:2d:a4:2e:
20:8e:da:8e:6d:7a:82:03:55:52:b1:19:1f:da:1d:e5:69:c0:
42:f2:6c:b0:fc:09:06:21:9c:d3:c8:c1:94:e4:ab:1a:20:1c:
0d:2a:3e:f9:33:7b:45:e9:61:d3:99:6c:c5:7d:f1:80:f1:f1:
d1:02:5a:fc:5d:aa:6b:eb:87:9b:17:13:49:c9:7b:97:be:4a:
b2:13:7b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:45:39 2025 by rpki-client