Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
File: cCFOfqyx0k4hHi8l_uStdX5sll0.mft (raw, json)
Hash identifier: onL19wQ5UmqOqE9UdfTucTIWjButxx/eCWktMTEV6FA=
Subject key identifier: 6C:86:B7:AE:6A:2F:10:1B:A6:8D:CF:32:2B:62:63:83:E4:E6:B5:6E
Authority key identifier: 70:21:4E:7E:AC:B1:D2:4E:21:1E:2F:25:FE:E4:AD:75:7E:6C:96:5D
Certificate issuer: /CN=70214e7eacb1d24e211e2f25fee4ad757e6c965d
Certificate serial: 019750EAD5E1422D51B064558E999E0D63C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
Manifest number: 0528
Signing time: Sun 08 Jun 2025 19:00:56 +0000
Manifest this update: Sun 08 Jun 2025 19:00:56 +0000
Manifest next update: Mon 09 Jun 2025 19:00:56 +0000
Files and hashes: 1: Ur1p6KL9NTfFRBrJ7C7-zJCCRXo.roa (hash: lsHocd823a47v2/eGKZz1waiHC7kKATLJJz6RHG9Ic0=)
2: cCFOfqyx0k4hHi8l_uStdX5sll0.crl (hash: 30If2iXCxRNBHa0VHXwcXIGobSitL3EcLXsMsu/0NuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 19:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:d5:e1:42:2d:51:b0:64:55:8e:99:9e:0d:63:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70214e7eacb1d24e211e2f25fee4ad757e6c965d
Validity
Not Before: Jun 8 19:00:56 2025 GMT
Not After : Jun 9 19:00:56 2025 GMT
Subject: CN=6c86b7ae6a2f101ba68dcf322b626383e4e6b56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5d:3c:05:27:26:fb:92:18:35:15:c6:d9:7e:
15:77:69:07:aa:59:a9:47:b3:88:02:5b:82:17:3d:
fc:1f:54:cd:bf:8d:60:65:fd:b6:9d:fd:69:95:ff:
94:0e:d3:ed:46:0d:48:95:9f:d3:18:45:b4:d0:25:
41:c4:4e:ea:15:69:fd:05:d7:ca:ab:9e:8a:a5:92:
b6:b0:d5:d6:e2:25:58:ad:fd:ee:f1:59:8b:7d:38:
ef:4f:bc:29:8b:12:94:9c:6a:a2:8c:19:b2:44:98:
c8:9e:66:13:81:d7:2e:0c:f8:bc:fc:61:33:13:0e:
6a:23:ee:60:47:92:8b:aa:b7:80:24:5d:34:1a:8f:
1f:70:1d:ce:12:97:48:d0:c1:37:3b:de:47:f9:0a:
54:b1:dd:8f:70:98:71:fc:2c:49:6f:6d:dc:b9:fd:
84:13:26:15:23:3e:e6:63:8f:38:eb:15:cf:51:b1:
f7:85:aa:50:9b:ed:a0:22:00:4a:84:b9:9b:0c:c1:
1a:9d:b2:66:3e:4e:fc:cb:cc:9b:8c:d1:0b:8a:9d:
8d:2f:16:b9:e8:d9:fa:08:d5:63:16:e4:f6:19:0d:
59:53:1d:fd:9b:4e:4d:75:95:80:7a:0e:de:5c:92:
85:58:53:2a:ac:f5:db:8b:6c:2a:93:bf:05:d9:4e:
bd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:B7:AE:6A:2F:10:1B:A6:8D:CF:32:2B:62:63:83:E4:E6:B5:6E
X509v3 Authority Key Identifier:
keyid:70:21:4E:7E:AC:B1:D2:4E:21:1E:2F:25:FE:E4:AD:75:7E:6C:96:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:cc:8e:93:f2:6d:96:45:ff:ac:45:86:2c:43:8c:96:62:5a:
56:51:a4:25:1a:1f:f6:12:ad:45:a3:d3:76:00:41:1c:74:c5:
ac:97:35:15:27:25:a0:01:1e:10:1c:55:72:89:a1:6f:c2:0f:
4a:dd:eb:fb:a9:2e:d6:ef:63:39:23:36:15:88:90:45:73:db:
02:04:ed:66:c4:61:91:15:27:f2:2d:66:4c:df:11:84:aa:8b:
87:ad:c7:72:68:41:34:59:e3:b1:99:d0:1a:e0:44:b8:c7:49:
2d:2d:de:f2:25:4c:4a:1c:81:39:1e:cc:52:3a:6e:1f:36:10:
ef:5e:e5:da:ed:34:3a:42:40:37:54:5f:92:b8:82:01:90:cd:
ac:81:85:2c:b5:e6:c3:54:b8:4a:ae:96:3d:1d:e0:c6:bd:7f:
77:84:02:8a:dd:de:74:4e:39:a9:05:fc:a3:de:f6:ae:67:0a:
12:51:13:f2:b3:51:93:ea:0d:b9:38:e1:73:5e:b0:bd:26:99:
04:f6:b7:87:f1:5f:a7:71:ac:81:0b:f9:8e:a7:6c:40:65:e3:
d1:7b:11:93:e7:3a:62:00:00:77:ce:32:23:7a:44:7c:d1:47:
36:06:93:9f:c9:ba:fe:08:64:30:81:04:a1:bc:e4:64:35:74:
fe:65:5f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:40:35 2025 by rpki-client