Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json)
Hash identifier: cz15dH6GYXI+kq3bEW7JiHBxUz/2UMRuUqOPgoBbaQA=
Subject key identifier: 83:7D:11:CE:D9:19:E4:C2:34:93:F5:0C:90:3D:33:FF:FE:02:CD:A7
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 01974EFC58746BB635059CA2938B1D3F8189
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
Manifest number: 1344
Signing time: Sun 08 Jun 2025 10:00:49 +0000
Manifest this update: Sun 08 Jun 2025 10:00:49 +0000
Manifest next update: Mon 09 Jun 2025 10:00:49 +0000
Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: uJjhEtQZ27KQlx1P4uojx5S/jo/SzLCexxLwv2BGPKU=)
2: tE13-Z8TEXFI2N_Q3eslEjXwYJ4.roa (hash: 7axnrMAdFOe7EcvPvTZA4mgDnvv0sfD7w1s1AvMo3bY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:58:74:6b:b6:35:05:9c:a2:93:8b:1d:3f:81:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Jun 8 10:00:49 2025 GMT
Not After : Jun 9 10:00:49 2025 GMT
Subject: CN=837d11ced919e4c23493f50c903d33fffe02cda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b7:41:09:7d:2c:47:fc:04:9e:bf:76:bc:42:
3b:6c:d5:6a:23:a7:2b:8e:37:25:b5:de:16:91:d1:
2a:5b:5a:f2:bb:f3:36:89:0a:e5:7a:bc:c9:50:4b:
93:49:a7:30:eb:ab:7b:56:be:2c:9e:ab:00:b4:01:
78:e9:ef:a7:bb:b7:7d:1c:e9:b6:9e:0d:e3:d4:6a:
d3:82:05:e9:99:40:1d:c9:b6:ed:44:d6:7f:97:66:
a3:5b:9b:ba:b6:d3:23:a6:ef:8d:3b:30:dd:83:80:
5f:fd:0c:d6:00:d0:7c:b3:04:95:ab:68:2a:a5:21:
b3:c9:81:ea:a7:9e:04:b3:f1:8d:81:f5:f3:df:a4:
8e:3b:a3:c8:03:77:13:ba:9d:4c:4a:15:71:fc:6a:
18:a8:df:4d:2a:ae:9e:77:e0:c2:99:2c:b5:61:5e:
b8:a8:eb:09:eb:4c:81:7a:73:94:5b:1a:4b:1c:ca:
c7:e0:91:ca:ab:5b:cf:41:6d:a2:33:3b:84:e2:29:
4a:fe:3b:96:45:00:c8:28:cf:5f:d8:d5:b8:3e:9e:
3c:28:93:26:2b:1a:ad:20:e6:37:fe:22:29:22:76:
15:15:bd:6a:39:20:5a:fa:ed:e2:84:e8:cc:f6:0a:
18:95:52:0c:00:86:1b:b6:42:a4:cf:f2:fe:f3:e0:
99:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7D:11:CE:D9:19:E4:C2:34:93:F5:0C:90:3D:33:FF:FE:02:CD:A7
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:f5:30:2d:18:d0:0b:25:1e:6c:26:d5:74:85:b7:6e:19:2c:
4c:9f:fa:77:29:91:04:00:cd:89:a4:7b:90:d0:0d:33:65:4c:
6b:31:76:7a:6c:97:aa:b9:bc:27:05:38:11:18:53:d9:cb:c8:
a6:3b:03:05:ba:6c:34:d9:c2:fb:a1:7f:66:9f:37:af:e3:3c:
7a:e4:49:a3:ce:5d:24:79:11:12:5a:dc:60:73:03:b8:6b:43:
bb:96:95:2a:c8:25:ad:e7:aa:32:77:37:1b:d9:54:b2:9e:2d:
33:13:1d:e8:37:b9:f7:65:33:41:40:01:c7:8b:4b:98:b1:a6:
73:a2:15:73:4c:ba:50:37:61:c9:3f:28:d6:ea:16:5e:67:4a:
ba:23:91:6e:fe:73:dc:0a:ab:a7:21:67:df:90:d7:6d:c4:48:
3e:8f:6e:e3:97:a2:b5:40:6e:c2:12:f1:df:11:b3:b9:2f:05:
16:36:ca:55:38:1a:35:fc:0d:a3:7a:e1:c8:34:4d:dd:20:30:
39:72:26:1c:20:10:6f:3c:f6:1f:b0:6e:83:74:4a:37:05:25:
50:46:90:c9:c6:48:8c:e7:74:c6:56:d0:bd:2c:00:45:67:87:
72:dd:16:34:be:86:c0:36:50:a3:39:4d:4e:88:57:ce:6a:7c:
65:f0:89:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:29:38 2025 by rpki-client