Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: +8rIhzQkPaDzThFQGWbb5sCfpOoOHPVopK1+nOEZG1U=
Subject key identifier: 28:CB:55:04:1B:9A:18:2D:0C:7A:F1:8E:DC:F3:33:AD:7E:82:27:AB
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 01975158DB944EFBB784824EDBE2E48F65B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 109D
Signing time: Sun 08 Jun 2025 21:01:06 +0000
Manifest this update: Sun 08 Jun 2025 21:01:06 +0000
Manifest next update: Mon 09 Jun 2025 21:01:06 +0000
Files and hashes: 1: 8ioI1P3WjfVGZeocJzXjV25zEAM.roa (hash: R5/GZ5yigab2BnvLmrfCDXR0klk9Au0FN2fkvOAY+V4=)
2: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: mh/DKr+6OuLq70QYlYX1BYoGbIeFAEW524n87T3cKKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:db:94:4e:fb:b7:84:82:4e:db:e2:e4:8f:65:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: Jun 8 21:01:06 2025 GMT
Not After : Jun 9 21:01:06 2025 GMT
Subject: CN=28cb55041b9a182d0c7af18edcf333ad7e8227ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cc:52:83:83:4e:03:11:a2:57:a8:55:07:46:
24:8b:b4:99:dd:ef:00:f4:c9:2a:96:26:ca:55:0d:
22:6d:8f:87:1b:17:42:e0:d1:ad:4c:96:c2:ce:32:
64:ba:52:92:70:c4:d1:92:76:87:99:da:70:99:32:
d9:28:89:07:e3:96:0b:fb:ff:dd:4c:b6:e9:0c:cf:
6a:d8:51:4e:fc:aa:e1:8d:bc:f3:7c:b5:d8:47:15:
a8:dd:3b:26:d0:74:eb:75:67:fa:01:40:91:fc:c8:
c0:53:e6:1f:14:18:27:c3:54:eb:79:da:46:93:54:
cb:f2:bc:04:7b:e8:a7:c2:51:93:3f:67:7d:fb:c6:
95:c7:b2:ff:a8:d4:03:c9:b1:2d:3b:6b:9c:16:a0:
17:ac:d7:61:8f:b7:63:b8:92:b7:63:05:99:79:44:
5b:d9:3b:4f:33:4b:3e:d1:4c:da:74:87:12:5f:6d:
e7:96:91:16:13:fe:1e:19:7e:0b:ad:f4:27:bc:4a:
ad:64:79:46:b1:df:51:51:e0:c9:cd:3c:8c:62:83:
c9:fc:71:93:1f:98:fa:ec:ab:11:05:c3:7a:5a:bc:
4e:64:61:6c:40:c3:28:91:c8:1e:85:d7:b4:f0:3d:
ec:4b:9f:fb:bc:7d:df:1e:9b:b4:7c:aa:4d:c1:61:
c7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CB:55:04:1B:9A:18:2D:0C:7A:F1:8E:DC:F3:33:AD:7E:82:27:AB
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5d:0f:e4:54:aa:5f:81:6f:e1:72:0d:5e:0e:8c:7a:93:90:
a8:f2:6c:d1:77:ee:18:7e:ab:83:fb:82:35:f9:76:71:18:c3:
39:9d:c6:3c:10:7d:68:23:fe:bf:f1:ce:ad:a2:de:84:73:e1:
0c:50:72:18:85:8e:da:8e:09:21:8e:0e:c8:11:b4:52:73:a8:
23:44:8b:63:c7:89:5f:80:41:92:be:52:f9:65:7a:f9:a8:ff:
4b:99:99:13:93:85:00:e2:9c:c5:ec:e9:f2:f4:18:06:81:79:
95:62:6d:23:2a:8e:63:ad:77:b6:80:4e:d9:f8:de:3b:87:17:
ac:bc:87:aa:16:ef:02:86:62:b2:8a:4e:f7:24:96:62:6b:b2:
a3:20:db:fb:e8:bf:97:ec:7b:b8:ff:64:95:8b:92:27:a4:4d:
46:28:14:5d:8d:65:85:d5:90:ce:4c:dc:7f:13:78:0a:0c:66:
11:2c:67:13:6d:d8:10:5d:b2:32:bd:5a:7e:05:cd:96:a4:59:
f7:6b:4e:22:82:24:ec:52:bd:bd:0e:46:a0:71:28:78:72:8a:
00:e2:46:fd:97:20:2d:93:f7:f7:fa:39:47:83:28:73:00:01:
e8:4b:af:da:ad:43:9a:04:da:31:f5:1f:2c:73:c0:19:a4:7c:
92:19:df:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:29:38 2025 by rpki-client