Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
File: bMdYWreoPsgLVauVe_N7eR52UBY.mft (raw, json)
Hash identifier: 3Xe+I5gZ4y370lW/3mf3zrdmxYSQhoNjENRicLKsRAw=
Subject key identifier: B3:FD:D4:8D:FD:E4:17:E8:02:08:AE:F2:11:25:A7:72:B4:7F:2D:32
Authority key identifier: 6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
Certificate issuer: /CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Certificate serial: 019753EB7F3D1666D18F24B280A6FD9AC181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
Manifest number: 12ED
Signing time: Mon 09 Jun 2025 09:00:31 +0000
Manifest this update: Mon 09 Jun 2025 09:00:31 +0000
Manifest next update: Tue 10 Jun 2025 09:00:31 +0000
Files and hashes: 1: JJLEui4261ZXJVAJCMhhZuF8jH8.roa (hash: /ixKOls/TcJQuO85TTUBz1567wbeYHBB+Wz+IfsDjR8=)
2: bMdYWreoPsgLVauVe_N7eR52UBY.crl (hash: CTtb/x3fU1hVgWzvbAhIX0MPVVfns+jt4QxNowfucLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:eb:7f:3d:16:66:d1:8f:24:b2:80:a6:fd:9a:c1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7585ab7a83ec80b55ab957bf37b791e765016
Validity
Not Before: Jun 9 09:00:31 2025 GMT
Not After : Jun 10 09:00:31 2025 GMT
Subject: CN=b3fdd48dfde417e80208aef21125a772b47f2d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e1:ab:e8:81:ae:8b:97:c8:ff:99:9c:fb:c0:
e7:80:88:03:91:57:fc:e6:0f:1e:93:15:bb:e6:f7:
27:b3:b6:7c:2b:0d:31:8e:29:0e:e7:b3:97:ed:5f:
8a:76:ca:11:43:40:75:0d:f8:23:f1:e8:fe:43:42:
32:a4:e8:1c:2b:90:e8:0c:5a:be:d2:d4:03:61:7d:
6d:47:7a:34:54:0e:48:75:cc:f8:6f:80:2a:71:aa:
a5:15:64:11:80:40:1f:48:d5:7c:66:38:66:3d:26:
16:e3:01:c2:19:c1:07:ff:5b:cd:e0:24:f9:15:11:
b6:46:78:fc:df:e2:79:44:36:42:1e:54:d2:d2:ab:
db:dd:58:98:48:55:db:eb:f0:7c:9b:aa:4f:30:61:
3d:a6:3e:be:0b:a5:86:cd:f9:34:71:5e:c9:9a:15:
b5:f9:0b:0f:3f:85:5d:34:54:a1:43:55:af:c6:3c:
a1:f1:11:5a:85:f1:75:8f:e6:a6:59:27:93:fe:ab:
78:87:dc:38:95:9e:27:cf:49:7f:ab:f3:09:67:cc:
6d:c5:8a:e6:fb:db:a4:c4:cc:4f:dc:ea:34:f1:7b:
fa:8e:4d:0a:43:dd:5f:78:32:19:8e:b8:6e:30:e9:
d0:ef:f5:3c:17:e8:fa:38:f9:b3:f6:af:7a:4a:4c:
fc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:FD:D4:8D:FD:E4:17:E8:02:08:AE:F2:11:25:A7:72:B4:7F:2D:32
X509v3 Authority Key Identifier:
keyid:6C:C7:58:5A:B7:A8:3E:C8:0B:55:AB:95:7B:F3:7B:79:1E:76:50:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMdYWreoPsgLVauVe_N7eR52UBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/706f41-0531-43df-b1e9-6f86d0b7e3e0/1/bMdYWreoPsgLVauVe_N7eR52UBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:99:a0:74:7d:39:4a:c5:b2:e2:26:69:c0:98:89:2e:4a:3c:
0a:06:02:32:3a:b4:ec:b1:50:1f:ca:49:d1:ee:b4:9a:01:64:
33:31:d7:b9:f3:05:ba:4c:89:6d:a7:2d:fc:13:7c:e2:c4:de:
9f:c6:4b:bd:5e:7e:0f:73:a9:2f:60:00:9b:c0:74:27:ae:0a:
ef:ed:40:96:f6:9d:f0:de:c2:90:42:0a:0f:e8:4a:26:f2:3d:
86:bc:16:70:90:91:84:fe:4a:d4:69:9a:ad:7f:48:78:bd:cd:
ae:4d:a1:13:be:0d:37:45:40:79:20:b5:0f:35:95:15:50:66:
8c:94:7d:67:db:f8:c8:1b:6e:2a:34:12:46:33:c4:5e:08:a7:
1c:ee:3d:87:74:5e:d7:5b:b8:35:89:bc:4a:f6:f5:3e:d3:14:
32:30:2f:d6:2e:e3:fb:10:b0:04:51:cd:0a:79:dd:5b:bb:e1:
80:4c:1e:d2:28:64:ec:bf:a7:9f:9e:f6:e2:c0:14:74:3f:99:
fc:0f:c8:23:71:d7:00:5c:03:e0:a9:14:0e:98:43:24:15:d8:
93:4d:5b:be:f2:e5:92:b4:49:3c:d0:c0:99:16:86:5b:e6:dc:
18:bd:d3:9c:90:63:00:45:6b:04:3d:f4:ab:f7:81:6c:6f:f6:
51:30:f8:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:34:16 2025 by rpki-client