Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
File: 0ccPHzPFgdt4oUm8htc5zcfOJqc.mft (raw, json)
Hash identifier: 3c28uaCPGB3k9uX5FXjipiaiklDxMfb6wu1Nss1RcpY=
Subject key identifier: 08:5D:3B:7F:5C:44:9E:DD:CB:2C:11:D1:E2:83:CB:78:B9:07:43:4A
Authority key identifier: D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
Certificate issuer: /CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Certificate serial: 01974A43A2FF994F71E05BF2B3E44C9D1868
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
Manifest number: 0413
Signing time: Sat 07 Jun 2025 12:00:36 +0000
Manifest this update: Sat 07 Jun 2025 12:00:36 +0000
Manifest next update: Sun 08 Jun 2025 12:00:36 +0000
Files and hashes: 1: 00FQiMdjUQle4zFwKcr67i8rD5o.roa (hash: vAwK94aBbQ1WLXSLlow/JuiTreizX+JgqV5lHzwa2Js=)
2: 0ccPHzPFgdt4oUm8htc5zcfOJqc.crl (hash: suSZX69dt/uPljKDwRnmcxdDFE3Mcr4V12v2NYVhY3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:a2:ff:99:4f:71:e0:5b:f2:b3:e4:4c:9d:18:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Validity
Not Before: Jun 7 12:00:36 2025 GMT
Not After : Jun 8 12:00:36 2025 GMT
Subject: CN=085d3b7f5c449eddcb2c11d1e283cb78b907434a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a6:81:f9:74:1c:d2:42:b1:27:c5:65:a2:e4:
b8:78:12:52:83:79:e9:3d:34:53:f2:51:c5:40:f6:
e9:e1:4a:55:cd:07:04:5d:fd:5d:59:3a:40:53:18:
96:4f:37:1c:47:15:48:8e:3f:cf:0b:d4:8c:4d:ba:
b6:f9:b6:3a:c8:66:c2:71:fe:07:46:58:ed:55:1b:
7c:6e:0c:94:ed:34:96:d1:69:65:bc:77:93:12:2f:
b2:fb:16:45:1b:42:47:69:b4:ed:8f:c6:47:79:7f:
56:0c:24:b5:fe:85:fd:20:de:0f:3e:58:c4:ab:ac:
bf:1d:d2:ae:f8:5b:6f:86:aa:1b:5a:c1:be:b4:46:
74:e2:6d:fd:41:3c:a1:c8:f6:fc:0d:6b:f0:06:3a:
fc:35:d5:10:8b:90:a5:68:a0:cb:fb:06:11:ab:07:
54:56:1d:27:1c:9a:e0:d4:dd:9a:15:ae:61:1d:be:
85:f6:cc:97:7e:db:8a:6d:b7:aa:59:db:10:5d:bd:
14:21:4c:7c:27:19:2d:24:e4:56:4f:c0:35:c9:87:
03:7d:a2:8e:08:d8:8d:1a:34:40:15:5b:da:c1:a2:
40:b0:8b:40:a5:aa:c1:45:81:fd:47:01:11:ba:3f:
28:86:5b:92:a4:d5:48:59:11:74:8b:07:f9:30:44:
23:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5D:3B:7F:5C:44:9E:DD:CB:2C:11:D1:E2:83:CB:78:B9:07:43:4A
X509v3 Authority Key Identifier:
keyid:D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ea:83:7b:fc:74:18:66:ef:9b:dc:ec:bb:14:66:c5:ef:a7:74:
68:e4:e9:49:f4:d6:de:45:30:09:e1:80:50:82:88:41:5f:2a:
44:97:33:db:cd:18:c8:93:2e:5c:f3:1a:37:2f:e4:d3:b7:3b:
b4:2d:90:3e:da:70:b1:a0:67:37:b6:2b:57:90:9a:2a:70:ee:
70:41:de:70:09:94:b5:65:3f:79:47:2c:b7:b8:bd:12:4e:25:
8f:b7:83:bc:ef:71:16:9b:46:4a:e6:de:5a:37:de:18:df:26:
10:6a:3d:7e:44:31:a5:27:5f:6c:01:1a:26:5a:bc:74:61:59:
f1:c6:0d:a3:8c:f0:60:0e:69:e2:18:82:49:d5:19:29:89:fa:
45:10:58:d9:d0:4a:c8:a0:35:b5:1f:90:25:56:4d:c6:2b:cb:
38:ce:aa:b5:b7:53:01:2f:e0:32:d5:92:15:84:dd:40:06:e7:
02:a4:d3:52:32:cf:74:ae:b6:ed:06:12:85:8a:fb:40:6d:53:
e5:ca:65:ff:df:ff:56:b2:3b:87:72:ba:60:15:ad:c6:46:ef:
09:f1:7b:4e:29:06:fd:c6:1e:b0:7c:23:d4:be:19:cc:83:07:
9e:0d:49:85:8e:18:1e:e6:23:c5:b2:e1:50:00:f0:3d:b4:a3:
9c:57:ec:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:56:07 2025 by rpki-client