Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: L1RNDeMYbWs3syIqTE/nqy0/bbBDs6IoajhtMpdW4k4=
Subject key identifier: 08:6C:29:FB:21:52:81:1C:B5:03:AC:2D:B2:1B:9F:15:04:27:D2:4D
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 0197469E447E78E1E287636EDB9D1B57E868
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 157A
Signing time: Fri 06 Jun 2025 19:01:06 +0000
Manifest this update: Fri 06 Jun 2025 19:01:06 +0000
Manifest next update: Sat 07 Jun 2025 19:01:06 +0000
Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: ganr7SPXqSm//EAivOUlF8WmIGW7QkxuPJGVoYXC1bk=)
2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:44:7e:78:e1:e2:87:63:6e:db:9d:1b:57:e8:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Jun 6 19:01:06 2025 GMT
Not After : Jun 7 19:01:06 2025 GMT
Subject: CN=086c29fb2152811cb503ac2db21b9f150427d24d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ba:b4:15:8e:ea:33:80:d3:af:3e:94:41:23:
62:7a:4a:ce:00:53:82:66:8b:c6:98:77:73:42:0a:
f6:54:fc:19:a6:d8:3f:8d:c8:8f:87:6c:c1:0b:73:
12:96:68:1e:37:e7:2c:08:e5:c0:8c:1a:67:22:06:
be:44:2b:00:98:79:43:f3:91:92:e7:27:45:c9:4f:
06:39:60:d9:f6:f9:ef:a0:07:2d:71:58:83:c6:d6:
69:df:19:d5:e7:07:26:8d:fd:65:41:f5:d1:6a:d7:
a0:17:4c:eb:75:4d:4d:66:5c:6f:4a:c7:a8:65:bd:
45:c5:93:30:46:87:07:84:58:a9:19:f8:72:35:a4:
75:c0:8f:48:d3:eb:54:48:0a:2c:2a:f3:6c:e2:6a:
d4:18:a1:34:c1:b7:8e:a5:d2:8d:3d:b1:d4:13:7f:
2e:3d:98:28:49:96:31:d7:b7:6b:44:13:71:00:3d:
4b:f6:ce:05:cc:4e:29:b3:a0:01:dc:c5:26:08:e5:
ac:35:df:e0:58:e9:e5:54:11:bc:1e:d3:3c:35:2b:
13:52:72:12:ae:d8:8f:9f:80:fd:9f:53:c1:3c:e7:
74:25:b1:de:e2:b5:77:eb:3b:cd:ec:73:70:12:4c:
f8:c3:d2:48:df:29:fe:65:0b:f4:16:7f:d1:24:b8:
77:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:6C:29:FB:21:52:81:1C:B5:03:AC:2D:B2:1B:9F:15:04:27:D2:4D
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:2f:9c:3e:da:fc:05:36:4b:58:83:ff:84:70:1e:c9:4f:09:
40:e6:05:26:76:6b:00:d2:1d:e2:bb:89:cc:ed:ad:b2:a7:cd:
19:e3:30:34:f0:65:be:37:60:00:60:2d:37:7e:71:a6:cd:40:
af:e9:b1:47:82:42:f0:bf:11:9e:33:12:32:1f:4a:d5:3d:d7:
9a:2b:7c:6d:63:31:72:47:b9:4d:ea:e8:c0:e0:5e:73:51:a0:
ff:70:3a:56:c7:ef:58:a1:83:25:27:87:4e:2a:11:48:41:92:
78:57:8e:61:6e:98:c3:3f:75:2c:8a:67:6b:e1:08:54:5d:74:
26:c5:a9:de:b8:67:77:1b:7d:cc:fd:9d:9e:29:8f:f0:03:a7:
3c:84:6d:12:1b:2e:79:8d:2c:64:a3:a9:5f:6d:ad:18:45:17:
52:3e:76:42:2d:89:71:f0:5d:24:b6:6c:5d:d8:28:14:02:71:
42:b4:34:42:38:f4:5d:3a:17:17:72:fd:28:26:71:2a:c2:ac:
74:ef:25:2f:bf:e6:57:72:dc:48:4c:05:4f:4a:07:a0:3f:76:
e0:85:ff:6c:26:57:ac:17:7c:c4:be:7c:4e:6c:4a:57:7d:5f:
d5:d3:86:2d:f5:4d:9b:62:d8:8d:2e:2b:16:3f:a4:44:08:a7:
f2:08:19:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:57:01 2025 by rpki-client