Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
File: DkOg3wWaUlGkALWh8TIboA0xINI.mft (raw, json)
Hash identifier: ifT+Vig0WEMKJok1dos2wIpwA5dIDP/8nj+r98uOsFU=
Subject key identifier: 38:5B:CC:1C:1A:5D:B3:AE:28:42:AD:89:5D:8E:FA:15:ED:22:5B:18
Authority key identifier: 0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
Certificate issuer: /CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Certificate serial: 01974B56AA5333259A87B6D578D5E591BF1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 17:01:00 +0000
Manifest this update: Sat 07 Jun 2025 17:01:00 +0000
Manifest next update: Sun 08 Jun 2025 17:01:00 +0000
Files and hashes: 1: DkOg3wWaUlGkALWh8TIboA0xINI.crl (hash: 9JmR2AeLLn6fRxnNX/u0L5e+6f0ZUnWp6BdfQvyvJ1k=)
2: meyQlZ2V2fFm7jP19tS1SnwZU8o.roa (hash: Rjzn7WIqlB0uqbC7++KFiY3Pm+Td1rmouk6fxkElj30=)
3: u8p2k1kowabt5V010HcHbUdny4A.roa (hash: +zIIZMzEVP0HgE88S7aeA3JokmowyYpTKNzs1+R3c2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:aa:53:33:25:9a:87:b6:d5:78:d5:e5:91:bf:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e43a0df059a5251a400b5a1f1321ba00d3120d2
Validity
Not Before: Jun 7 17:01:00 2025 GMT
Not After : Jun 8 17:01:00 2025 GMT
Subject: CN=385bcc1c1a5db3ae2842ad895d8efa15ed225b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:59:f5:6b:be:f5:4f:8a:37:02:5b:60:ca:
91:61:d5:ed:e2:10:db:80:c7:7c:62:00:ad:b3:44:
c9:81:58:03:dc:d7:61:f3:9d:6a:87:c0:d9:6b:30:
4b:c8:3a:cd:ba:94:b4:30:62:91:e0:c5:9a:6c:e1:
b7:91:c2:cf:cc:50:4c:66:1e:fb:0c:dc:8b:aa:8c:
1d:b2:ce:45:e8:7b:c8:81:ef:64:39:ae:8f:81:54:
3f:b3:bf:6a:7e:a1:48:ef:6b:a8:39:3e:01:f5:8b:
af:e7:6c:e8:3c:df:65:2e:97:9a:f1:e0:5b:d4:02:
0e:57:3d:f3:27:ed:60:0c:6a:4d:99:da:3e:5a:14:
86:63:d4:96:62:c7:17:d5:59:f8:51:b0:7f:cd:4c:
32:3f:77:05:30:e4:ee:33:48:10:ab:86:f3:a1:5e:
f7:29:19:dd:f5:08:e7:68:3f:e2:50:80:10:92:9a:
bb:f1:15:88:ad:4d:8e:62:f9:4d:af:20:be:fa:0e:
79:f6:94:73:f1:d6:80:2a:75:07:70:7b:c9:1c:d6:
6d:3b:ee:34:a1:ab:ca:df:15:38:27:da:7e:1a:d9:
7f:38:03:08:18:f3:fc:22:8e:ab:ea:8b:fa:bf:3d:
4e:9e:b6:ba:d6:f4:0a:7c:93:e0:f6:fe:14:16:37:
ab:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5B:CC:1C:1A:5D:B3:AE:28:42:AD:89:5D:8E:FA:15:ED:22:5B:18
X509v3 Authority Key Identifier:
keyid:0E:43:A0:DF:05:9A:52:51:A4:00:B5:A1:F1:32:1B:A0:0D:31:20:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkOg3wWaUlGkALWh8TIboA0xINI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0bb33b-68f7-4748-84ac-004fe433c7c8/1/DkOg3wWaUlGkALWh8TIboA0xINI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:a2:1b:da:60:b9:d0:a5:b5:6b:af:36:6f:95:66:e6:a0:1d:
51:2f:07:04:b4:87:ba:3e:7b:98:a1:97:a9:5a:4e:d5:c7:cd:
f4:21:a9:04:86:14:52:aa:9b:91:9c:99:d4:1d:1b:9c:b5:7c:
99:88:b7:c1:2d:c4:79:f3:16:30:a3:70:a7:cd:aa:97:e2:66:
a5:15:ac:c1:99:40:4d:e7:e0:e3:d8:7c:a8:bb:96:12:7f:31:
a8:31:a0:84:fc:20:e1:08:7c:90:c8:a5:3f:fc:e2:86:23:18:
19:e4:1f:ff:a5:bd:d6:9e:9f:96:60:19:46:a8:b1:27:3c:4b:
6d:dc:64:52:3a:cb:5b:cb:9e:39:3d:23:27:9e:45:d5:1a:c7:
6d:69:47:02:75:e5:00:27:ba:2c:c1:ae:cd:88:4d:49:f7:3b:
c6:cf:7c:e4:09:88:8e:0e:4e:9e:3c:6d:34:30:30:85:29:ba:
7e:22:93:05:cd:80:db:e1:eb:99:85:30:9c:3c:8e:bc:6c:29:
54:2a:de:cd:ff:d1:7c:a0:fa:66:e3:05:51:52:9c:e0:c3:5d:
c9:d2:e6:37:c7:82:b0:ab:c2:dc:8c:e5:f6:d6:fc:32:44:2e:
41:5c:ea:d2:80:f5:59:8f:4a:ee:3c:d1:2b:f4:89:cb:e3:50:
89:0f:33:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:17:08 2025 by rpki-client