
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
File: rfjUKjroBc6WqpT66fW0QG_0VZk.mft (raw, json)
Hash identifier: nzL/S7t4BX50YdL3gZ4i68EnmXe6dEPyKRXQBguyqEI=
Subject key identifier: 33:D5:FF:E0:89:0C:D0:59:80:05:AE:58:A0:7A:90:11:FE:40:9B:FF
Authority key identifier: AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
Certificate issuer: /CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Certificate serial: 01976629421BB6026CCB286A72E6CE07A708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
Manifest number: 02F2
Signing time: Thu 12 Jun 2025 22:01:09 +0000
Manifest this update: Thu 12 Jun 2025 22:01:09 +0000
Manifest next update: Fri 13 Jun 2025 22:01:09 +0000
Files and hashes: 1: rfjUKjroBc6WqpT66fW0QG_0VZk.crl (hash: 7DmrfUzdE+xsX/5kRmDEUBIJo3XtGQAPHmWonA/TAfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:29:42:1b:b6:02:6c:cb:28:6a:72:e6:ce:07:a7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Validity
Not Before: Jun 12 22:01:09 2025 GMT
Not After : Jun 13 22:01:09 2025 GMT
Subject: CN=33d5ffe0890cd0598005ae58a07a9011fe409bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:25:ef:e6:c3:91:2a:b0:5d:24:c0:99:92:32:
c4:f2:49:88:8a:53:c8:24:84:27:b8:21:ad:b5:a0:
9e:3e:08:0e:bf:59:5e:c9:20:76:d5:8f:19:9f:ed:
75:f6:bc:ee:32:68:d9:e2:2b:a1:09:e3:c3:6c:61:
b1:4c:56:64:be:7e:bd:4e:02:09:6d:4b:77:3b:45:
1c:56:41:c9:48:f0:6d:08:59:ab:ca:83:10:db:fc:
71:8f:20:c5:93:e3:6a:30:12:22:ce:c0:7c:27:ec:
f9:95:60:ba:9f:21:33:50:46:e5:33:db:14:fb:ef:
46:fb:93:d9:29:d8:89:c6:69:2c:b2:40:48:6c:5f:
0c:39:fd:cc:e4:66:11:1b:47:2b:26:74:00:85:dc:
16:5f:bd:df:38:f0:2a:0c:53:bb:ee:fb:53:e4:b2:
a3:64:b9:66:97:85:f7:30:11:ee:37:fd:5c:e4:37:
2b:d2:17:06:24:78:9b:84:27:2c:77:4b:ca:f2:dd:
88:e6:13:52:6f:22:0a:ff:7f:1c:2b:ae:20:f1:65:
13:71:74:05:6d:c2:d1:da:ac:30:a9:29:2b:16:20:
38:69:e2:78:3e:36:b7:f2:20:31:ea:54:da:3d:07:
b3:4b:6e:d0:16:49:69:0e:21:ea:d9:f4:71:af:0c:
cb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D5:FF:E0:89:0C:D0:59:80:05:AE:58:A0:7A:90:11:FE:40:9B:FF
X509v3 Authority Key Identifier:
keyid:AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d6:1d:f4:2f:2e:5e:0e:f1:01:02:33:93:6d:ad:18:fc:5a:
f7:6d:84:fc:80:43:30:8b:68:f3:56:39:06:44:04:24:89:e2:
f6:9d:86:7d:13:64:80:34:61:82:2d:e8:d3:55:35:0d:3f:ad:
6d:4d:4b:22:2b:c9:60:c5:65:d7:4e:bc:30:8e:61:df:50:12:
79:cf:82:c3:b3:3d:da:ef:4a:86:dd:8f:b7:0e:a4:b8:3a:90:
97:8b:63:61:4f:a3:57:78:4e:f3:e7:67:ff:c3:09:aa:f2:cc:
14:0a:b4:51:b9:34:cf:f4:52:96:00:a5:ee:03:bb:cd:57:b0:
38:e7:6f:79:bc:6f:46:d8:5c:1b:d3:c7:f7:fb:93:72:9c:bb:
a9:c8:13:53:64:9d:fd:7d:11:41:ef:24:0d:28:4f:43:6d:37:
8e:58:e1:8e:42:e0:02:cf:24:cc:8d:71:f2:06:03:27:d7:ca:
88:82:5e:dc:02:e9:96:7a:0f:3c:93:38:c3:69:16:c6:b7:68:
20:7e:71:cb:d9:45:19:0d:a1:13:9c:07:4e:cd:7b:41:02:91:
28:c8:40:a7:14:a2:20:08:e4:be:35:db:26:21:2d:c2:f2:bc:
78:a2:a3:bd:ea:c4:f7:5b:70:e1:7a:6e:a3:bb:e7:9c:24:60:
9a:3e:fe:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 05:38:27 2025 by rpki-client