Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: N+rAZgvESwKVn0PekJa/VZxSqe2DGtkLjjWcK5p1TZs=
Subject key identifier: 60:03:87:7A:F3:00:C7:CC:83:4B:A6:28:65:96:C6:E8:4A:53:6F:FC
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 019748C3058AB465A22657B07D4377934D26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 05:00:29 +0000
Manifest this update: Sat 07 Jun 2025 05:00:29 +0000
Manifest next update: Sun 08 Jun 2025 05:00:29 +0000
Files and hashes: 1: W3jKuxB_RcgliKc6SOrb-E9lQW4.roa (hash: flRFJj0cuA1GRJx+AJmEhdqQRbsG/XKga+ETKIMZCEI=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: oMpzb82po9beqJK97RT7hNLh8n3phTY/k7LPMnBpiqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:05:8a:b4:65:a2:26:57:b0:7d:43:77:93:4d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: Jun 7 05:00:29 2025 GMT
Not After : Jun 8 05:00:29 2025 GMT
Subject: CN=6003877af300c7cc834ba6286596c6e84a536ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b7:65:61:63:ee:05:74:03:81:45:2e:80:65:
27:68:db:a7:26:0a:7f:9b:12:ff:91:dc:25:2a:a7:
e9:54:f4:ff:29:58:f9:55:01:34:6c:c6:98:f2:db:
3c:10:fa:73:1d:82:d0:76:08:d4:f2:fc:65:08:49:
5e:c8:40:ee:50:86:bb:36:a6:d4:9f:32:81:22:d9:
d8:52:39:8f:b8:b6:35:d0:03:98:71:71:1e:ab:a9:
fe:86:c6:1f:83:07:bf:0a:fe:0a:76:45:1c:74:8e:
3f:55:b9:b3:a9:18:18:00:d9:46:77:d0:5b:53:e7:
71:9e:e2:2e:b5:7c:8b:8c:de:54:20:c1:f0:dd:e8:
23:df:87:d5:d5:96:39:7f:fc:7e:d0:d6:a5:e6:9b:
6f:f5:b1:83:24:fa:28:6c:31:b9:72:2c:ad:00:bb:
04:f3:0b:94:96:8d:7a:f4:6c:c8:bd:25:d4:5a:ad:
0e:92:48:c8:49:42:27:c2:5c:df:8c:64:67:8e:0f:
92:66:8b:be:e8:0a:85:7a:6b:4c:be:c2:a6:33:97:
b3:a6:29:a1:8b:06:f2:98:60:c3:24:d7:b8:54:e9:
53:c2:b0:21:3f:4e:ba:0e:a0:b5:4e:e3:4f:19:d4:
ad:59:93:a3:a0:4d:9d:4b:1a:50:6b:34:0a:17:b4:
55:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:03:87:7A:F3:00:C7:CC:83:4B:A6:28:65:96:C6:E8:4A:53:6F:FC
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:d2:d0:36:eb:d1:56:76:1e:2c:92:92:37:9d:a5:e0:11:37:
84:50:85:8d:cb:45:f4:c2:c9:1f:38:6a:dc:96:9f:28:db:dd:
c2:07:6d:19:7e:d5:06:c2:69:9d:5f:05:8b:17:5f:03:27:28:
58:84:9d:72:e4:9b:10:4b:aa:25:83:d8:95:6e:4c:f6:c2:71:
47:fb:99:86:e9:4e:56:76:09:cf:86:a5:a9:5c:43:cd:2b:41:
59:e9:27:c2:53:cf:3b:70:95:78:18:67:e2:e7:24:8c:04:4d:
dd:94:22:23:bf:31:31:7a:21:92:d6:39:9a:47:cb:15:8a:e5:
df:e2:d8:06:a2:5d:1b:c9:8a:30:d5:72:c1:4c:0b:fc:81:05:
c8:bc:30:d4:f7:63:8f:0d:cc:a7:fa:b2:67:a8:51:2a:a7:fe:
37:ac:11:a5:bc:0f:99:7c:b1:e2:f6:e1:69:ae:5f:2e:cf:71:
ca:3f:12:1d:8f:a4:a7:80:38:4c:98:f8:30:33:ae:e9:62:95:
3e:a2:0e:50:9d:e4:6a:65:c8:a1:f6:bf:bf:6c:59:48:63:bb:
41:c9:1e:0c:96:67:6d:f5:b1:82:34:2e:8b:7e:32:2c:9c:8b:
81:7a:bb:79:b9:bf:c4:24:ab:41:32:b2:52:eb:2e:46:43:af:
3a:49:b9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:10:12 2025 by rpki-client