Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
File: 81ROkj2IO6zkqj9-9wByr-NRHyg.mft (raw, json)
Hash identifier: I6oqz68oayLs3toatRAIStSJsonFKVlay7k5zKn9xhY=
Subject key identifier: 67:42:12:C9:B0:D2:17:16:0A:87:36:14:B0:BC:25:13:5A:05:1A:63
Authority key identifier: F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
Certificate issuer: /CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Certificate serial: 019750EA5B9F14CFAD2036EBFE640CB7245A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
Manifest number: 02BF
Signing time: Sun 08 Jun 2025 19:00:25 +0000
Manifest this update: Sun 08 Jun 2025 19:00:25 +0000
Manifest next update: Mon 09 Jun 2025 19:00:25 +0000
Files and hashes: 1: 81ROkj2IO6zkqj9-9wByr-NRHyg.crl (hash: tFy6xq441fsSDIYEsgr53uQ8USHZiQGO6cy8iQTLpnY=)
2: Gv4EnRb88MY5aVLEY17_OZ0Wl08.roa (hash: WkS34pHH/XzAUtEopuzXUXT2LtpQyPdLz2PYfITDjLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 19:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:5b:9f:14:cf:ad:20:36:eb:fe:64:0c:b7:24:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Validity
Not Before: Jun 8 19:00:25 2025 GMT
Not After : Jun 9 19:00:25 2025 GMT
Subject: CN=674212c9b0d217160a873614b0bc25135a051a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:71:e3:e7:88:81:5a:9b:0c:02:0d:ba:35:97:
8e:46:73:59:7f:43:9c:04:d5:62:a4:b1:0f:75:65:
45:94:43:8d:51:c3:8c:4c:a5:1a:a3:2f:ef:27:26:
81:8d:74:2a:3d:8a:d5:7c:b9:70:d0:55:d2:e4:92:
85:f9:83:51:a7:99:f6:65:51:36:aa:a7:80:35:93:
d4:49:3c:70:5a:e2:2a:20:95:87:7f:5f:83:c2:55:
25:73:2a:3d:66:e1:08:73:bd:6d:13:35:0b:0a:7c:
f1:e7:b3:6b:80:2f:41:e8:44:04:2b:ec:70:4f:fd:
42:77:33:e7:9c:b8:e0:86:f2:51:42:05:4e:a4:0b:
d9:3b:bd:ec:8e:fd:c5:f6:94:16:7f:45:b2:13:ee:
da:33:39:e9:85:e1:34:96:c6:b1:e5:96:70:d8:00:
06:b6:dc:68:5b:81:56:a8:37:0f:bc:c2:eb:32:35:
0a:03:0d:70:0f:be:41:b7:35:0a:70:ab:57:8c:43:
3b:78:82:00:83:89:84:66:d8:f6:cf:6a:46:7d:87:
be:45:b1:c1:1d:90:40:3c:42:44:55:a0:89:28:7d:
96:91:f8:2e:17:38:8a:70:ef:f7:20:70:cb:b5:8b:
07:1a:54:00:17:a0:fc:39:fd:7a:30:c4:4e:36:65:
ae:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:42:12:C9:B0:D2:17:16:0A:87:36:14:B0:BC:25:13:5A:05:1A:63
X509v3 Authority Key Identifier:
keyid:F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:ef:88:37:5b:87:3c:e3:a9:ac:f8:b5:ed:ac:44:17:17:b5:
1c:13:ca:2c:00:87:72:d6:e2:41:8b:6a:72:a2:12:ad:33:c0:
df:ab:a0:ee:7b:5e:cf:71:c2:32:c9:c2:31:0c:d3:9a:25:52:
6f:39:39:8f:b2:da:78:bd:dd:ee:00:56:86:68:e1:93:9f:18:
7e:83:cb:87:3c:f0:12:ad:30:48:3e:ed:17:f4:69:5f:6f:c8:
cd:13:d8:8f:d5:61:a8:a7:4b:81:4f:fd:3b:c1:02:c2:38:e8:
a3:84:77:22:37:36:4e:12:8b:0f:32:cf:ff:9d:29:e1:8e:64:
e4:0f:a1:35:63:ad:cc:68:39:bb:4e:5d:34:f3:38:79:8b:ab:
09:b8:8c:0a:20:21:92:2c:11:05:b4:f2:b2:b9:6b:7c:a0:e9:
58:2b:b8:02:4d:1d:df:ea:f6:b4:30:02:81:a7:9f:68:66:80:
82:64:f9:f0:d4:68:14:e7:e3:af:3a:7f:ad:69:39:ac:61:31:
30:c8:01:34:90:2c:3a:c0:08:59:c7:ce:21:e0:8a:c5:5e:76:
77:89:22:16:f1:a1:fc:ac:8f:c9:11:d2:a4:eb:66:04:63:2a:
81:96:34:66:a4:4b:ed:88:6f:da:8b:d3:e3:24:64:45:30:6a:
25:36:73:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:35:35 2025 by rpki-client