
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier: y/k+fgQuHushMUVgL/rLfLKDAbDRw7bnl6hUp9q9eh4=
Subject key identifier: B6:5E:C3:AB:65:B8:09:E7:0F:67:19:83:1E:11:CB:B8:AD:6F:5A:2A
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial: 019762F097A2CF8FC1089DA88E7CCD222745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number: 0857
Signing time: Thu 12 Jun 2025 07:00:24 +0000
Manifest this update: Thu 12 Jun 2025 07:00:24 +0000
Manifest next update: Fri 13 Jun 2025 07:00:24 +0000
Files and hashes: 1: IhFmVxbE3gn_IPAxvOuH1Dxlo9o.roa (hash: oKXrmB0pSBgjznKzRYUFbiw4D9My9SBHtgqoNaUCBKA=)
2: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: M5xBhbYrTz1VR0eMh8GTRjAQCZXMqsJzQ0YQzo0TdzA=)
3: wbXeB63VhLi_7WMIhOdMpk0lCW4.roa (hash: d7dOr+7PutspTBpcReyCrf+E8CzcxyNVV7Zc8qzo3dU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 07:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:f0:97:a2:cf:8f:c1:08:9d:a8:8e:7c:cd:22:27:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Validity
Not Before: Jun 12 07:00:24 2025 GMT
Not After : Jun 13 07:00:24 2025 GMT
Subject: CN=b65ec3ab65b809e70f6719831e11cbb8ad6f5a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8e:3d:dc:81:a8:1b:cd:0c:9b:12:14:a1:e9:
b3:cc:4e:95:4b:1a:5b:32:49:72:bc:7d:ba:57:66:
3c:5d:9e:9d:82:b4:33:af:91:39:8e:d4:f0:7b:25:
49:f0:0b:52:b4:e6:47:d9:d4:61:17:a7:c6:ad:90:
2a:b1:82:86:ce:48:20:ff:49:ea:72:a4:13:b0:d4:
9d:1d:e8:49:54:0e:8c:51:6e:ae:fa:cd:28:44:8f:
0f:b6:a8:e3:3c:9e:8a:16:0c:9d:1d:e2:4b:b3:73:
0c:12:2e:71:f2:e1:53:e0:a0:8c:b6:d7:ce:ec:2f:
8c:7e:7d:5e:61:99:40:8b:8f:83:4c:65:f0:78:e6:
48:fc:b5:16:58:89:c6:6e:99:8b:0a:ea:fd:8f:e5:
a7:3a:d4:8f:fc:01:30:d8:7f:7a:99:6b:fc:b2:2d:
8e:b0:07:72:ba:9b:06:cc:df:51:5f:f4:b7:2b:51:
e7:18:9b:3c:49:e5:0a:63:77:3b:b5:f3:3c:2f:b6:
35:48:b8:1e:7a:71:26:6d:0c:73:12:c2:f3:34:eb:
e5:a7:c5:df:32:62:35:ab:44:5d:76:33:17:25:ec:
8f:09:91:39:1b:f9:78:06:b7:02:10:b0:67:61:21:
61:82:00:2f:e6:ec:e3:f2:9f:bc:fb:6f:d7:4d:72:
17:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5E:C3:AB:65:B8:09:E7:0F:67:19:83:1E:11:CB:B8:AD:6F:5A:2A
X509v3 Authority Key Identifier:
keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:aa:d2:a5:20:0b:e2:74:f0:36:d5:35:78:91:11:f9:d0:f4:
c0:3d:08:1c:61:02:f6:f0:28:0f:65:71:6e:24:6f:a8:54:d5:
74:e5:45:9f:4f:36:5b:10:b8:90:1f:4d:7f:e5:e6:4d:81:af:
e2:75:3a:46:5e:ff:66:da:c1:56:fc:70:2f:7e:5c:47:04:67:
3c:e0:9c:1d:a9:48:da:32:e4:2c:0b:77:79:d5:6f:58:6a:4b:
7a:d6:96:0d:73:a0:dd:ca:29:38:50:0c:a9:e7:87:01:f2:02:
a7:c0:29:4b:38:3d:26:d4:5e:d2:6c:6e:4b:d4:a7:84:d2:3b:
aa:a7:54:0e:40:54:47:e3:80:e9:6a:c7:f9:a7:a6:44:ac:cc:
fc:cb:ef:ad:6b:87:2d:04:19:48:84:5d:25:2f:69:0f:62:03:
d8:cc:a6:a3:47:fb:4c:9c:8c:57:84:a4:7f:c5:47:e8:ea:a9:
d2:03:63:ef:2d:04:64:a5:cc:bd:64:1b:a0:ea:e5:f1:69:0a:
fc:01:81:e1:b9:db:dc:a6:62:6c:ad:6e:ad:8f:44:ce:38:94:
e8:59:c8:5d:e9:d6:8a:88:bf:8e:60:ac:34:de:94:1c:1f:82:
97:ee:f6:b5:8e:c4:55:9a:92:aa:dd:c5:0c:38:77:43:73:c6:
77:bb:ae:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 16:03:19 2025 by rpki-client