Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: 7toUXP/CPVAUJSonveZnGRfOc+JFMuP3nkCdoQ8wqnk=
Subject key identifier: F1:E7:01:3D:8C:E1:31:03:58:47:14:7D:E3:58:CC:48:DB:05:9C:37
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 0197507C81A900B3B50CDCD71BD6EC9D9822
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 1268
Signing time: Sun 08 Jun 2025 17:00:26 +0000
Manifest this update: Sun 08 Jun 2025 17:00:26 +0000
Manifest next update: Mon 09 Jun 2025 17:00:26 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: jY7qP50kQ6vVUHdcj2aYWrQ2s4oINE11cSr1YHe10P0=)
2: h5ibvBXljsm0_9K-AnuxEpyWzoI.roa (hash: SvGB7aqcdXdN/Cdk0NHyr1xHsC5MuHnt2HID1mkRiq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:7c:81:a9:00:b3:b5:0c:dc:d7:1b:d6:ec:9d:98:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: Jun 8 17:00:26 2025 GMT
Not After : Jun 9 17:00:26 2025 GMT
Subject: CN=f1e7013d8ce131035847147de358cc48db059c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5d:eb:f0:f5:6e:a3:36:81:61:08:ed:38:75:
6e:b4:37:6d:7b:4d:11:2b:7c:aa:fb:72:b8:49:c0:
75:f0:46:00:9f:09:6f:9f:9e:af:2b:74:7a:c5:d9:
f8:a6:75:2d:19:31:05:6f:e6:0f:e2:ff:1f:88:d1:
45:f4:13:08:6f:28:ce:a9:fa:db:55:0f:40:b3:2d:
9b:0e:14:eb:d0:f3:88:3f:6e:29:11:8e:12:f7:e0:
b8:40:3a:b5:cb:2b:f2:73:7f:cb:75:8c:16:cc:bb:
fc:e3:41:1f:b9:da:0f:8d:de:73:4d:0d:b2:4b:28:
b0:c5:45:71:c1:56:34:b9:2b:06:55:3d:81:a7:0e:
6e:26:bf:8d:6f:95:49:77:28:9a:e3:b1:20:76:ee:
dd:4f:af:81:28:39:8a:05:13:64:ab:0c:25:9b:3d:
bf:b4:59:28:6c:cb:00:5c:5d:b4:94:06:0f:75:e3:
b0:d7:e5:ee:1f:b2:e9:7c:d5:e3:f2:a7:9f:ec:1c:
63:87:40:10:ea:ea:8c:fe:1b:be:0e:41:8f:b4:31:
04:f5:fa:cb:22:a2:d2:da:10:ef:75:6b:93:d4:8b:
31:19:ec:30:f9:60:94:25:42:a1:6b:33:2e:d2:f0:
13:60:80:d8:3e:51:cc:aa:f8:01:ec:39:66:40:a3:
ec:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E7:01:3D:8C:E1:31:03:58:47:14:7D:E3:58:CC:48:DB:05:9C:37
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:0c:b1:2e:a7:0a:c9:fc:f2:59:7a:46:79:2a:88:3d:b8:df:
57:b9:fc:d7:ef:f6:50:07:3b:ca:c0:de:a9:95:ec:34:d1:43:
b3:35:0b:42:b8:23:34:c3:ec:9e:ff:78:d3:ec:e3:58:fb:10:
58:66:34:da:be:09:9a:78:1a:ce:8f:c6:a2:2e:5e:af:95:3d:
f7:be:5e:31:7e:80:24:a6:f3:cd:b3:a5:16:64:9f:ff:90:cb:
04:d1:2f:98:cb:51:21:50:8d:55:40:ca:c1:09:a6:a8:ee:86:
66:30:43:46:b7:22:1b:5e:24:f5:c1:22:0b:7c:16:43:ff:93:
15:c3:c8:96:1d:aa:59:b3:9b:22:8d:91:1b:f1:a5:bd:42:36:
54:c9:37:79:6c:9e:5d:dc:4f:c3:cf:54:f0:c2:3c:3a:19:18:
0b:d7:c1:b5:f5:17:60:0f:12:a6:a3:c3:64:45:23:08:34:ac:
0d:11:6f:4d:aa:1d:e9:f8:ba:cc:2b:5b:96:19:dd:72:a1:a0:
65:ac:12:e2:11:05:4f:aa:63:16:25:da:00:05:55:59:3b:c2:
51:bc:5e:1f:c9:bc:a4:44:60:f7:cb:8f:05:7f:5b:bf:e4:89:
9c:80:b5:f0:f5:06:46:90:b4:56:6d:e8:c2:66:03:bf:5d:36:
0a:3f:ca:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:13:58 2025 by rpki-client