Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
File: 9rkcLAjwDWdj0unmosRCETDz3b0.mft (raw, json)
Hash identifier: P3hDcwe7ljYsvczGPdGGI2rSA9XsPBaHqtkuTJWUU8g=
Subject key identifier: CE:E7:74:8B:4D:32:ED:11:4B:F1:69:CE:82:E6:1F:4A:6F:F5:01:CD
Authority key identifier: F6:B9:1C:2C:08:F0:0D:67:63:D2:E9:E6:A2:C4:42:11:30:F3:DD:BD
Certificate issuer: /CN=f6b91c2c08f00d6763d2e9e6a2c4421130f3ddbd
Certificate serial: 019748C2E68C6CEEAC0A55A5D8538F25DAB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9rkcLAjwDWdj0unmosRCETDz3b0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
Manifest number: 0229
Signing time: Sat 07 Jun 2025 05:00:21 +0000
Manifest this update: Sat 07 Jun 2025 05:00:21 +0000
Manifest next update: Sun 08 Jun 2025 05:00:21 +0000
Files and hashes: 1: 9rkcLAjwDWdj0unmosRCETDz3b0.crl (hash: hlXlGVzw9G/3BkolXiM/y9SEcsltkXnD1IhTUdb9U9I=)
2: N9ZAaiCE9aK-MVoBAkGyVQBVSz8.roa (hash: Lgl9Qg3vfXwyIJqunbOTrkAFiRdS7QjwGWUohli4wbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9rkcLAjwDWdj0unmosRCETDz3b0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:e6:8c:6c:ee:ac:0a:55:a5:d8:53:8f:25:da:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6b91c2c08f00d6763d2e9e6a2c4421130f3ddbd
Validity
Not Before: Jun 7 05:00:21 2025 GMT
Not After : Jun 8 05:00:21 2025 GMT
Subject: CN=cee7748b4d32ed114bf169ce82e61f4a6ff501cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b2:2e:30:45:25:04:da:32:81:fe:c3:cb:ab:
4d:43:41:34:e1:f2:3b:f7:d4:f0:6e:26:e1:41:54:
d9:49:48:3c:25:0a:d7:90:42:62:b1:b5:d0:0c:60:
5b:af:f6:35:7a:12:cd:6c:26:60:29:f8:5b:f2:c6:
5e:07:0d:14:3c:37:5a:72:6e:76:f9:6d:86:64:e1:
85:2f:f4:7a:3b:75:7d:2f:74:2a:1b:98:27:54:10:
98:36:f5:0e:67:b6:3d:00:de:c1:54:db:27:ce:0d:
11:9a:b4:7c:2e:7c:02:1e:77:2d:35:fd:12:69:d4:
cb:66:f1:02:a5:39:45:8b:95:1d:a1:14:ba:59:51:
6d:ab:97:e8:d9:80:37:2a:f6:06:f8:35:d2:07:a8:
63:7f:c5:01:85:43:e8:82:cd:d5:d5:ce:6e:ab:f3:
e9:14:c7:24:54:50:90:c1:17:60:c1:f4:fa:c1:73:
33:41:b3:d7:e4:21:2f:54:ac:f9:3a:50:92:2e:61:
e0:b0:57:7c:20:b4:d4:24:a2:c9:9e:d6:07:da:9a:
55:cd:98:8d:ee:52:89:50:8e:cb:c7:4f:0d:88:46:
64:a0:7f:2f:39:c8:87:d4:07:5e:e5:3a:3e:04:ea:
43:6d:bd:63:44:74:6d:47:94:e4:1a:63:e2:74:07:
64:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E7:74:8B:4D:32:ED:11:4B:F1:69:CE:82:E6:1F:4A:6F:F5:01:CD
X509v3 Authority Key Identifier:
keyid:F6:B9:1C:2C:08:F0:0D:67:63:D2:E9:E6:A2:C4:42:11:30:F3:DD:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9rkcLAjwDWdj0unmosRCETDz3b0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/8da5e8-8544-49d9-a83f-8c91f96be625/1/9rkcLAjwDWdj0unmosRCETDz3b0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:a0:7f:5f:6f:d3:af:bb:84:90:ae:1b:0e:db:fc:5b:ac:4c:
18:df:3a:f8:9b:2a:88:89:f6:d3:91:64:a3:f2:25:47:e3:8c:
7d:93:e0:6f:7d:a5:15:39:f9:db:85:bf:fe:be:04:c0:83:33:
41:35:12:ca:30:e9:c1:48:6f:3e:00:46:c5:27:f8:19:2a:44:
a6:ca:c0:45:70:1f:d8:3f:d6:24:21:51:43:0e:b4:9e:75:e8:
cc:20:17:32:46:a4:fa:53:3e:6f:e6:16:b1:2a:ef:fe:99:99:
c2:6a:77:58:b5:a9:af:81:15:79:55:e6:71:da:6e:66:5a:43:
7d:db:8b:9a:ff:af:44:38:3b:bb:f2:89:9b:a5:39:ff:3f:0d:
c0:2e:19:fc:cb:18:e5:11:11:dc:0b:99:79:fe:f3:3c:22:c5:
61:f3:b0:04:1d:34:96:45:80:5d:5d:7c:16:b7:b6:a1:68:ab:
7a:0f:c5:ed:bc:68:74:87:b8:55:d4:aa:6e:ad:d3:d4:6f:c9:
e3:df:fe:94:cf:3c:64:5a:c7:71:d1:8c:df:74:02:4e:03:40:
a2:f0:de:6f:32:f8:86:d0:00:99:db:10:ec:2c:63:75:af:68:
b0:52:a4:83:d9:91:ff:13:81:89:ac:7e:7b:11:2a:83:d8:de:
74:cc:4b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:31:48 2025 by rpki-client