Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: bGBI6ci/hg0I3poCFWA5y3ac58PW3gJJTNVnCrzwv4w=
Subject key identifier: 5A:BC:02:5B:18:CC:FD:D4:93:C2:6F:00:D1:FB:F7:BD:28:0E:B5:34
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 01984964ED6B7B048B273E9611D02BA62A6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0C65
Signing time: Sun 27 Jul 2025 01:00:07 +0000
Manifest this update: Sun 27 Jul 2025 01:00:07 +0000
Manifest next update: Mon 28 Jul 2025 01:00:07 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: xq0Z8L29NVWFIK1B2F8JS9qVxhUDnu5lAFC5U7FCDb0=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 01:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:64:ed:6b:7b:04:8b:27:3e:96:11:d0:2b:a6:2a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Jul 27 01:00:07 2025 GMT
Not After : Jul 28 01:00:07 2025 GMT
Subject: CN=5abc025b18ccfdd493c26f00d1fbf7bd280eb534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3e:00:bc:7f:f3:00:b9:d9:4e:15:a6:eb:9f:
75:1d:0c:d0:1b:36:f2:16:3f:63:4c:af:6e:25:54:
db:a0:fa:f8:51:d9:0e:72:27:78:58:1c:14:c9:4e:
a4:88:e9:03:ee:2e:b1:1c:97:b0:83:c5:6a:55:30:
12:68:39:c3:bb:5c:f8:66:c3:fd:b9:1d:35:29:bc:
bb:3c:60:58:c1:a1:43:65:b0:c9:51:4e:da:42:8d:
1a:27:7f:93:42:9b:ce:7d:29:24:4f:c1:14:7e:e8:
a8:56:aa:4f:2c:ce:02:41:18:66:1e:e2:98:61:41:
06:6d:56:2f:fe:7a:37:0f:63:16:1c:a6:b7:6a:28:
c3:ca:c7:f0:71:7e:83:65:82:3d:05:39:58:e2:5f:
ec:1c:e5:8e:93:22:66:13:21:40:2b:98:79:f1:6d:
c7:17:82:aa:c2:5c:45:77:82:b3:bd:b6:70:8a:bb:
8d:b3:19:7f:c4:cb:0d:f5:00:6d:75:f3:8c:ac:f4:
ab:58:ca:87:f5:05:65:58:f9:d0:9b:4d:f5:44:7f:
d8:53:f3:00:0c:4b:e7:7c:86:83:95:a2:33:ef:68:
b6:6f:b1:ef:9a:81:de:6e:23:24:d6:4f:72:cb:a7:
d6:2a:46:b8:db:0e:ba:8c:bc:8f:18:05:3f:df:15:
01:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BC:02:5B:18:CC:FD:D4:93:C2:6F:00:D1:FB:F7:BD:28:0E:B5:34
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:06:13:d5:19:2f:71:68:96:7c:ba:71:03:3f:c5:5b:3d:3d:
40:9f:83:c7:db:bd:80:04:a0:62:a1:a4:3a:54:cc:29:53:37:
d4:b9:1e:f6:24:e8:ab:3f:a5:18:67:84:81:0f:67:67:8c:74:
bf:60:ef:8c:87:a4:f4:89:8b:f7:b0:5f:9b:96:e9:19:82:54:
74:ac:6a:25:75:3e:b6:63:a0:4d:a6:35:e5:1e:44:4c:30:19:
da:35:bc:be:e9:9a:42:ee:cc:79:ac:b0:46:4c:73:b8:60:95:
b1:08:e1:6d:e1:70:cc:c7:53:9e:15:5d:f1:14:c9:16:2d:15:
95:14:ff:10:41:3d:e2:1e:37:8d:2b:97:c0:47:13:16:ea:4c:
a9:4e:d5:3c:59:43:a8:0e:8c:9f:57:75:1f:9a:a4:8c:a4:0c:
12:33:32:29:63:61:20:de:f7:f6:69:f4:f5:d3:8d:71:11:e4:
52:29:59:1e:8a:93:00:2a:81:e7:cf:c5:ff:15:00:de:c9:31:
46:6d:f0:65:2f:6c:14:dd:7d:8d:18:ab:11:74:81:55:42:d9:
e2:0b:6c:ab:7b:fb:87:7b:d7:4d:3d:5d:28:3f:cd:62:7f:d7:
bc:da:9c:31:42:01:48:dd:cc:d2:b6:36:22:5e:bf:91:c4:80:
4d:73:a9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:21:14 2025 by rpki-client