Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json)
Hash identifier: RFB69EIh/upNghu80/T93MMmJOALGd9bOqQOV09Tqn4=
Subject key identifier: 74:32:64:56:00:36:8D:11:27:DD:CA:9A:8C:E0:92:C1:54:6C:95:76
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 01974EC5C20478B6604D94E3C3D82EE07677
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 09:01:12 +0000
Manifest this update: Sun 08 Jun 2025 09:01:12 +0000
Manifest next update: Mon 09 Jun 2025 09:01:12 +0000
Files and hashes: 1: d1djO8IkOk-DAQF-B5CVMX1fEOA.roa (hash: ObQ/agHgncZ7LWNprlr11FO8JEBhRFid61XXKnLc8Hc=)
2: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: EdzQXs17dR9Su26j9Pmym5PI2KN70w0wiVbeowXJ71I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:c2:04:78:b6:60:4d:94:e3:c3:d8:2e:e0:76:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Jun 8 09:01:12 2025 GMT
Not After : Jun 9 09:01:12 2025 GMT
Subject: CN=7432645600368d1127ddca9a8ce092c1546c9576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:60:fa:23:b9:a2:4b:fa:15:53:b6:b8:49:81:
63:99:d3:58:d2:41:14:14:f5:c5:a3:96:ec:d5:d0:
21:1a:b6:05:82:43:79:41:77:fb:4e:4f:a9:2e:64:
bd:f9:54:c5:79:1b:3a:24:f7:89:ef:5a:03:c2:dc:
61:de:a2:8a:5d:54:27:47:2f:38:fb:57:a6:eb:93:
3e:3b:c2:56:00:56:ae:18:7d:07:20:c7:6f:43:9b:
13:5b:c1:60:a5:dc:90:7e:93:7d:2a:a7:c7:03:d4:
cb:07:33:07:64:1c:0f:15:44:71:13:e3:bf:21:73:
1e:09:38:16:f1:46:23:c2:35:c2:04:1a:8d:5e:4f:
23:77:18:ba:cf:e7:28:ec:32:5f:09:f9:8a:95:b6:
cf:5f:6c:f9:27:8b:59:e3:e9:c0:39:7d:da:f9:fc:
0e:bd:b9:34:b0:45:aa:ef:ac:1d:e4:51:1e:8a:c8:
e4:71:6c:1a:5e:08:b4:a2:95:44:a4:45:70:18:b4:
a2:5b:dc:d8:cd:f2:e5:c2:e3:34:d2:a1:b2:fa:72:
0f:88:56:cc:0e:3d:e5:13:ff:97:ff:19:f0:7e:0c:
bb:e4:7a:82:43:85:71:1a:aa:f0:37:79:27:e5:8d:
00:c9:ab:ce:03:1d:ac:f7:36:76:20:d4:a3:8f:8a:
87:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:32:64:56:00:36:8D:11:27:DD:CA:9A:8C:E0:92:C1:54:6C:95:76
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:32:c2:b3:b8:8e:d6:62:de:1c:fc:42:32:b1:f0:fb:78:e0:
31:ce:58:3e:3b:a7:2a:5c:41:c2:41:1c:14:c7:3b:7c:4b:7c:
ce:77:01:53:9f:35:58:eb:55:a2:05:ae:a0:96:17:7e:d6:1b:
f4:53:db:9f:78:37:7a:84:1a:13:c8:7b:7c:1f:32:91:05:7e:
3f:22:02:23:34:ad:46:9a:89:29:d0:1e:24:42:57:2e:5e:62:
ff:cb:45:f9:2e:e2:a8:a0:18:34:13:94:f5:54:ac:1e:2c:1a:
fe:64:99:77:75:06:dc:5c:05:e1:9f:fd:f9:35:9c:76:5b:f3:
ba:f1:80:ee:ad:f8:1a:cb:61:3f:b8:50:24:c5:df:31:a3:41:
7e:ab:1d:cc:64:09:cf:8a:54:5e:4b:60:e0:69:fe:6f:33:ba:
61:97:82:89:18:f8:93:38:b9:0a:cb:6d:b4:93:c4:75:6e:be:
cd:9c:74:0d:17:88:7f:be:c3:a8:d1:a1:c2:b5:fb:1b:36:61:
2d:96:d3:fa:a8:8e:6a:20:d6:b2:1f:82:09:2d:29:44:b4:d8:
a2:71:a6:c4:50:e0:95:da:98:ba:16:3b:9e:dc:4b:a1:13:d7:
65:6e:8d:bf:34:07:32:58:f8:f1:37:4d:13:4e:a8:f7:87:df:
9c:f2:bc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:13:17 2025 by rpki-client