Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json)
Hash identifier: UbTYQ89H5eF4pMMDMCO9+94Vr4AHyvMnSy8AjNrNx48=
Subject key identifier: 73:D4:DF:15:DB:10:E0:61:F1:55:2F:4C:70:8F:3D:43:F2:4E:D5:F2
Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6
Certificate serial: 019749D5DFF4CF609083E3C6A5B73CBC06DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
Manifest number: 127C
Signing time: Sat 07 Jun 2025 10:00:42 +0000
Manifest this update: Sat 07 Jun 2025 10:00:42 +0000
Manifest next update: Sun 08 Jun 2025 10:00:42 +0000
Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: qOoyv5KAPXmttaDcl+TX97nWt/W6YdJbuJBUnGFb7fA=)
2: Vr2MHbk4BkpwijegPw7svFXxpY8.roa (hash: J4FlYQ16tBtXCX4bdbpdB9oishsKJVSj1Pc1U4pte9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:df:f4:cf:60:90:83:e3:c6:a5:b7:3c:bc:06:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6
Validity
Not Before: Jun 7 10:00:42 2025 GMT
Not After : Jun 8 10:00:42 2025 GMT
Subject: CN=73d4df15db10e061f1552f4c708f3d43f24ed5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:05:4e:36:e4:a1:47:f5:6c:04:80:43:5c:10:
9e:d7:ff:7d:2d:cd:92:33:3d:81:32:9e:47:54:e2:
bd:be:46:68:1f:5a:ef:5f:46:b6:e0:b9:3d:f9:c4:
51:55:31:fd:84:84:d4:73:3a:44:96:52:aa:d7:84:
96:75:4b:07:2c:cb:f1:34:eb:0d:cb:6a:78:a2:9e:
3b:6b:8c:d9:0d:7f:f3:04:e2:3d:91:08:a5:68:15:
1b:38:6e:e8:d3:6e:78:6e:69:59:50:f3:5f:c0:13:
24:33:3b:ae:14:40:6d:08:58:df:bb:c3:28:cb:a3:
b9:bd:c0:be:73:ae:da:10:21:e9:93:64:14:e7:94:
b0:97:6b:bd:3e:42:ae:ba:24:52:c8:94:46:9b:dd:
cc:e5:df:62:49:36:ac:b9:35:84:8e:d4:f8:00:d1:
11:09:b5:65:58:3c:48:12:b3:ce:25:1f:a1:76:d2:
1e:e2:7e:af:b0:2b:26:f5:5a:07:5d:40:96:e9:09:
6f:c7:8f:3f:58:7c:bb:92:ed:d9:70:6f:eb:11:d0:
d8:7d:6b:1e:d9:db:3f:72:5f:97:57:38:79:46:67:
74:03:3f:e7:5a:c5:c0:b2:a6:7f:97:e7:d1:92:f1:
50:c7:c7:71:2d:7b:eb:aa:7f:18:07:77:dc:b1:ca:
ca:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D4:DF:15:DB:10:E0:61:F1:55:2F:4C:70:8F:3D:43:F2:4E:D5:F2
X509v3 Authority Key Identifier:
keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:96:d6:0b:8a:8a:a9:fc:6c:e5:b0:76:21:c9:00:a8:bb:2e:
f3:90:8d:5c:52:49:b5:ec:f7:59:57:25:e2:83:6e:3d:79:00:
bd:b8:79:dc:4b:c1:31:fe:e0:39:2f:bd:c4:8e:82:cb:8b:d8:
84:66:ca:8b:4a:55:e6:22:6e:c0:ad:01:28:cb:6b:57:78:d5:
ca:a4:82:4e:b3:ab:5c:78:fb:9e:a0:af:14:e2:73:71:18:e8:
50:d3:78:11:e2:93:35:5a:82:3b:d3:a0:09:0d:df:ab:7a:2b:
7d:30:e6:5c:db:0c:d9:7b:13:2a:d8:3e:c9:be:f5:f9:b9:0a:
b8:b5:d0:d1:31:40:6e:dd:f4:b0:ad:66:3d:ce:d1:81:9b:71:
52:3a:8e:90:ae:ff:03:7f:22:87:9b:7e:13:32:7d:a3:71:32:
70:f6:00:f8:1d:8f:9e:88:0b:c2:4d:7b:64:2c:80:e8:86:0c:
72:06:7d:88:a6:29:d2:f8:e1:41:5c:dc:82:ed:86:96:4d:2d:
31:e9:80:7b:27:79:97:b9:3f:69:60:97:d5:2c:16:f7:09:17:
1c:fa:0d:47:41:0a:f1:5e:74:cd:f6:98:2f:6c:f4:5d:69:c5:
7f:0e:4a:24:ff:4a:69:21:8b:06:8b:30:3c:6f:94:ff:da:66:
0c:77:40:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:04:53 2025 by rpki-client