Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
File: mK_pac8OqToOjlfulYjK9VcrOyI.mft (raw, json)
Hash identifier: wRJKt37qA/u7Rg4DJALkiI6VovOeKROMP6W+Pc/OvI4=
Subject key identifier: 9C:0B:06:4C:9A:48:DB:6B:88:AC:68:A9:A6:01:E9:9A:E9:C0:53:23
Authority key identifier: 98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22
Certificate issuer: /CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22
Certificate serial: 019748FA135C9C61973BCEBC51983107A5B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
Manifest number: 03A1
Signing time: Sat 07 Jun 2025 06:00:37 +0000
Manifest this update: Sat 07 Jun 2025 06:00:37 +0000
Manifest next update: Sun 08 Jun 2025 06:00:37 +0000
Files and hashes: 1: 022L9fV8F1ZZ2EE1EuaAsn4eywo.roa (hash: XmLPJO8dC104vud5SObyJBz1K1qN+7X4uqFqIhLIBZ4=)
2: mK_pac8OqToOjlfulYjK9VcrOyI.crl (hash: L1j1fXgTNJsYPSmXQbPU+jf8vxeCBD/Z9jhGr/vUGlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:13:5c:9c:61:97:3b:ce:bc:51:98:31:07:a5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22
Validity
Not Before: Jun 7 06:00:37 2025 GMT
Not After : Jun 8 06:00:37 2025 GMT
Subject: CN=9c0b064c9a48db6b88ac68a9a601e99ae9c05323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:51:94:d4:9d:fe:c4:ba:fd:21:39:21:38:52:
e6:0d:76:e4:33:95:66:94:70:52:3b:6d:ee:13:30:
2f:67:53:82:31:35:6a:67:32:f4:4d:2e:c0:11:ac:
d0:0a:ed:ca:b1:cb:67:de:f5:b1:1e:7f:7c:9d:a7:
d7:20:75:d6:98:8c:19:eb:ca:e4:ae:bc:ba:63:9e:
f0:32:42:d0:65:f1:c4:fc:96:cf:d7:ea:75:b1:1a:
fd:7c:0f:6b:26:8d:ed:38:27:c6:81:58:27:ff:6c:
76:67:35:e7:18:ce:35:65:16:20:f5:c8:ba:de:a1:
16:7b:a9:8d:95:31:2e:2d:53:d5:b2:9b:76:b5:43:
bf:a5:79:17:b9:68:97:be:7a:1c:24:e1:58:44:9f:
a8:39:1e:7e:0c:d9:4e:93:30:a3:58:95:a2:30:d8:
73:68:57:a1:90:19:c0:e0:fd:0e:31:41:44:1a:8e:
99:6d:6d:f9:76:01:5f:92:52:24:8f:08:3b:96:88:
23:c6:c5:1a:9f:52:2f:32:2d:b3:d3:c3:70:11:07:
0a:22:43:b0:89:e9:ae:f5:bc:e0:9a:48:fa:bc:97:
17:8c:bd:08:47:04:4c:79:5e:9f:d3:48:44:74:ec:
54:90:1c:43:d5:2a:a5:11:6a:6a:8a:5e:38:77:38:
91:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0B:06:4C:9A:48:DB:6B:88:AC:68:A9:A6:01:E9:9A:E9:C0:53:23
X509v3 Authority Key Identifier:
keyid:98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:13:34:64:95:88:73:74:f7:be:f2:31:fe:75:42:f7:2c:58:
ce:12:89:4a:59:91:1b:df:ac:a1:fc:41:d2:58:14:3a:52:7a:
b4:f8:a2:84:6c:45:e3:e7:99:1e:85:6b:94:33:c0:59:d7:9d:
b3:e4:f0:6a:7e:62:69:1d:38:99:f5:b3:e0:55:82:a4:a8:9f:
fb:2d:12:c6:f6:c2:db:dc:7a:a2:04:57:14:68:1b:78:c0:4a:
9f:82:2e:c3:00:a8:c6:d3:4a:e8:71:32:92:a2:cf:ae:85:0d:
9d:c5:bb:fb:c6:48:ea:52:89:b4:93:f1:ec:4a:19:ae:9a:03:
c0:c2:b5:58:08:d5:f7:0f:b4:33:ba:f7:9e:94:22:75:d5:4b:
4b:64:9b:ac:6f:ef:04:2f:02:f0:01:d1:2d:2d:6c:d0:d8:32:
99:bc:72:08:ba:60:0b:fe:1f:4c:7a:ce:81:9c:0a:bf:8c:b5:
00:42:0d:b9:59:86:b5:84:8e:d7:10:aa:98:8c:a7:ac:3e:a7:
be:43:c6:26:6e:2b:f2:78:79:7f:34:41:4a:35:be:76:7e:e2:
73:aa:a3:a9:30:1a:c0:c2:28:e1:4e:f0:5a:0d:23:f6:db:3f:
8d:45:55:87:8f:76:84:6e:43:31:56:87:8a:b3:ec:78:75:77:
18:32:06:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:52:40 2025 by rpki-client