Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: 2U0scF4Zi9Cd9LjvMiDj0E+U8fnI0wjC4yesHxXe6EA=
Subject key identifier: 2F:40:D0:08:DB:85:C2:CD:AC:3B:D1:96:27:F3:D5:12:80:E9:94:B4
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 019752A1EF84385F41970CE9E2D87AC419EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 115C
Signing time: Mon 09 Jun 2025 03:00:33 +0000
Manifest this update: Mon 09 Jun 2025 03:00:33 +0000
Manifest next update: Tue 10 Jun 2025 03:00:33 +0000
Files and hashes: 1: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (hash: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=)
2: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: hXytoHz2Bokl/SDIqpjHchwXzQXml+vaCtJn4T69W+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a1:ef:84:38:5f:41:97:0c:e9:e2:d8:7a:c4:19:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Jun 9 03:00:33 2025 GMT
Not After : Jun 10 03:00:33 2025 GMT
Subject: CN=2f40d008db85c2cdac3bd19627f3d51280e994b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:a7:b9:53:cd:7c:55:73:75:8a:59:75:a9:
d4:26:ca:9f:ee:41:04:09:4a:18:03:bc:a6:69:fa:
c1:51:cd:2a:6b:01:75:39:c1:c8:f3:f5:1e:bb:9b:
1f:13:8c:2a:cb:de:f0:3a:1f:4e:98:d6:f8:09:38:
d4:63:51:30:b1:f3:77:71:b0:bf:43:3d:a2:61:9a:
dd:62:00:e1:3c:dd:95:f5:40:96:eb:43:c0:fa:4f:
7a:95:6c:db:ff:4e:8a:b2:07:f7:c2:b8:bb:f9:ce:
2c:a0:d4:fc:3d:0c:90:d8:ed:df:a7:be:ac:5d:39:
cb:96:e1:dc:c7:72:a1:4e:77:bb:e2:4e:c7:fc:9e:
9c:c9:98:7b:59:c4:79:27:68:3c:d4:7b:24:29:84:
b5:64:c4:2a:72:b4:6b:5a:79:b6:fe:ac:3a:92:94:
76:1e:5b:1d:52:28:65:8d:3a:ef:14:6d:86:c5:bc:
36:2e:d4:78:fa:a9:f3:50:68:59:58:b0:39:50:05:
4b:9d:ad:ed:50:ce:df:24:1c:3c:2f:76:bc:66:55:
11:63:95:7f:b3:49:fa:e2:14:22:36:ae:ed:fa:37:
cc:f7:38:ea:df:7b:23:de:21:ab:71:78:2d:0b:95:
11:34:c1:6d:5b:a7:cb:ec:f2:05:09:f2:e9:0d:5f:
22:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:40:D0:08:DB:85:C2:CD:AC:3B:D1:96:27:F3:D5:12:80:E9:94:B4
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:81:d5:59:72:ea:c7:65:5c:ee:38:95:26:1d:00:5e:67:6a:
57:08:bf:77:7d:5f:ee:eb:f1:d6:5e:e6:2e:f2:15:55:73:29:
1b:ee:e9:fb:c1:53:93:81:f0:a5:b2:66:14:3d:c2:42:cb:10:
92:dd:5f:d0:fe:b5:96:fb:f9:3a:30:f5:5a:1c:f3:06:11:10:
cd:a3:d8:b7:bb:1d:d7:3a:db:5c:2e:11:6b:03:3f:96:5c:c3:
8e:02:c5:d6:63:3a:da:9d:41:16:b7:70:cb:8f:55:15:49:02:
73:d7:81:16:81:38:90:43:68:f4:6e:6a:a7:56:b5:b6:e0:84:
f2:d4:bc:92:7b:d8:8a:4f:ed:dc:2d:53:b1:d9:92:5e:9a:49:
d1:4f:12:63:3c:bc:01:de:1a:66:be:f7:2c:e0:cb:78:24:5c:
21:56:d7:e7:9f:e0:29:5e:6e:13:a5:51:c9:d5:c1:b7:b9:b8:
4d:45:94:79:c1:26:2c:58:86:c0:8e:fc:4c:36:18:14:fd:b6:
de:3f:12:a3:3b:46:0b:40:66:47:97:ba:25:ec:00:27:01:0b:
06:93:71:aa:19:26:a5:50:8b:ad:1f:b2:3c:0c:01:0a:e1:70:
b4:9e:61:5b:93:02:a1:0a:12:fb:f0:69:0f:6d:28:86:91:ef:
49:0b:ee:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:30:48 2025 by rpki-client