Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: 0YjE/YkkvbzR5GMtBAS6k4T4puTTMDKd3nR2XBvW5f4=
Subject key identifier: B9:E5:B5:2F:BA:68:C0:84:29:91:A8:14:6C:BE:25:7D:78:D9:57:E7
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 0197481E3D68B83083C9C50F7EA246834FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 150B
Signing time: Sat 07 Jun 2025 02:00:30 +0000
Manifest this update: Sat 07 Jun 2025 02:00:30 +0000
Manifest next update: Sun 08 Jun 2025 02:00:30 +0000
Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: 5RC38tgz1LJ9LnGUk4PMhkzvlEAQGaaS9QCEt94hFZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:3d:68:b8:30:83:c9:c5:0f:7e:a2:46:83:4f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Jun 7 02:00:30 2025 GMT
Not After : Jun 8 02:00:30 2025 GMT
Subject: CN=b9e5b52fba68c0842991a8146cbe257d78d957e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c9:4c:46:9c:5f:6e:f3:82:2d:ae:07:fc:92:
24:47:6a:99:e8:b0:3b:d6:1b:8c:a1:7d:62:8b:98:
41:58:24:57:98:04:1e:26:74:e7:76:b5:1b:aa:70:
62:92:87:d8:74:f0:1b:db:17:54:91:9d:3e:0f:df:
bf:54:03:f0:0c:8a:93:e2:39:fc:bd:31:1b:52:07:
10:2b:ff:e0:1d:3c:13:0d:b8:c0:5c:c5:2f:54:6d:
62:1d:72:70:26:0d:82:29:be:2e:04:84:2e:2d:35:
00:44:d4:a0:c8:3b:95:11:7f:79:12:7d:7e:f3:db:
2c:5a:86:12:e5:f7:57:05:f9:47:4c:7c:22:f4:5c:
ec:e3:14:c8:52:33:15:47:ed:42:9a:ce:04:17:dc:
f8:24:5c:76:f0:71:f1:e5:0b:0a:f6:fb:0b:be:61:
35:46:6f:82:d8:a2:79:64:5d:04:86:26:75:35:9b:
12:e4:68:fc:2e:5d:92:45:90:d2:bd:f0:d9:33:30:
f6:f1:c0:56:f2:3c:03:cb:40:58:04:f0:81:6a:b8:
0d:3d:34:7d:92:b9:67:5f:c9:8e:3d:96:e5:07:43:
55:73:6e:39:29:8e:db:84:07:e0:ef:6c:e2:14:ea:
d2:65:9f:e1:3d:9f:5f:13:52:59:2d:32:91:40:a1:
0f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E5:B5:2F:BA:68:C0:84:29:91:A8:14:6C:BE:25:7D:78:D9:57:E7
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:7d:4e:01:ef:b2:b7:ae:a4:bd:c4:1b:b9:bc:bd:3d:09:65:
8c:6c:90:f1:e1:c9:e4:27:e0:95:e5:6d:d4:1e:2f:d8:58:f8:
d4:6d:49:41:34:d0:41:f1:82:67:94:8c:a2:a8:c6:1a:5e:ca:
cf:15:a1:c5:79:f5:79:16:d1:cc:0a:9d:65:2b:ee:26:16:4c:
cd:af:a5:05:fd:fd:bf:9c:7d:c0:cd:4b:42:54:c3:60:ca:13:
92:38:f0:e9:1e:d1:9c:ad:b9:25:98:9b:34:19:15:ec:9e:1c:
b4:af:a9:62:67:29:05:e5:2c:76:9a:c5:fb:35:d6:77:35:29:
27:5f:5a:0e:46:70:5f:1d:0e:17:25:8f:2e:32:6c:a3:d7:a2:
56:6b:46:8c:96:b4:e3:7b:9a:44:dd:6e:b4:f8:fb:ad:6b:67:
4e:0d:5a:f5:42:14:2b:b1:96:56:2c:a7:3e:28:6a:1f:00:53:
20:61:2b:3d:24:67:a1:c2:1a:7e:d9:91:74:76:8d:1f:9a:a5:
6e:ea:f8:b7:9c:ca:ab:de:27:7f:4f:3d:24:90:02:d4:7e:08:
39:31:1c:29:b9:eb:43:51:74:47:57:96:6a:36:ab:7a:36:7c:
ec:8c:89:51:66:2d:57:4b:fa:52:da:ea:95:c2:d3:49:6b:88:
5d:fe:73:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:14:07 2025 by rpki-client