Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
File: ddoOY-skfZoLE7TLNt1nJJkgu8o.mft (raw, json)
Hash identifier: Ctxg1DBxRufru58cMBscRFebZD0PEledt4z44PAPzvA=
Subject key identifier: 03:5D:2B:41:15:14:49:91:C7:14:C2:3C:CA:D3:F6:8C:A1:53:BC:A9
Authority key identifier: 75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
Certificate issuer: /CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Certificate serial: 01974D44B48AA03CC19F81BC4E7D75221AD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 02:00:37 +0000
Manifest this update: Sun 08 Jun 2025 02:00:37 +0000
Manifest next update: Mon 09 Jun 2025 02:00:37 +0000
Files and hashes: 1: Qij-xPisZGBBqpNgu1KPeAhYyeA.roa (hash: 0qt3Er+wn2Xj8MdmWfSXDbZ9aYW82PDchwg6o4/NTxg=)
2: ddoOY-skfZoLE7TLNt1nJJkgu8o.crl (hash: GTD2fYsqKgy1eBv+txkNPn8Gt7yv7JXAGZhDsP89icM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:b4:8a:a0:3c:c1:9f:81:bc:4e:7d:75:22:1a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Validity
Not Before: Jun 8 02:00:37 2025 GMT
Not After : Jun 9 02:00:37 2025 GMT
Subject: CN=035d2b4115144991c714c23ccad3f68ca153bca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e5:89:ac:65:2e:d4:c6:6f:72:74:c4:66:37:
e4:c0:c5:89:4e:7e:20:97:50:50:82:11:ef:10:b8:
8d:f4:8d:19:20:e6:44:44:a7:d6:e4:5e:41:fa:71:
a6:7b:31:22:3b:43:56:6d:24:33:ba:01:be:5b:9f:
af:ec:79:9c:c7:ae:04:ec:cb:00:4b:ab:c4:8e:b8:
6b:69:ed:3b:67:c4:73:19:0e:06:98:57:29:9e:17:
25:9b:6c:72:93:fd:75:55:55:cd:69:df:a7:38:fe:
96:94:4a:7c:1c:ab:78:fd:47:7e:b2:41:23:60:71:
8a:35:71:bb:73:c3:91:61:39:d0:47:3a:f2:23:71:
ee:7d:80:8c:6f:b8:04:56:4e:7e:eb:73:37:6e:87:
70:7d:50:1f:52:3c:69:aa:b7:3e:55:8a:af:2a:c6:
c9:34:69:f6:a4:81:ec:d5:d5:be:19:8a:03:f7:7d:
fa:1d:31:e9:1f:ad:e0:c5:dc:4d:34:a3:12:09:b2:
c5:7e:11:ea:22:44:97:f8:bf:7c:f8:ab:80:d5:26:
b8:6d:13:59:3c:e3:3f:b9:5a:f0:ab:45:29:d3:fd:
e1:40:c2:46:1a:de:0d:6f:60:9b:c4:fc:3f:4b:14:
ac:7a:bf:97:d8:42:3d:11:dd:9e:0e:dd:9a:34:de:
fb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5D:2B:41:15:14:49:91:C7:14:C2:3C:CA:D3:F6:8C:A1:53:BC:A9
X509v3 Authority Key Identifier:
keyid:75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d9:ea:cf:5b:85:3a:86:35:db:14:d8:8d:30:64:5a:bc:38:
c5:99:61:88:51:4f:99:89:4b:45:33:52:b2:e0:d9:74:54:77:
3c:76:29:53:83:39:75:46:a7:6b:96:97:fc:1f:4b:8a:14:b2:
da:65:54:55:52:d9:cc:7b:21:a5:b9:91:6f:fd:3c:79:0a:02:
35:0c:83:eb:38:69:76:13:96:c4:f2:a0:11:77:40:aa:a4:49:
e2:ea:0e:19:b8:90:03:f3:0b:41:c9:b6:06:4b:6d:65:49:da:
d9:c1:64:e9:15:ed:47:83:1a:b5:73:65:e9:2a:7a:73:03:23:
8f:92:1e:41:f4:e9:17:0a:13:8b:af:53:d0:96:44:be:63:94:
e0:f8:4d:99:3b:a7:b9:a4:4c:0b:ac:77:81:74:d9:f1:2b:d5:
62:98:1d:44:94:bd:b8:1f:ae:c3:78:a3:7a:29:fc:49:e0:c1:
fe:ae:95:76:29:4e:c6:6e:e3:ef:06:7f:cf:b3:30:a4:68:b7:
e3:a0:79:ca:25:74:1a:38:7a:a8:6d:72:96:0b:1a:a2:8f:b3:
44:53:0e:76:bd:5e:24:a2:42:1a:9e:1d:fe:98:53:fa:05:28:
c7:1e:61:9c:80:66:f3:0f:59:d7:51:4a:fe:14:56:92:3b:8e:
25:a0:21:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:34:33 2025 by rpki-client