
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
File: sXtEkEx2lKVAig0pcsOf8LGwPqU.mft (raw, json)
Hash identifier: K1pVOWZo00v7pZCsw2KrWON2M5a7QlKRta/9rvczBnI=
Subject key identifier: B3:C5:51:52:06:17:08:CF:62:48:A7:68:6C:97:E8:98:E3:15:1A:DE
Authority key identifier: B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5
Certificate issuer: /CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5
Certificate serial: 019752A24BEDBDD4071094472C9CA8D7E8CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
Manifest number: 0DCB
Signing time: Mon 09 Jun 2025 03:00:57 +0000
Manifest this update: Mon 09 Jun 2025 03:00:57 +0000
Manifest next update: Tue 10 Jun 2025 03:00:57 +0000
Files and hashes: 1: UDhX8BuvHOYMS5e9vYOFjWjGBYk.roa (hash: C1cyztzqKdd1lIZCQFArU9xrG3gU6hCt1VPEU5YkilM=)
2: sXtEkEx2lKVAig0pcsOf8LGwPqU.crl (hash: KTS2cUPVPJw2/EawnSO6v5RXd9Uov9l1n0D1De7R/bA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:4b:ed:bd:d4:07:10:94:47:2c:9c:a8:d7:e8:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5
Validity
Not Before: Jun 9 03:00:57 2025 GMT
Not After : Jun 10 03:00:57 2025 GMT
Subject: CN=b3c55152061708cf6248a7686c97e898e3151ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0a:24:90:e3:f1:78:79:2d:b1:9c:4b:e7:5a:
c9:48:cb:a5:a5:c2:4d:d0:01:9a:03:8c:b8:75:e8:
fc:ce:9f:30:82:5e:4d:c1:57:03:58:4f:6d:56:35:
ce:3f:c6:0e:15:9b:ae:1f:60:a9:a6:a3:dc:1a:0c:
aa:9d:36:fe:23:eb:63:a4:c5:4c:4d:28:67:90:85:
9d:e5:0f:80:3f:4a:50:3e:84:5a:66:b7:43:48:35:
23:b6:4d:ca:98:33:33:a2:ac:41:8b:ab:f5:46:f8:
03:45:0f:13:8e:e8:be:d6:7d:d4:99:20:a1:a5:35:
4a:8e:7d:46:6c:f1:c0:ad:0c:be:c3:34:05:6e:6e:
aa:10:a5:d9:bd:71:35:99:76:d7:d2:4a:f5:36:06:
b8:1a:3b:ae:ea:30:52:13:b6:03:c3:dd:6c:29:29:
24:ab:73:00:32:78:61:1f:c2:85:f7:75:1e:7f:71:
73:5a:81:46:e0:5c:95:95:d6:c8:98:9a:b3:be:3a:
a9:42:75:78:dc:3f:bb:83:a5:86:2b:a8:77:f8:04:
63:a5:66:da:ad:87:db:f4:d0:f6:aa:7e:bb:c2:a9:
dd:09:81:47:b7:83:23:69:6d:4b:1e:29:42:d2:81:
00:8c:30:d1:db:2f:fd:58:68:40:73:a6:db:76:34:
c9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C5:51:52:06:17:08:CF:62:48:A7:68:6C:97:E8:98:E3:15:1A:DE
X509v3 Authority Key Identifier:
keyid:B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:a8:34:bf:45:f5:2a:5f:0e:bb:7a:b5:a0:99:5c:72:0c:f4:
35:89:26:e6:ab:97:18:34:4f:3e:f2:9b:6a:6c:d9:f2:7e:81:
41:94:d3:4b:8f:85:fa:6f:38:ef:4b:ed:72:18:d5:b7:5b:71:
8a:cb:2c:1f:50:e4:20:21:e0:45:17:6c:02:60:c2:e6:c6:00:
99:50:a6:72:65:0c:fa:a1:d7:15:09:e8:0e:d1:6f:b2:a2:f7:
bb:dc:82:c1:6d:1b:f2:cd:02:6a:85:9a:e3:49:02:45:63:fa:
86:90:65:6a:77:20:33:9f:95:2c:be:95:3c:d9:e8:84:22:f8:
46:ab:41:e5:26:82:f0:ac:3d:71:05:cb:0a:d6:d1:2f:e3:e3:
3b:6d:d4:92:44:4f:79:85:c8:51:99:9d:75:04:59:c8:f0:ff:
0e:b8:ea:b1:e3:f4:53:f4:fd:c9:b0:17:64:f9:fa:32:14:fe:
9a:26:ba:8b:a7:d1:64:e9:8f:ef:31:31:bc:df:ee:08:b8:2e:
cb:c7:32:6c:72:ea:fe:cf:ab:47:f1:f3:d3:e7:56:8a:b6:b6:
c8:a8:3c:14:0d:23:76:19:66:6d:e8:f6:51:dc:ae:30:2e:51:
41:f0:29:fd:35:c2:25:c3:ed:94:82:86:de:14:09:64:eb:5f:
5f:c0:95:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:16:26 2025 by rpki-client