Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
File: 9OQPA5eaP05K052pg7Z7p-YhXA0.mft (raw, json)
Hash identifier: C7xszX2rqgnrqrwrxm+bts8u/PX9eFSO5tpQ0Uk8BT4=
Subject key identifier: BB:A6:12:6E:95:96:4E:E3:EC:CF:A6:D3:11:52:37:BF:6E:F9:03:E3
Authority key identifier: F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
Certificate issuer: /CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Certificate serial: 019747796F3A3D35A95C8AB4C1005B1389B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 23:00:30 +0000
Manifest this update: Fri 06 Jun 2025 23:00:30 +0000
Manifest next update: Sat 07 Jun 2025 23:00:30 +0000
Files and hashes: 1: 9OQPA5eaP05K052pg7Z7p-YhXA0.crl (hash: 8v1xCfxcTcIDVEavUODMi/C8nzmwvvuZg31q1IzQ/Mc=)
2: scYwC-e6lFDetGsqMlwn-CerbGM.roa (hash: zF9JwzHkhXPpsqlzXkaGHeYsm+/OmjpyP3gHhfOOwfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:6f:3a:3d:35:a9:5c:8a:b4:c1:00:5b:13:89:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Validity
Not Before: Jun 6 23:00:30 2025 GMT
Not After : Jun 7 23:00:30 2025 GMT
Subject: CN=bba6126e95964ee3eccfa6d3115237bf6ef903e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:28:e0:2c:2e:ba:f9:21:a3:c4:75:48:3b:cb:
1a:f2:05:32:0c:b3:e5:39:60:a7:ac:8d:a4:e5:a5:
18:0d:72:57:ed:71:10:50:1a:8b:f3:2a:d8:35:6b:
98:f9:b1:38:b7:0e:af:02:43:a9:00:34:0c:51:2a:
d0:34:75:1d:11:35:56:a8:a2:7b:09:2b:0f:db:87:
91:fe:05:bc:4c:07:aa:ab:32:60:0f:71:40:be:3e:
22:a7:e0:b4:45:21:e1:9f:8c:a0:d9:7e:76:d8:e5:
d7:d7:48:5e:68:22:0d:68:5a:97:d6:7e:c7:5f:bd:
09:9f:f7:2b:9b:30:f7:c7:00:4a:45:50:a7:2e:e7:
de:71:d4:37:b3:fd:c4:ad:f3:5c:d6:38:15:11:9f:
f4:b7:35:7a:b3:a6:10:fd:13:97:5e:10:3a:75:3f:
7a:8e:37:6f:7b:98:c1:cf:e4:b1:13:74:b2:9d:1d:
e7:0f:73:70:12:26:77:2f:af:44:3a:1d:f5:a9:3a:
31:cd:f3:17:b1:db:56:44:25:45:c5:7e:4e:95:0e:
ef:9b:f2:cb:b1:54:69:9b:7b:70:8c:bc:e1:af:28:
9a:2e:3c:70:d6:b5:de:c8:40:63:40:4e:ee:29:a0:
85:2e:04:c6:a6:b5:12:90:4a:3d:4a:75:72:eb:e7:
b8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A6:12:6E:95:96:4E:E3:EC:CF:A6:D3:11:52:37:BF:6E:F9:03:E3
X509v3 Authority Key Identifier:
keyid:F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e1:3d:46:2a:41:7b:9f:0c:d1:a6:d0:0d:24:fe:22:39:8d:
ec:bd:43:9e:ff:c2:2c:53:6b:4c:74:8a:36:c9:e3:dc:e8:10:
98:01:f2:86:30:d0:75:f7:c5:91:c1:4a:d0:57:41:af:ee:07:
af:dc:cb:c9:41:63:d2:6c:21:4e:43:f8:70:b1:61:5b:13:d9:
2a:74:f1:4d:e3:ad:42:1e:61:22:43:3a:64:51:d6:22:a5:51:
d9:bc:05:b2:7f:3f:0c:65:68:ff:e4:e1:2f:d9:6a:9b:23:08:
ce:dc:52:ac:78:d4:a2:6a:0e:9a:2d:56:9b:5d:30:27:2f:74:
da:c6:ab:2f:56:7d:dd:36:bd:81:ea:19:1c:20:64:bb:cb:e2:
e4:a9:1b:e4:72:e5:17:b4:77:f0:7f:ff:3a:72:f2:b7:bb:8f:
70:a1:b7:10:c0:67:37:d9:75:6b:fa:cc:77:cd:de:25:77:bd:
81:6a:c3:f5:4a:30:ba:e1:76:25:b0:c8:17:ca:73:ed:49:b1:
9a:c3:e7:aa:95:de:76:f0:68:17:0b:62:39:9a:58:29:fb:1c:
32:f3:f7:09:66:9d:33:24:7d:f0:bb:c6:d9:6d:d2:3f:60:f4:
2c:53:ed:48:03:be:aa:ca:a4:9c:95:72:0b:09:e9:7d:bf:bc:
45:01:c5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:11:35 2025 by rpki-client