Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: POnTsFN1LTWOjDN7ka01rvToFBZx9WuI/tI9fUjz1H4=
Subject key identifier: CC:96:1F:51:D4:65:56:4B:16:94:F2:B8:E5:C8:83:EA:67:39:20:D7
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 019749D6132ABB289A454C20C85CE8FB10FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0BFC
Signing time: Sat 07 Jun 2025 10:00:55 +0000
Manifest this update: Sat 07 Jun 2025 10:00:55 +0000
Manifest next update: Sun 08 Jun 2025 10:00:55 +0000
Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: sppfe2WCVUEuNIkTDZj+4WdqV417S7jNjgjTflAJUTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:13:2a:bb:28:9a:45:4c:20:c8:5c:e8:fb:10:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Jun 7 10:00:55 2025 GMT
Not After : Jun 8 10:00:55 2025 GMT
Subject: CN=cc961f51d465564b1694f2b8e5c883ea673920d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b0:00:02:73:16:0b:a4:1a:43:57:bf:b8:41:
0e:51:ed:8d:e8:1b:eb:94:3c:f9:1b:e2:13:73:c1:
3d:03:6a:e8:68:18:bc:64:6e:bf:25:73:16:39:96:
c2:89:59:c4:db:03:50:81:96:2e:d1:6c:42:48:f0:
92:a7:b6:4d:09:e6:25:58:0e:f7:dc:d4:ee:76:13:
ac:72:b2:fc:db:af:ca:e3:2f:be:dd:c4:54:4e:00:
3d:86:6e:6c:42:18:83:0c:3a:a7:cf:ff:76:c6:29:
db:dc:11:0c:11:99:7f:15:6b:46:ef:4a:ed:43:07:
bc:36:87:50:7e:3d:42:80:99:89:b7:ad:29:cf:e9:
46:63:22:fa:5c:31:2f:d6:0c:41:30:5f:e9:f6:0c:
3f:85:34:2b:dc:be:ff:fe:db:ae:67:74:9b:c1:de:
44:af:a6:74:56:ca:d8:2c:10:ac:85:10:1b:88:5a:
84:d2:0d:fc:94:f0:e1:17:85:84:fe:b5:90:86:06:
5e:0a:d2:b5:69:ad:a0:24:4a:65:f0:38:d1:2c:e7:
c4:48:ae:17:ed:c1:cc:f9:7a:3a:8e:9a:ed:8f:ef:
47:a4:c4:9e:65:a2:0b:d2:04:35:57:b6:a5:de:c2:
8e:48:f4:a5:af:2e:10:94:d9:05:de:61:82:53:29:
55:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:96:1F:51:D4:65:56:4B:16:94:F2:B8:E5:C8:83:EA:67:39:20:D7
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:20:e9:24:d1:0d:e3:85:04:18:3b:1a:9b:02:1f:4b:3a:ce:
dc:42:ba:36:12:f6:8b:06:7d:4e:0a:36:e0:27:04:18:67:5a:
47:99:4b:e5:82:f3:08:b8:23:bd:a0:02:a4:9f:c1:e6:bb:19:
c5:dc:2b:29:1b:64:f6:2f:21:61:8e:4d:35:1a:5c:e9:ee:4a:
4a:5f:ef:b8:fe:c5:39:5b:af:ca:c9:06:59:e7:68:a2:89:11:
b9:a0:39:72:3b:0c:cb:72:27:b5:a7:f8:fd:34:9d:33:55:f3:
db:e4:df:90:15:49:48:77:36:a2:04:0f:e4:0a:92:6e:ab:b1:
7d:6b:17:c5:0f:cf:74:d8:fa:e4:a3:81:0e:0c:92:af:d6:46:
30:16:5a:25:44:a4:65:62:6d:ee:99:8d:4d:77:6a:c4:b8:24:
7a:51:b3:a9:c2:2b:1e:59:23:e9:6b:27:76:44:87:ce:70:6e:
6e:01:b8:2f:b6:ad:6f:3b:7f:d0:4d:3c:67:4c:85:06:76:fb:
28:15:e8:91:b8:62:2f:0b:4a:d0:0b:82:37:69:e5:4d:38:72:
c7:42:4e:16:f5:8e:86:46:8a:95:eb:14:2e:1d:84:2c:a8:26:
a4:24:c5:06:24:2b:4d:24:2a:41:d9:3c:d0:93:7c:98:0e:bc:
d0:cd:9b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:47:31 2025 by rpki-client