Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
File: 43HOIIaAX5EvhRK3nF5mqcn01NI.mft (raw, json)
Hash identifier: /6m9BlCfldVihGVI28XJwR4CPV1iZf2lW2EhDjPiKWM=
Subject key identifier: 88:1C:BF:4F:2D:16:AF:B9:A6:E9:A1:AE:B6:3C:94:5F:9A:55:30:2C
Authority key identifier: E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
Certificate issuer: /CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Certificate serial: 0197507C823C90C163A3A169CFC406DB3464
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
Manifest number: 09D9
Signing time: Sun 08 Jun 2025 17:00:26 +0000
Manifest this update: Sun 08 Jun 2025 17:00:26 +0000
Manifest next update: Mon 09 Jun 2025 17:00:26 +0000
Files and hashes: 1: 43HOIIaAX5EvhRK3nF5mqcn01NI.crl (hash: fG3vyBMQ8od24UbhcLeYOJh0q+qiWVpJJsjLsea8FmM=)
2: oNzr7e9N0_nB7NG8uVVH1YFW8SA.roa (hash: E5UVvjB7YIozDhZ03PLtgPckm/pTCCT/ml1aJ8kENsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:7c:82:3c:90:c1:63:a3:a1:69:cf:c4:06:db:34:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Validity
Not Before: Jun 8 17:00:26 2025 GMT
Not After : Jun 9 17:00:26 2025 GMT
Subject: CN=881cbf4f2d16afb9a6e9a1aeb63c945f9a55302c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:29:e4:0b:97:ec:8c:1c:4e:55:47:fe:f9:f5:
bb:2f:41:55:c9:82:dd:fe:85:48:b9:a5:7d:ad:4b:
71:9f:e1:2b:75:05:66:37:95:31:75:8c:a5:26:2a:
76:4c:74:5e:e1:39:35:06:49:52:b3:83:77:2a:18:
77:7a:1b:09:f9:98:9c:1d:48:e4:d1:01:e4:9f:ab:
d8:a7:d7:8c:79:57:80:10:90:9d:02:b0:fe:db:30:
f8:4b:92:87:3d:56:96:9f:d6:13:12:e7:3d:32:90:
f4:1a:43:a0:3f:2c:30:bb:89:81:9b:77:d3:d8:d7:
be:7e:3c:09:92:93:fd:8c:cd:18:fe:09:7f:cf:b4:
f1:9b:8d:9a:a6:b4:8b:ed:44:a0:d0:4c:02:7f:1e:
47:14:0c:e3:b2:cc:5d:d7:3c:ce:1b:c0:95:5c:b5:
2b:41:eb:da:4b:55:5b:73:52:17:4d:9c:19:fc:f6:
cd:04:e0:39:a3:aa:f8:92:37:bd:e2:8a:55:f3:0f:
10:50:8b:1d:4b:15:33:58:b4:1b:b0:50:46:4e:86:
be:b4:90:1b:6c:9f:be:7e:d2:9c:b4:68:74:59:53:
3f:71:77:52:de:cf:35:1a:5a:bf:13:41:58:4e:3c:
61:ef:57:79:94:93:57:61:7e:2a:76:ed:4b:51:1b:
73:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:1C:BF:4F:2D:16:AF:B9:A6:E9:A1:AE:B6:3C:94:5F:9A:55:30:2C
X509v3 Authority Key Identifier:
keyid:E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:fb:a4:e4:d2:e9:29:1b:2e:af:39:5a:af:0d:e2:19:a1:b3:
df:c6:a8:67:29:4b:98:db:49:59:e8:83:95:aa:e5:41:db:f2:
b7:91:60:49:3e:71:fc:a3:b7:39:66:9c:6b:ad:57:4b:92:2a:
70:28:b8:57:28:e2:c0:b9:f0:dd:43:d1:9e:cd:1e:40:0e:6d:
8b:28:3d:22:22:7d:32:2f:e3:c1:e5:11:78:63:e7:5e:25:1a:
0c:41:93:ec:52:0f:42:4f:cd:a8:d4:ef:55:dc:13:af:3d:a6:
cf:b6:77:70:ba:66:ed:db:41:78:ed:57:5d:03:2a:ac:43:a7:
0f:8a:05:2f:d5:89:26:6b:ed:85:e3:aa:75:bd:2f:69:89:fb:
3a:9c:6a:ca:d1:a1:78:35:25:3c:39:ad:1e:ac:7d:f1:12:2a:
a8:70:ea:6f:fc:76:71:16:be:0e:d2:3b:61:2e:e3:1b:16:3b:
2a:96:46:18:ba:6f:27:16:c2:df:b9:da:d5:9a:1d:42:77:6f:
4e:b0:26:05:d5:1b:5e:b4:c7:5d:5c:9f:25:4a:01:55:bb:4d:
4f:51:56:02:c8:23:0c:bb:98:a8:62:8b:0d:32:06:83:fb:ce:
97:b6:d6:67:6b:10:1a:7e:d1:11:59:7f:ac:63:6b:52:71:74:
61:5e:fe:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:43:29 2025 by rpki-client