Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
File: 1bFX6mgu908PHvZ_oekWDRfNLpM.mft (raw, json)
Hash identifier: 3QR0jBQKzfpl7OcK+Uib0hHIH6fRmYzVkEsJ45W3Z5U=
Subject key identifier: AE:0E:AB:82:7B:F0:2E:8F:3E:C8:0C:DC:95:74:A3:14:61:6B:A1:4F
Authority key identifier: D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
Certificate issuer: /CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Certificate serial: 0197469D9BCB8657D19578296D24A0C26FF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 19:00:23 +0000
Manifest this update: Fri 06 Jun 2025 19:00:23 +0000
Manifest next update: Sat 07 Jun 2025 19:00:23 +0000
Files and hashes: 1: 1bFX6mgu908PHvZ_oekWDRfNLpM.crl (hash: Ya1yrxP4ovhMyqii++ovGVOyrWv3pfuHnZ7bvIwnzO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:9b:cb:86:57:d1:95:78:29:6d:24:a0:c2:6f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Validity
Not Before: Jun 6 19:00:23 2025 GMT
Not After : Jun 7 19:00:23 2025 GMT
Subject: CN=ae0eab827bf02e8f3ec80cdc9574a314616ba14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a5:b7:c7:11:90:33:ee:71:1e:b8:48:b9:c6:
97:72:9f:5b:a7:47:d8:d7:d4:bd:25:1a:d2:ef:6e:
dd:df:86:0f:f2:59:cb:86:1f:71:c1:df:6c:b3:a7:
53:21:19:c0:05:fa:aa:9f:df:b1:10:98:02:37:49:
a5:45:04:b0:f7:55:a6:08:2c:2f:a0:e9:a2:ff:b1:
19:db:d6:98:c3:eb:05:50:4e:81:e0:e5:1e:2f:7b:
5e:65:eb:bd:f8:5c:a5:8e:b9:c4:5e:b8:0a:50:73:
15:ff:1b:5a:a5:4b:0a:fc:32:13:a0:60:a8:c2:9f:
32:19:0f:5b:c1:22:5f:a8:d6:0d:53:7d:a5:23:09:
81:c7:ed:6d:5e:b0:77:7c:7a:31:bc:2e:c5:05:6e:
6e:29:9f:8f:7a:dc:01:6d:9b:d5:5b:8c:72:0d:6c:
b6:4d:b3:ea:d8:54:0d:58:37:e2:5d:64:1a:94:e7:
3b:d4:c2:9a:39:b8:2a:dc:f9:d9:83:b1:67:69:d7:
b4:54:35:45:31:5f:df:58:8a:57:9f:3c:b6:63:14:
c3:21:ed:2d:14:2a:00:ef:07:e9:d4:68:a2:88:ea:
bb:a3:6e:e9:1f:77:a5:d6:4d:d9:c3:73:bb:84:4b:
59:32:7c:f9:38:eb:0a:ff:d6:b6:7d:b6:b6:ef:19:
b3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0E:AB:82:7B:F0:2E:8F:3E:C8:0C:DC:95:74:A3:14:61:6B:A1:4F
X509v3 Authority Key Identifier:
keyid:D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:04:b3:3c:b5:2e:be:9c:5a:37:43:2a:b3:0d:06:d6:3c:2f:
55:e4:c2:e2:28:7a:3a:9c:8a:c4:ba:05:16:c7:bf:85:94:67:
74:04:c1:3f:51:e4:6c:40:de:6a:f4:1b:ba:81:4d:5a:6d:dd:
13:f3:35:4f:e4:b3:8b:3f:ac:d1:88:77:f8:aa:1a:49:41:96:
d6:b5:67:57:0e:80:71:5c:7c:ab:6a:85:8b:5d:54:95:f6:ca:
e6:f2:92:35:66:9a:62:5e:33:e4:4d:46:9c:dc:ce:bf:d8:22:
04:bd:7b:83:6a:ae:ea:16:8b:64:56:40:ae:50:84:46:26:ac:
29:16:02:6b:be:3c:8f:ee:6b:f9:9f:f6:c5:8c:22:ae:b4:4d:
71:69:ff:56:62:b2:ae:71:32:53:65:d9:a8:66:9f:65:0e:73:
94:19:b7:b2:24:95:90:4c:10:95:a9:7c:b4:71:e7:8a:57:21:
7b:d7:d5:69:c2:ea:e8:9e:12:1b:6e:e9:87:cc:e3:3b:dd:b4:
a0:9d:a7:49:42:5b:a9:a1:8b:2c:c6:ae:22:23:58:e1:93:ff:
12:8e:d7:06:3e:3f:ab:22:53:e0:8c:5d:d3:fd:6d:0e:07:a6:
8b:aa:ba:f1:8f:00:55:76:0a:1d:30:d5:42:82:8f:cd:23:f0:
40:1c:18:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:00:30 2025 by rpki-client