Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
File: p7He9pWIXq3lzMi0vioCuxYHnpw.mft (raw, json)
Hash identifier: r7rZu8Gf9G86ySPzFVoLZSlDOMCIYEUsmr3e4WMK5fI=
Subject key identifier: 46:DB:B3:68:9B:94:35:B5:EA:CC:0C:A5:25:71:0B:8B:97:BB:EF:AF
Authority key identifier: A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
Certificate issuer: /CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Certificate serial: 01974779A4C30A6FC53B38E82E4787702DF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
Manifest number: 07CC
Signing time: Fri 06 Jun 2025 23:00:43 +0000
Manifest this update: Fri 06 Jun 2025 23:00:43 +0000
Manifest next update: Sat 07 Jun 2025 23:00:43 +0000
Files and hashes: 1: 2ZXONPsq8Wq-C73Y4ZOdG8CP47o.roa (hash: 23qtSB8U1yvtJIhVOx0ex1wgA9IS3rvYP3HTfvaa5cc=)
2: p7He9pWIXq3lzMi0vioCuxYHnpw.crl (hash: mUkdrYY0GBPDZ3NFvFU9cFk2lHOvcOeyEXfqBZbyYBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:a4:c3:0a:6f:c5:3b:38:e8:2e:47:87:70:2d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Validity
Not Before: Jun 6 23:00:43 2025 GMT
Not After : Jun 7 23:00:43 2025 GMT
Subject: CN=46dbb3689b9435b5eacc0ca525710b8b97bbefaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:71:31:e5:27:9e:fb:89:2b:de:b8:f9:90:00:
78:fa:19:c8:36:b7:84:e7:c3:a5:66:83:d6:d9:d3:
d6:a9:48:9e:20:3e:0f:70:df:4f:1a:2b:58:c2:55:
b8:a6:97:8c:bc:69:49:00:3f:9f:b9:86:15:52:04:
77:48:c4:71:6f:38:d4:b4:77:9b:73:a8:c2:c3:ee:
55:0c:e9:5b:36:09:8c:89:fe:81:fc:5c:64:c0:1e:
91:de:4b:68:b4:b8:47:df:a5:9c:8f:16:2e:c7:a0:
71:d3:ee:20:d9:75:5a:d5:7b:c8:a3:16:bd:73:21:
bf:0c:55:13:61:9f:77:80:47:a0:07:ff:20:75:6d:
f5:bb:4d:f9:3e:d6:05:e3:13:10:6a:52:19:fe:7b:
ad:37:33:96:e9:1f:c6:13:e4:2c:1e:42:32:43:8b:
a7:28:3a:97:11:08:fa:f7:28:46:d3:45:3e:56:ad:
9b:e6:1c:a9:99:8f:86:c7:31:47:2a:18:10:47:19:
27:c3:87:13:5f:49:28:ec:51:82:05:8b:78:03:fe:
8c:93:c9:2f:ed:91:ea:cc:38:0c:1d:97:27:b6:0c:
db:dd:67:b7:10:2b:06:79:94:69:63:54:cd:5d:bb:
2e:d9:c5:7a:d9:98:85:47:7f:50:18:dc:e4:4e:a1:
0d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:DB:B3:68:9B:94:35:B5:EA:CC:0C:A5:25:71:0B:8B:97:BB:EF:AF
X509v3 Authority Key Identifier:
keyid:A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:fe:a8:b8:87:b6:7c:67:08:49:8b:70:e1:7b:b8:12:7f:6b:
43:4e:13:6f:fe:6d:49:82:7f:bb:f7:c4:e8:07:b9:33:c9:b1:
8b:2c:20:e4:28:7d:55:38:b5:3f:39:67:d8:63:aa:16:68:ea:
0f:eb:50:2b:68:4c:e7:18:ad:63:79:17:73:e6:ce:6a:3f:b4:
6f:b4:ad:65:29:c7:1d:dc:1c:9b:45:58:d8:63:ed:99:01:19:
d4:e7:3a:9e:8a:25:90:92:13:3a:7e:f8:b2:10:8d:9a:82:ca:
38:e1:98:fa:dd:ea:64:db:c4:f3:53:6a:62:d2:ce:bf:0e:32:
0c:6d:ac:dd:62:e9:70:b5:7e:5f:bd:e9:a1:9b:8e:2e:9f:72:
87:16:ea:73:f6:c8:d7:1f:90:b0:6f:09:d1:00:a9:bd:19:be:
ff:fb:65:fb:e4:0c:8b:df:f5:e2:c4:39:a2:b6:1b:88:03:a7:
3f:8c:46:41:63:b6:de:75:59:dc:95:4f:9d:c0:84:b0:d8:80:
94:6f:c5:17:6d:c5:73:29:51:72:d4:3d:4b:81:40:68:9b:21:
1b:74:50:e2:cf:01:cb:f5:82:6e:62:25:08:20:ed:58:d9:d5:
32:48:b7:4b:52:8d:74:67:07:fc:6e:7b:e5:9d:5d:b3:54:02:
10:4c:11:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:28:47 2025 by rpki-client