
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier: R4cXFSPQobzj4jFQxOI52ei56QsTJ3ikSRgXGealnlA=
Subject key identifier: 52:09:A2:F5:2D:0F:B8:1C:C3:52:35:51:DF:B1:F5:8C:E7:8A:67:A1
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial: 01975912761B6E375F47B1BE22EFFCD6F0B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number: 0752
Signing time: Tue 10 Jun 2025 09:01:11 +0000
Manifest this update: Tue 10 Jun 2025 09:01:11 +0000
Manifest next update: Wed 11 Jun 2025 09:01:11 +0000
Files and hashes: 1: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: 2hIfkoZODhoW30pSHs91V47S0yKw4dKxJtnF2bLTsZk=)
2: prlrwENsP0XShm7WiJaiosrpyn4.roa (hash: N21LSr0oJqwv0f3injM4CthwAR4LuE5viTe41DT0nbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:12:76:1b:6e:37:5f:47:b1:be:22:ef:fc:d6:f0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Validity
Not Before: Jun 10 09:01:11 2025 GMT
Not After : Jun 11 09:01:11 2025 GMT
Subject: CN=5209a2f52d0fb81cc3523551dfb1f58ce78a67a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:78:9d:35:1d:e8:5b:4b:2a:92:e3:92:10:b2:
22:33:5f:83:c4:c1:33:02:88:96:c5:bb:cd:83:61:
c7:29:92:c3:99:7d:5a:21:4d:3b:50:ca:d0:18:c8:
57:67:dd:3b:09:aa:fc:9e:dc:01:99:a3:20:63:b8:
3c:ea:5e:81:16:7a:20:36:af:c2:0d:4c:6d:a5:b5:
3b:5f:91:d5:d0:d0:29:e3:4c:61:a0:c0:65:ae:9a:
30:1c:86:67:df:4a:a5:e0:d6:10:70:24:5a:35:c5:
18:c3:2b:a2:14:34:3a:31:ab:08:8d:90:96:34:e5:
f6:47:05:7d:8a:14:e4:7c:32:98:53:c2:77:6c:f8:
1a:79:43:08:7a:64:bd:4a:8b:0d:13:0d:92:a3:ab:
3b:be:68:6d:55:ef:fc:9a:68:45:c6:fa:03:54:e4:
a6:5f:d9:93:3e:74:97:cc:c3:e5:b9:8a:82:52:36:
87:49:3c:f0:40:98:59:06:f9:1b:05:c4:2b:c3:3b:
d4:89:fb:17:15:2d:a0:00:cc:df:4f:e1:25:08:39:
e3:f3:84:2c:42:5c:de:6f:57:49:a9:aa:53:00:8e:
6a:24:5c:04:b0:d8:ca:a7:02:0e:5a:87:e7:1a:84:
5c:2f:93:21:4e:e1:47:b2:51:4b:58:f4:4b:e8:d4:
03:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:09:A2:F5:2D:0F:B8:1C:C3:52:35:51:DF:B1:F5:8C:E7:8A:67:A1
X509v3 Authority Key Identifier:
keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:5e:28:82:69:c1:7b:77:f5:c4:65:33:26:9b:85:06:3c:b7:
d9:46:d2:0c:d0:09:75:9e:85:0e:18:38:87:c9:d6:ca:44:6b:
df:32:71:cd:b0:bd:7f:0d:f3:0d:9c:5f:6f:68:92:28:94:af:
9e:71:2e:e1:4b:30:88:ae:c5:d2:ce:99:b3:59:e7:9a:04:bd:
2b:ec:51:6f:8b:ba:93:7b:b2:4f:7b:0a:49:fe:6b:5e:2d:a9:
f2:98:d9:a1:03:6a:82:66:cc:a8:75:7c:2f:08:40:c4:8f:3b:
de:d8:17:de:2b:28:9d:d2:cd:8f:4c:46:07:74:e7:fc:d0:dc:
02:51:d6:0d:74:e2:9b:f8:7f:69:24:a6:72:e3:58:8b:21:26:
f4:87:d9:5e:f4:e6:45:0c:7d:28:5b:12:16:e4:d4:7d:e2:10:
8b:92:c5:bd:a5:9e:f5:2f:80:da:8d:a8:11:48:11:b1:95:41:
52:89:fa:88:e2:3c:fe:13:f9:4d:01:0f:21:e1:68:a6:5d:80:
67:5e:cf:cf:c1:1e:04:88:65:1a:db:3b:ce:77:f2:51:09:21:
7d:12:e7:a5:ae:c0:cf:79:5c:c4:ab:d2:da:4a:b7:2f:a4:84:
d3:4e:7d:3e:95:68:b4:81:9b:d6:9c:82:57:ea:eb:58:db:76:
44:43:7f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:44:20 2025 by rpki-client