Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: T3gkSsdObTKH64PfjTwrDz/VMitOsu3029FOz55/AY0=
Subject key identifier: 94:93:2B:53:A9:84:74:CD:46:05:A6:DE:90:C4:88:F2:79:12:02:0A
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 019750B38D88914618420FB636B4E4E9AFB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 0F7B
Signing time: Sun 08 Jun 2025 18:00:33 +0000
Manifest this update: Sun 08 Jun 2025 18:00:33 +0000
Manifest next update: Mon 09 Jun 2025 18:00:33 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: m8oBlDDi7YydO7idvtX6yqXliblykWsAGXJK198lko8=)
2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:8d:88:91:46:18:42:0f:b6:36:b4:e4:e9:af:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Jun 8 18:00:33 2025 GMT
Not After : Jun 9 18:00:33 2025 GMT
Subject: CN=94932b53a98474cd4605a6de90c488f27912020a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8f:7e:da:34:23:18:72:f5:49:d1:38:c4:23:
60:14:7a:f1:d4:36:c1:df:21:78:4b:25:b6:b1:3a:
d1:8c:65:e3:dc:29:22:a1:fd:2a:01:07:be:e5:13:
09:76:3f:4b:ef:35:1b:97:79:7e:84:2a:6b:58:88:
7b:a1:29:68:a0:9e:d8:39:a1:f4:ae:20:18:07:3a:
c4:bb:9c:f3:14:3f:37:9c:20:35:d5:42:b6:42:53:
20:9b:98:26:aa:29:2e:05:56:6c:a8:23:36:7e:dd:
98:ed:52:2a:88:53:cf:ab:54:67:a1:22:da:df:a6:
cf:62:ec:6a:9b:a9:1b:d8:c7:2b:35:2f:cc:db:1d:
ad:dd:83:a7:80:a5:e1:b6:c9:9c:83:07:05:51:4e:
e9:f7:32:72:ca:ae:4a:6b:56:de:9e:43:eb:ce:11:
fd:87:f5:3f:99:a1:f4:22:21:9f:ca:3d:7c:f5:72:
49:84:c2:b4:c5:5d:43:a3:cd:c6:d4:bd:31:d2:0b:
db:01:13:8d:eb:fe:be:32:fa:21:b8:36:c5:07:ae:
4e:74:f0:95:15:40:3f:7e:1c:38:b8:63:f9:85:78:
de:d0:83:a3:97:d5:0e:69:09:34:86:25:46:d9:71:
56:c5:99:f7:05:ac:2d:aa:ac:1e:54:79:a5:9d:e8:
65:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:93:2B:53:A9:84:74:CD:46:05:A6:DE:90:C4:88:F2:79:12:02:0A
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:52:7f:3e:88:9e:33:3b:12:b0:6c:26:a8:65:e7:df:00:4e:
07:96:b4:6c:ea:5f:8f:7c:33:c7:f2:9b:ae:68:ee:8d:63:99:
d6:0e:a1:41:02:1c:86:82:af:38:9e:f7:9a:b4:48:8d:cd:aa:
41:bd:06:4a:59:2e:46:8c:46:e7:f2:ce:d5:e7:a0:0c:e4:ea:
a0:65:59:ba:1d:98:85:62:48:cf:ea:c5:26:d3:1f:a9:46:a3:
a9:48:5e:31:96:51:e4:c9:3e:82:56:76:39:fd:92:36:db:0f:
42:af:70:fa:d9:b4:09:ec:57:97:f0:17:8c:86:24:2d:10:27:
eb:ee:7b:45:69:70:b2:24:47:e1:72:b6:f2:a0:eb:27:1a:c5:
52:71:63:97:a5:6a:f1:e5:78:47:6d:0b:4d:c3:4b:3c:cc:25:
8b:c6:48:5c:9a:97:da:9c:67:b7:34:72:d9:ba:4d:48:0d:eb:
79:6d:72:e1:09:ab:2d:73:e7:1d:09:74:8b:6d:8d:c6:ec:29:
e5:32:4c:44:c4:4c:cf:02:25:11:2b:77:ec:94:55:21:00:c5:
dc:65:2e:d1:6a:1f:2c:fd:da:5a:f7:a1:db:c8:cf:30:88:f5:
29:06:b0:88:c5:ee:74:95:e9:3b:d1:7b:9c:0b:f2:0b:eb:d6:
82:f7:59:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 22:40:22 2025 by rpki-client