Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
File: dfGnY3RcJdrSj0qBFmiOgs4SAos.mft (raw, json)
Hash identifier: 02CxVdo94+D+v2bj+n0eI6nTFzFW8PEpIbCyzbTydBg=
Subject key identifier: DB:48:00:D3:CE:ED:AA:23:85:76:99:6D:46:50:E9:70:A8:C4:8E:2C
Authority key identifier: 75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
Certificate issuer: /CN=75f1a763745c25dad28f4a8116688e82ce12028b
Certificate serial: 01974C322697D3A260FDBB4FE9A6738756DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
Manifest number: 13A3
Signing time: Sat 07 Jun 2025 21:00:44 +0000
Manifest this update: Sat 07 Jun 2025 21:00:44 +0000
Manifest next update: Sun 08 Jun 2025 21:00:44 +0000
Files and hashes: 1: dfGnY3RcJdrSj0qBFmiOgs4SAos.crl (hash: oiIsfphow/z/8+lqGuYHEVkjo4sflU+tWc3T9F1I6+g=)
2: ecFLrFSYazGNpMwtdUC2GTyB7Ls.roa (hash: 9V1D5AZ/eHVRt4YDKcmTOE8v9iNuXaOV/i0Ye/mdU9E=)
3: zeZfDF6FQVXfyXUfk9yRfeoJZIA.roa (hash: DtxqGawsrFVZx4HNzS+S5CsdD6flwYPGqAxKv36rkJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:26:97:d3:a2:60:fd:bb:4f:e9:a6:73:87:56:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75f1a763745c25dad28f4a8116688e82ce12028b
Validity
Not Before: Jun 7 21:00:44 2025 GMT
Not After : Jun 8 21:00:44 2025 GMT
Subject: CN=db4800d3ceedaa238576996d4650e970a8c48e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f4:cd:ee:fb:e3:46:69:7d:12:82:9a:a5:ed:
b7:66:05:9c:0b:1d:e9:26:53:b9:2b:52:ec:85:ca:
a8:40:4a:16:52:17:08:fe:fb:bb:79:3b:0f:93:74:
63:c5:5f:ce:cb:cd:2d:85:ca:64:c7:f8:7b:8e:c2:
e1:06:2b:af:e3:4e:92:8b:2c:ab:83:fa:96:bf:62:
ca:52:d5:9a:19:f1:22:23:ad:96:5d:d0:8a:c0:d3:
07:90:ea:0f:44:60:0b:1b:8a:8f:bc:42:63:f2:2a:
64:ff:61:8d:ef:a1:45:1d:de:ad:f2:d0:50:55:61:
84:6d:1a:72:e6:4d:62:ba:35:08:07:0a:8d:77:82:
c5:89:d4:00:cd:69:f4:70:22:f7:ad:12:64:21:65:
4d:1f:be:b6:b5:7e:84:5b:81:a8:c1:36:25:c7:cc:
ca:d0:7c:b3:5c:e0:ac:2e:a1:fb:cf:1a:c1:4f:b0:
6a:b2:89:f9:17:aa:05:a2:98:e7:49:1a:10:15:6b:
46:b1:cd:31:c4:1b:15:39:29:9d:90:6e:c6:cf:06:
eb:04:c0:ec:be:d0:a1:1b:47:9c:fb:4c:16:18:8a:
7e:34:73:2e:ab:9e:7c:99:da:31:1b:ce:2c:7c:0b:
e9:85:89:ce:c8:b1:eb:f6:d9:4d:97:12:07:1f:8b:
9c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:48:00:D3:CE:ED:AA:23:85:76:99:6D:46:50:E9:70:A8:C4:8E:2C
X509v3 Authority Key Identifier:
keyid:75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:06:65:05:36:6b:a8:95:e0:82:06:f1:3b:51:78:68:21:00:
36:24:cd:d3:c0:2e:e7:bb:3f:82:14:04:99:22:0c:e0:7c:25:
16:d8:7e:e0:52:59:02:8f:ea:54:a1:38:01:d8:c0:d8:55:93:
15:a9:19:97:b5:68:27:84:92:18:c7:4e:48:88:a0:12:e5:be:
dc:26:91:21:e0:31:68:97:89:90:74:84:20:12:f6:95:dd:d6:
12:ff:7a:f9:1a:d2:2c:45:8d:78:45:f7:a3:83:14:72:2c:6c:
be:5d:dd:15:3b:45:c7:5c:3e:da:fa:fe:f5:41:0a:0a:9e:09:
c8:94:4d:f2:20:7c:dd:e8:4d:ab:4f:f8:88:05:d9:de:97:7f:
ff:6b:36:06:cc:ac:cf:bb:72:8b:1a:0b:9a:f3:48:31:24:a7:
a1:7d:6a:9b:54:66:5e:78:9c:47:3c:16:9b:5a:a5:eb:92:52:
25:2f:2e:a2:cf:81:75:3d:78:0e:c5:d2:7b:8b:f9:50:83:41:
96:1b:23:fa:f5:de:48:bf:7a:89:d8:6a:3b:63:7a:70:1a:a4:
ad:41:f7:67:25:9f:02:38:d7:ab:09:9f:e7:a9:3e:6b:73:0e:
ee:41:d3:78:67:84:e9:9c:be:e6:7f:2e:e1:19:34:92:69:73:
ca:dc:2f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:14:27 2025 by rpki-client