
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
File: ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft (raw, json)
Hash identifier: 0q1GhqECHaITC24KFZwYE51/ckR7NdtQkdYwhcY4yT4=
Subject key identifier: DF:9B:D1:DA:0E:B9:8E:54:14:D7:3E:9A:58:54:BC:AF:F2:93:1A:87
Authority key identifier: 7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
Certificate issuer: /CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Certificate serial: 019764DF117F7E31F256B8D85C175AF35EC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
Manifest number: 03BB
Signing time: Thu 12 Jun 2025 16:00:29 +0000
Manifest this update: Thu 12 Jun 2025 16:00:29 +0000
Manifest next update: Fri 13 Jun 2025 16:00:29 +0000
Files and hashes: 1: ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl (hash: Gip++w12QsMTWFSERmXHXugFYqrH0PBOoq4zkI3OtQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 15:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:df:11:7f:7e:31:f2:56:b8:d8:5c:17:5a:f3:5e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Validity
Not Before: Jun 12 16:00:29 2025 GMT
Not After : Jun 13 16:00:29 2025 GMT
Subject: CN=df9bd1da0eb98e5414d73e9a5854bcaff2931a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:ab:b5:60:49:93:0c:e1:65:8d:1b:94:1d:
cc:30:71:ca:6f:40:eb:62:0b:4f:93:49:8f:64:25:
4a:60:81:c7:0f:3f:a7:f3:7d:37:f0:6f:00:2f:5c:
17:0e:ef:54:3c:3a:70:c1:e9:91:07:78:9e:9d:03:
2c:7c:2b:45:90:60:81:3a:20:d9:3f:df:91:03:cd:
91:b9:f6:93:51:18:6e:fa:a6:18:48:3a:56:d7:ca:
ff:ce:c9:ed:71:b2:f2:f3:0f:83:ec:b2:28:70:63:
21:f9:cd:b1:ca:0b:5d:88:3c:08:99:3b:15:f5:10:
10:ad:96:20:34:c5:4a:43:b7:7d:85:7f:5f:5f:c0:
12:99:23:f3:c7:8d:5c:d0:96:66:11:80:01:e3:24:
8b:09:52:6f:d2:20:8f:5b:0c:52:04:e7:a6:e7:65:
36:04:ba:a9:28:f7:b4:f8:01:f1:6e:13:75:c7:b9:
74:88:99:5e:f8:c7:4c:c9:0f:8e:3a:db:65:d3:73:
4d:e9:56:34:35:25:69:ff:2c:73:6f:c5:9a:d0:73:
86:88:e9:81:93:7b:72:79:65:6b:0a:1b:99:39:4f:
9a:6e:a0:d8:ba:77:5c:75:b3:82:90:ff:9f:56:42:
e4:da:bf:66:f0:fd:ad:12:cb:d3:0a:b2:a2:7b:2a:
88:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9B:D1:DA:0E:B9:8E:54:14:D7:3E:9A:58:54:BC:AF:F2:93:1A:87
X509v3 Authority Key Identifier:
keyid:7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:00:63:d7:c9:15:37:be:d5:d7:0f:31:ef:0c:50:0a:80:c7:
f3:14:0e:5f:33:05:31:99:af:29:8e:fc:ee:d5:ea:9c:66:67:
07:11:6b:96:64:3e:28:7d:1c:d0:dd:16:db:52:a2:32:14:a8:
1f:1f:c6:8f:4d:66:33:3d:33:18:81:6e:44:f7:b2:0c:0b:73:
02:a6:5b:7a:32:bd:e8:91:7c:41:b1:cc:20:c5:5f:10:df:31:
12:6f:ae:5a:44:ff:9c:44:8e:10:0f:be:5a:47:83:08:24:5e:
65:44:16:3e:d0:e1:c0:47:43:9d:c2:b2:ef:02:33:54:d0:e6:
94:17:1b:67:e6:20:0a:44:82:e1:27:ef:03:41:6c:f6:f6:c0:
28:46:b9:f9:43:05:3f:34:96:cb:0d:f9:41:78:2d:19:6b:e5:
9b:e2:7f:e3:f6:b5:88:5f:be:2a:89:ef:ec:5b:ad:c7:e8:7b:
8a:79:d3:6a:80:e0:c8:bc:56:da:42:7d:37:89:f2:fb:e2:04:
35:18:7f:69:ef:cc:65:b2:23:94:63:3e:05:a4:b9:ff:32:c6:
7a:7b:ec:ef:a1:9a:f1:cb:a7:e7:bd:a1:74:cc:36:c6:bd:34:
f0:e9:9e:28:80:c9:3b:89:44:db:cf:ee:3a:f2:47:70:b3:96:
47:0d:a6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 00:34:17 2025 by rpki-client