Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: fiMEXpHSxKPOfLzVa7iOhTfWk6Y6Uh60aPzXuBqL0E0=
Subject key identifier: 30:FE:7C:16:B3:39:28:EB:FA:4A:3E:95:4E:83:D0:D2:B0:11:6F:40
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 0197470C433E96E5B68CF540AE7B11780BDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 0EBA
Signing time: Fri 06 Jun 2025 21:01:15 +0000
Manifest this update: Fri 06 Jun 2025 21:01:15 +0000
Manifest next update: Sat 07 Jun 2025 21:01:15 +0000
Files and hashes: 1: YkyLNJe8eg5_ZWWXRqgb1FEedCU.roa (hash: yKbeF3cM/odTGzY3J6HPYew0I5seEJaLqL9iFLq9XbY=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: S9+Z+IEaDwWQJv+tEU65OiO1kaa3vZgdH9dtIHPF9f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:43:3e:96:e5:b6:8c:f5:40:ae:7b:11:78:0b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Jun 6 21:01:15 2025 GMT
Not After : Jun 7 21:01:15 2025 GMT
Subject: CN=30fe7c16b33928ebfa4a3e954e83d0d2b0116f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:88:d9:33:c3:c9:2d:77:03:24:46:86:2b:2f:
b1:2e:dc:f5:b4:1f:4a:e8:fc:a7:0e:ea:8c:40:e2:
63:5b:01:65:0d:cb:e7:8b:7e:fb:ed:27:c4:5e:42:
63:d4:ea:78:9e:a0:5f:c1:bd:46:4c:2f:51:5a:81:
91:fe:56:33:46:4b:da:5f:57:b4:0c:42:93:fa:1e:
77:eb:29:ca:48:b1:f0:93:e3:f2:2a:c2:4f:0b:0e:
63:2f:9a:5b:7a:d6:d4:ce:73:49:5f:72:ef:66:70:
e2:22:d4:32:ec:d4:e1:dc:cf:3b:81:92:59:8b:ed:
66:02:88:f1:c2:30:29:09:bd:e9:70:41:80:5d:4c:
c4:34:0b:46:b4:82:80:93:29:71:90:8e:ea:56:e2:
31:66:35:17:94:d1:17:47:17:d4:3d:bc:4b:58:6c:
11:94:c0:25:01:53:e9:94:3e:43:fa:6a:6d:9a:6d:
28:b6:8f:5d:e3:5e:9f:cd:0f:5e:30:ef:f1:42:1e:
14:47:79:74:c1:ba:5e:c1:4d:cb:da:09:30:5c:8d:
5a:d6:d5:d7:8d:4d:d4:19:fb:0a:b2:12:68:c9:40:
d8:c8:85:9a:37:f1:af:9e:a5:5c:50:2e:a4:0e:8a:
07:3d:73:aa:e2:6c:2a:17:4d:d3:53:57:62:3a:b6:
d6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FE:7C:16:B3:39:28:EB:FA:4A:3E:95:4E:83:D0:D2:B0:11:6F:40
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:dd:24:27:70:1c:6f:1c:a1:15:2e:75:e1:a4:28:ab:f4:02:
8d:7b:9d:60:09:fa:a4:16:45:27:a5:09:54:79:ff:e7:9e:73:
ea:97:83:d2:53:4e:e4:01:80:1e:b9:b4:59:41:54:ac:30:8d:
ee:37:71:25:a0:f8:77:0d:5c:86:f8:51:a8:64:6b:e3:b1:48:
34:6a:20:40:06:51:5c:13:45:34:30:b6:a2:f6:26:7f:d9:a1:
3c:d4:27:c6:39:47:0e:58:b9:d8:66:a9:da:14:ef:17:5e:84:
34:b9:07:bc:ae:31:43:1c:b1:b2:c6:22:13:3e:eb:68:68:d9:
10:93:91:06:c6:b2:2b:5b:d2:d4:f5:c4:6d:40:2c:49:42:76:
f6:86:de:77:ea:44:3b:4f:84:29:ed:c1:18:48:8e:00:69:f0:
07:d5:7c:2a:ab:60:9f:63:87:bb:4c:90:a5:e9:27:be:aa:fb:
c6:e9:22:85:d5:99:77:32:06:af:f3:4f:66:95:c4:3c:5e:16:
05:3a:34:6d:6c:b4:d3:6e:dc:43:55:c0:07:b7:94:55:7e:7c:
44:40:c1:83:b4:f1:98:bf:98:fc:e2:1c:f3:d7:02:09:3d:e8:
82:a3:e4:70:32:8d:43:79:cb:4c:2c:67:77:33:72:0a:ac:77:
a8:f2:7e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:05:03 2025 by rpki-client