Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: 6woN+qJjVEu72//dF0gqBysQ7xna9l3f622RNikSY9c=
Subject key identifier: F4:82:DB:81:E1:E5:35:E3:A7:EA:A5:F8:42:0F:30:77:F0:C8:78:57
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 0197463029F9C9F0ADDC190C3B64EF0CE5E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 1580
Signing time: Fri 06 Jun 2025 17:00:50 +0000
Manifest this update: Fri 06 Jun 2025 17:00:50 +0000
Manifest next update: Sat 07 Jun 2025 17:00:50 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: upbLVBnh8uPZfQyCA4Xm5Q0yBHBktnCtsDWugbkyIIY=)
2: tSdPmCF2mRPxF2tL9jrht8v9nd0.roa (hash: 25zx6oeH7z2ZyGM4y2LzPQiLw04ocTvL7Bq+gPKpw0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:29:f9:c9:f0:ad:dc:19:0c:3b:64:ef:0c:e5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Jun 6 17:00:50 2025 GMT
Not After : Jun 7 17:00:50 2025 GMT
Subject: CN=f482db81e1e535e3a7eaa5f8420f3077f0c87857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c7:68:71:de:97:bd:d0:f3:fa:72:24:67:47:
cb:78:01:8b:ed:93:1f:60:5c:4a:9b:6e:7b:1a:a8:
48:6b:64:62:46:60:16:39:35:4e:94:ca:4e:13:7f:
5a:26:9b:01:d3:e0:3f:fd:5f:89:38:a1:d1:d8:d2:
32:1d:bb:1b:be:20:71:71:cd:c3:2e:df:ae:16:e0:
01:31:eb:3d:f6:8a:8e:4f:97:0a:8d:93:0b:03:55:
3f:ab:da:08:24:f9:eb:fa:48:0b:44:6e:87:3a:7b:
b2:1c:b0:a6:45:74:94:f9:04:8f:d3:ed:0f:68:b8:
09:fe:f2:46:e4:d9:4e:9c:42:71:a6:96:b3:0c:a7:
6b:d0:96:89:2c:21:21:e5:bc:a6:df:ab:bc:59:c4:
4a:7d:ff:60:2c:0e:5d:8c:f5:cd:4f:d0:bc:2a:fc:
2b:e2:a5:90:4e:04:53:75:b4:ed:d2:b8:9c:7c:84:
d0:8f:cd:73:b9:27:8e:d3:e8:e4:04:97:1c:e3:4a:
eb:67:e7:c3:eb:51:86:0c:00:e9:ec:44:db:3b:55:
4a:02:72:8f:fb:d2:ca:a5:92:84:89:56:d4:12:57:
11:32:e3:59:f4:f4:f5:9e:7b:0d:33:93:a8:ff:7e:
ba:5c:a9:0e:78:d4:de:a6:aa:7e:c4:b4:b5:6a:79:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:82:DB:81:E1:E5:35:E3:A7:EA:A5:F8:42:0F:30:77:F0:C8:78:57
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:3e:3d:15:2b:e4:76:81:35:13:7d:99:3c:2b:14:6d:d2:c3:
07:42:91:36:ef:23:4c:6f:f3:05:a7:fe:fb:ef:65:14:71:89:
d6:14:0e:4b:eb:18:ff:d8:2b:f5:85:f1:20:fd:77:68:67:62:
9c:bf:cc:9c:ac:34:9c:93:92:d5:b4:0d:5d:fe:a2:86:ac:6a:
ff:5b:f1:6d:6c:b7:1b:32:f3:23:2b:bb:b5:fa:9d:d1:50:76:
ab:e2:ee:36:18:43:10:35:3c:8a:69:df:6f:04:c1:73:8a:11:
65:03:53:0d:16:c5:e2:3a:90:fc:53:41:95:08:b7:b6:9c:2b:
e0:4b:c1:b8:f2:a6:28:51:df:aa:be:67:23:0d:e0:c6:c5:5a:
01:ae:b6:b3:28:85:a6:62:9f:03:25:95:af:6a:61:a4:07:33:
77:5f:cc:7a:21:91:37:cf:a3:1a:87:c0:23:8d:3d:bc:52:fd:
36:39:52:fa:ce:33:53:50:5e:8c:12:2a:20:77:08:b2:ac:99:
58:fa:82:97:fd:0b:ad:3e:d7:4c:b4:f3:f3:48:2c:73:73:3f:
2e:bd:d0:55:da:2f:37:58:b3:c6:e2:88:56:e2:be:5a:4c:3d:
9b:94:27:d1:08:82:74:01:19:60:61:32:c1:4e:38:23:7d:28:
dc:05:dd:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:55:47 2025 by rpki-client