Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: pXHlIEtDjeTvTgnme9P2ApHnBL760kU7f3nksK9cKlA=
Subject key identifier: C7:41:A4:9C:A0:0E:DC:5A:61:F2:EB:5A:88:51:90:0D:1C:E3:13:CE
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 01974C31D354522909DDDA21ABBB46A8640B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 05F4
Signing time: Sat 07 Jun 2025 21:00:23 +0000
Manifest this update: Sat 07 Jun 2025 21:00:23 +0000
Manifest next update: Sun 08 Jun 2025 21:00:23 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: sVfExU9pyTljDozZtpj5GUAed+HYDPVS8zEFpIUXT/M=)
2: PveX9WXxCJj9e18L9V5LXcSlf4I.roa (hash: Gc7ehRUF/Atprjxx4oQFsUeoQdkyLlSY7XL+/gL4J0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 21:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:d3:54:52:29:09:dd:da:21:ab:bb:46:a8:64:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: Jun 7 21:00:23 2025 GMT
Not After : Jun 8 21:00:23 2025 GMT
Subject: CN=c741a49ca00edc5a61f2eb5a8851900d1ce313ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:51:5f:53:ba:8b:73:6e:7d:ac:43:99:cc:
5e:1c:ef:5c:93:9d:de:f5:ea:cf:de:de:da:0c:e8:
2f:02:61:09:2e:c7:38:1f:b0:5a:af:d0:17:0e:a8:
67:be:b2:0a:5e:c2:fa:85:4f:24:3a:7f:db:0a:5d:
0f:30:e0:6e:7d:da:76:8c:f7:6f:1c:1e:ce:df:1c:
72:84:5e:23:5e:dc:4b:a0:e9:73:b4:15:30:be:c7:
64:0b:69:d1:91:ce:a2:fb:9a:29:b3:e1:86:dc:91:
e4:89:ec:e7:20:93:65:b3:11:24:82:94:43:cd:3a:
56:c4:2b:5c:9f:5f:9a:27:50:a8:f5:be:40:20:4d:
3f:b5:ef:6f:f2:e4:fa:9a:26:85:3e:64:26:2f:4f:
34:31:8d:fa:6a:99:80:f7:9e:45:a9:33:45:b0:cd:
ec:d4:3b:3c:eb:f5:13:0f:81:11:81:a3:63:77:ea:
40:89:ec:8d:c1:e8:d6:e5:2a:22:79:2f:2f:c7:8a:
48:42:d9:e3:cc:6b:22:39:92:02:b4:7d:8f:fd:0d:
ef:b6:43:1a:da:ee:a9:c7:11:4a:1c:72:f4:5d:d9:
d3:35:64:ae:7f:e6:98:ac:f5:e6:dc:1d:a9:1d:6a:
a2:79:ab:26:ed:c1:0d:25:ad:4c:08:ec:a9:18:5f:
ba:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:41:A4:9C:A0:0E:DC:5A:61:F2:EB:5A:88:51:90:0D:1C:E3:13:CE
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:6e:44:31:1f:fc:9a:ea:db:36:b4:6d:70:58:8c:12:eb:4d:
e8:4c:9c:1c:f2:57:ca:28:94:22:00:30:16:cb:84:44:1a:12:
32:4a:d7:29:63:c5:53:64:b1:34:84:bd:e1:0d:65:86:1e:a9:
79:a3:6c:9c:90:7a:69:dc:cd:97:7a:65:84:c8:b3:c9:4b:04:
43:4c:3a:a2:9d:3c:8d:89:5a:a2:b1:d2:d8:fe:73:9d:51:31:
9b:cb:ac:8e:96:12:ae:94:0d:05:2d:9a:44:f7:bf:2c:98:eb:
04:7f:5d:94:81:90:c8:bc:35:79:41:3c:22:24:8c:81:b2:1c:
14:c7:42:1e:f2:26:0e:d0:5d:56:f5:17:88:f4:9e:e7:6e:ce:
af:2c:4b:f3:44:70:ca:21:d3:b1:17:8a:51:25:4d:b5:5c:5c:
22:eb:5a:8e:10:d7:42:46:e5:14:3b:5b:ba:93:bc:ec:49:30:
5f:dc:5e:2f:70:e3:3a:f9:aa:68:70:4c:32:d7:2e:a7:2e:b4:
e7:d7:95:63:05:9a:cf:e9:cb:72:4d:35:a2:66:a1:c8:fb:98:
1f:2b:db:85:bc:8e:0c:7f:ed:a0:62:59:4a:9c:02:86:64:7a:
f2:0c:1d:ab:fc:24:90:7b:30:e8:26:6a:63:5d:2c:14:13:ff:
a0:e5:10:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:15:25 2025 by rpki-client