Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
File: syu38vqMQUxnGIvau_t2IVaTuoc.mft (raw, json)
Hash identifier: 36oALWS04rwRf0fjDR8l2YsAgTvmGPxx9AOoEdFxfos=
Subject key identifier: D7:FC:09:D5:CE:BD:E4:C9:96:53:F7:18:06:82:E4:7E:64:81:9D:35
Authority key identifier: B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
Certificate issuer: /CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Certificate serial: 01974BFB4F1B9D85EBF7E5FFFF43190613FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
Manifest number: 0379
Signing time: Sat 07 Jun 2025 20:00:50 +0000
Manifest this update: Sat 07 Jun 2025 20:00:50 +0000
Manifest next update: Sun 08 Jun 2025 20:00:50 +0000
Files and hashes: 1: dlFU-VFKr3DcjZAchl6XqyqKK5c.roa (hash: neVLf32lP2kuQND5P5wXOeNSgGn0qOcZGwTsUoY1fZs=)
2: syu38vqMQUxnGIvau_t2IVaTuoc.crl (hash: jGh2nLN5WwByzf6Q9FUtNBTTy2teiJGnrBKvaZEc4Yg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:4f:1b:9d:85:eb:f7:e5:ff:ff:43:19:06:13:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Validity
Not Before: Jun 7 20:00:50 2025 GMT
Not After : Jun 8 20:00:50 2025 GMT
Subject: CN=d7fc09d5cebde4c99653f7180682e47e64819d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:de:89:4c:fd:ef:81:e6:57:ce:d1:70:87:4c:
bf:8e:7e:a2:49:9a:83:d9:2e:b0:cc:14:f1:d6:a6:
76:75:34:76:e3:2c:7f:90:46:c1:cb:0d:43:41:bc:
94:7b:ff:a5:3e:86:f4:d4:8b:42:7f:02:70:ec:27:
20:96:75:69:44:94:4c:95:0e:d2:2f:cd:d4:af:cd:
b0:86:2a:52:58:62:d6:f6:9e:1e:46:7d:2a:04:bc:
b1:59:1d:10:13:51:5a:8c:fc:12:33:93:72:8c:80:
5f:08:a7:fa:f0:cc:52:c6:24:c2:60:30:65:9e:05:
49:7f:6e:c4:ce:d7:d9:5e:b1:f4:11:04:d5:74:55:
fb:fd:06:c4:ab:60:98:91:56:70:71:d5:1d:99:d5:
1e:ed:45:a0:16:4c:ac:01:27:78:4d:e7:ac:18:3a:
f7:67:87:39:01:dd:7c:e7:c9:6c:09:57:98:d5:5f:
f4:fb:aa:6e:cd:b7:bb:c4:1d:85:7f:95:28:06:88:
9d:43:80:32:46:6f:0a:6d:07:00:d8:e8:8a:48:ac:
5a:00:fe:4c:b0:0b:a3:85:5c:91:d0:44:4a:bd:49:
c4:77:2a:78:1c:20:c0:07:e2:22:b0:f6:fe:b6:b7:
3a:69:69:08:38:ef:69:9c:7c:6e:b2:fc:31:2d:d7:
3d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FC:09:D5:CE:BD:E4:C9:96:53:F7:18:06:82:E4:7E:64:81:9D:35
X509v3 Authority Key Identifier:
keyid:B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:e2:ce:d6:48:cc:e3:8f:41:37:c9:df:19:6d:5d:76:c7:be:
04:b2:c1:e4:3e:cc:d8:67:83:b1:bb:19:67:73:9b:7d:44:79:
ef:83:0d:74:26:07:64:2f:be:b6:16:5d:1f:f8:9d:3d:12:45:
a7:79:3a:8e:f0:3b:f2:b5:5d:e6:a3:29:3c:8b:d8:d9:e6:da:
0c:9a:0e:31:43:1e:4d:f5:fd:fe:5b:8a:2d:6a:29:ac:a4:24:
7e:15:17:21:a2:0b:b5:45:de:6a:c0:2a:40:ea:c7:4b:12:a4:
9e:47:bf:91:c0:ee:50:bf:44:60:ff:30:c7:d7:6e:58:e6:09:
f2:32:f3:4d:49:ad:67:f2:5d:cc:8c:ec:9e:34:b2:47:e9:0c:
ae:44:f1:b2:50:8c:e8:9e:1a:04:e4:f7:92:61:07:44:aa:40:
e7:aa:27:bc:d6:78:38:dd:19:28:9f:6a:f8:40:c3:03:4e:e4:
64:93:fa:c5:cb:df:90:94:bd:29:aa:47:e2:9a:21:6c:2e:06:
9b:80:3f:be:8f:77:86:20:fd:e4:ed:85:1b:aa:03:93:92:fa:
2a:9a:df:7a:73:31:c1:ed:87:68:38:e5:d5:c4:b7:49:cc:a4:
1e:49:02:55:67:7f:31:0d:d6:59:87:cf:67:6d:fa:05:13:da:
57:d0:64:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:54:27 2025 by rpki-client