Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: Q5oJfngnBjKnp5F3M54t2vYl5gST2oWgRNAdBoW3tJ0=
Subject key identifier: 3D:6B:9C:FC:B4:F8:88:F3:4C:71:7C:F6:61:40:EF:9F:08:30:01:E0
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 019751C60ED9925D6AB725A2995CEEF8AA16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0A28
Signing time: Sun 08 Jun 2025 23:00:23 +0000
Manifest this update: Sun 08 Jun 2025 23:00:23 +0000
Manifest next update: Mon 09 Jun 2025 23:00:23 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: E/Miz7RaduPIUk6k2feacar+JNLm/Z7aUgUNvdMY/Q8=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:c6:0e:d9:92:5d:6a:b7:25:a2:99:5c:ee:f8:aa:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Jun 8 23:00:23 2025 GMT
Not After : Jun 9 23:00:23 2025 GMT
Subject: CN=3d6b9cfcb4f888f34c717cf66140ef9f083001e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7e:1d:8a:8f:4a:6b:83:49:d3:dc:7c:7f:d3:
12:51:ae:ce:4d:bd:4d:cf:e3:ae:0a:65:69:03:fb:
8a:6f:c5:a5:35:ac:3c:47:49:ea:c7:8c:48:32:fa:
5b:cf:69:89:a9:54:f1:bb:82:90:4f:dc:f4:89:94:
a4:01:19:c1:d3:4d:70:06:2a:13:d2:f9:3a:fb:ba:
5c:0e:ce:09:ce:e6:de:a8:24:8e:d5:a7:1e:e8:7e:
20:7f:d4:98:54:1b:2e:c2:c8:d0:26:3c:40:96:7f:
6d:b8:dd:18:07:39:29:94:9c:e2:a8:bc:7b:9a:bb:
ab:6a:a4:46:a9:e6:d5:0e:81:70:8c:80:9f:31:ff:
52:f5:5f:a5:da:9d:da:39:5c:18:a2:58:b9:5f:04:
52:94:23:93:3e:f5:73:1c:7b:0d:59:ce:d0:bf:e8:
75:7c:64:46:a1:01:c8:10:cd:bf:03:08:c3:62:d2:
12:cc:7c:ae:c2:98:eb:0c:57:58:88:0e:ab:2a:a9:
4f:7c:a0:92:6b:24:a4:f1:92:99:ea:73:45:3c:0f:
79:c5:6f:ca:7e:86:33:36:2f:1f:6c:f6:44:2f:c4:
79:1b:9c:2b:ac:47:1d:c0:94:0a:3a:0c:85:35:77:
bd:88:2e:a1:65:80:93:0b:6e:88:0d:08:d3:4b:d4:
d4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6B:9C:FC:B4:F8:88:F3:4C:71:7C:F6:61:40:EF:9F:08:30:01:E0
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:33:b8:79:f2:c3:9a:06:8f:78:c0:73:a9:1c:28:cb:79:0d:
4e:90:39:a8:4c:9e:61:d6:07:e4:c5:38:71:88:25:39:69:3f:
0d:5c:28:24:d8:bb:d4:08:a6:07:94:f7:0b:f2:66:21:92:67:
30:e4:85:63:6c:9c:fb:4f:71:8e:c0:72:5f:34:68:05:98:f0:
a9:43:ea:26:db:75:7f:cf:c7:ce:0c:4d:32:56:83:19:21:10:
74:0d:9a:29:b7:f0:3d:89:40:6c:00:0e:5f:db:e1:f1:02:ad:
55:14:c1:46:f3:23:c1:e2:9d:71:2c:42:e3:d2:62:df:81:4e:
e0:f5:ff:e6:66:48:a3:99:3a:1d:f1:34:3c:81:6b:d6:58:8d:
92:d3:c7:c0:23:47:89:8c:16:7f:25:92:2f:17:e2:0c:58:33:
d5:e3:bd:ad:df:cd:bb:f5:37:c3:ef:8a:42:9a:c5:39:94:ed:
fc:74:ad:16:21:3a:56:78:1e:c3:d9:95:0f:43:92:c0:30:c2:
02:81:59:e8:c8:c9:ed:2a:3c:28:c6:8a:0b:53:2b:91:8c:a2:
f0:e1:96:0a:26:e0:9a:cb:73:77:a6:d6:22:cb:5d:ed:05:e8:
d5:e2:30:55:9e:47:3e:b7:7d:8c:a2:ef:60:c2:1e:5a:7d:f1:
7f:53:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 04:20:19 2025 by rpki-client