Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: BuSjmjKGzBO6YvImorbpQGAGl54F0Noe6hBbZhqBdnM=
Subject key identifier: C2:76:CD:2C:87:6F:80:6C:AB:C3:A3:E9:2B:7A:49:7E:D0:A0:32:DB
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 01974A0C8E35E8D340E7CD9C6B32D5F153B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 1581
Signing time: Sat 07 Jun 2025 11:00:26 +0000
Manifest this update: Sat 07 Jun 2025 11:00:26 +0000
Manifest next update: Sun 08 Jun 2025 11:00:26 +0000
Files and hashes: 1: aSlfyLBw9tgMgXUQzZob6GMDMuM.roa (hash: DQ6riuAx/+y5wvPOEmkDzdZnToFJiPSBUt3sxo+9O3s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: q9pCQK1bGILE1UuxEmJIlyvYIH0XfOMi5IPy3V7kx3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:8e:35:e8:d3:40:e7:cd:9c:6b:32:d5:f1:53:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: Jun 7 11:00:26 2025 GMT
Not After : Jun 8 11:00:26 2025 GMT
Subject: CN=c276cd2c876f806cabc3a3e92b7a497ed0a032db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f0:b1:03:f2:94:5b:14:03:8f:7b:48:54:01:
07:d3:f1:d6:c8:70:8c:f5:ac:14:5b:ca:97:68:df:
fa:9e:31:b8:25:a6:59:8f:ed:4f:1c:61:54:be:22:
a8:bc:ae:ff:29:d7:0d:37:00:63:96:07:46:51:00:
d8:b5:c1:06:da:35:03:04:62:d6:26:23:c8:7a:b7:
cf:6c:d3:7e:a2:0d:22:dc:e3:f9:a9:af:d7:62:d3:
2c:86:79:e7:05:ef:55:56:33:f9:6f:22:b6:f7:10:
fa:89:03:02:24:7d:62:7d:c8:66:38:7f:4d:ff:3e:
59:26:23:c1:db:9c:ca:a5:54:52:90:6e:3e:a0:bb:
6e:63:5e:0c:c6:d1:80:c0:b0:79:52:fb:6f:8f:27:
85:95:af:31:8f:fc:c4:b3:89:b4:b6:28:46:90:4c:
b5:32:e9:f6:5f:95:65:78:6b:03:bd:4e:7b:84:2f:
56:52:60:c7:99:04:fc:69:e3:e4:0b:d3:f4:f9:45:
9f:39:d8:cb:fa:e0:6b:51:ab:a7:d7:a4:a7:44:3d:
21:37:b0:81:06:be:71:83:ad:ec:a6:2e:8e:4a:88:
1a:40:bb:a0:6a:4c:8b:0a:b6:42:7d:01:bb:17:f0:
d4:fe:4d:e7:ce:13:a6:66:af:48:9d:86:f5:ad:22:
b0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:76:CD:2C:87:6F:80:6C:AB:C3:A3:E9:2B:7A:49:7E:D0:A0:32:DB
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:4b:28:d7:b6:93:b7:68:4b:ee:13:98:3a:f5:0e:34:d6:e0:
39:17:9f:d6:14:35:ea:0d:f4:e0:e1:75:bd:88:85:4a:ae:00:
ba:43:35:86:7f:f6:a3:cc:eb:48:f5:b5:00:e4:42:cb:31:dd:
f6:42:b1:c4:0a:19:7f:69:e6:af:33:66:e7:09:35:f2:4b:e9:
33:2b:ba:6f:57:30:c1:43:55:3e:70:68:d3:dd:c0:e8:84:aa:
6e:f5:6b:0f:2e:94:6c:58:71:96:60:5b:7f:18:d5:b7:82:ef:
aa:47:39:d0:19:7c:f7:12:45:5a:49:95:b1:47:a8:16:ce:25:
37:ef:e9:9d:fb:70:4c:59:a0:4c:80:02:70:e7:dd:1d:57:02:
09:24:39:bd:46:ff:2d:49:0f:aa:85:df:b2:46:f1:1e:0e:58:
78:74:20:ec:ac:0a:33:48:e0:e0:ee:10:d3:6c:16:b9:f0:a5:
a8:11:d9:29:da:90:05:7c:46:fb:87:4a:1a:8e:2a:fd:fc:6e:
d3:7e:6a:96:d0:4f:05:09:8c:c1:2b:02:4c:9d:a9:32:2f:d7:
f0:9a:9e:cd:4d:ae:7a:1c:65:ea:e1:45:c7:3e:c7:bf:a0:c2:
27:f3:10:cc:36:09:ac:bb:af:a5:e1:9a:2b:04:28:e9:7a:06:
59:db:ed:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:34:55 2025 by rpki-client