Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: w0kcNxG6XCEzd7LyV3p54Q+F/qDlLZZaxtdIEfeDhDg=
Subject key identifier: FC:6B:BD:11:12:C5:70:F3:63:A4:D8:7C:A9:6E:00:79:ED:07:3C:95
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 019748FA664C91AC1D8B25417973563E6BAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 05BF
Signing time: Sat 07 Jun 2025 06:00:59 +0000
Manifest this update: Sat 07 Jun 2025 06:00:59 +0000
Manifest next update: Sun 08 Jun 2025 06:00:59 +0000
Files and hashes: 1: 1-zGyc8-sNFoNd9jrRwy0ohv-lr8.roa (hash: X6damPmptp3XphV2HfGbEnZgUQ5Ok8UVDdDjwWdsAA0=)
2: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: dySTejiJBVQlHcjECCIziJQ+DCu0pL6nmQC9aUQqKSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:66:4c:91:ac:1d:8b:25:41:79:73:56:3e:6b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Jun 7 06:00:59 2025 GMT
Not After : Jun 8 06:00:59 2025 GMT
Subject: CN=fc6bbd1112c570f363a4d87ca96e0079ed073c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:72:30:39:65:00:99:56:f7:72:b0:2c:e4:8d:
48:dc:41:89:de:74:1e:17:cf:91:19:bb:0f:f2:7a:
a9:6c:d5:60:fd:68:02:e2:f5:2e:49:2d:8a:84:e1:
bc:b7:68:df:f7:68:a1:a3:45:8f:24:b3:0f:d2:d1:
4e:e4:a6:7a:aa:27:80:e6:34:f3:b0:a6:36:1a:0f:
bb:6b:49:05:10:83:19:39:71:90:7b:7b:8b:36:4d:
95:55:06:50:dd:74:e3:00:6a:82:28:c5:44:f6:cc:
ef:9c:94:9f:46:03:90:da:a5:8e:8a:f0:22:0f:4f:
a4:11:ad:c0:e9:d7:10:39:06:95:e0:88:57:29:9d:
55:17:88:96:16:01:b4:c9:8a:b1:eb:64:0b:7e:59:
e4:05:ad:ff:8a:a1:17:c9:5a:23:6e:fc:86:cf:41:
fb:32:11:5d:29:c6:28:8e:c6:0a:87:4f:29:b6:53:
47:54:a7:90:2d:e5:e7:bf:d9:40:66:79:e2:01:59:
4b:02:5b:ea:b3:76:8a:98:ed:88:4b:65:d8:f5:33:
49:53:14:af:7d:cf:ec:86:6a:f7:d0:8f:64:d5:1e:
60:fd:4b:7d:64:aa:1a:b2:a3:02:b9:3f:03:b1:ed:
8a:56:66:dc:2a:d5:98:ad:f5:f2:c4:de:a6:06:b1:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:6B:BD:11:12:C5:70:F3:63:A4:D8:7C:A9:6E:00:79:ED:07:3C:95
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:9b:0c:29:be:77:24:ff:8a:cb:4a:e2:40:46:5d:dd:c0:7d:
5d:14:10:4b:01:d6:8b:6d:18:ae:ed:78:85:1d:e7:7a:2b:6f:
b1:07:d7:1d:72:c2:ed:9c:c3:db:4a:47:6e:0b:73:4b:23:59:
fd:28:73:4a:2f:b3:97:e0:cb:54:b2:5c:1c:83:d8:60:61:83:
e9:0c:5c:4b:8c:02:e5:4a:1d:63:09:bb:e3:ef:cf:6a:8b:05:
79:fb:e7:73:42:3a:01:0b:ac:b5:ad:7a:11:81:d3:ec:b1:63:
b7:a8:0a:f1:02:d2:9e:6e:b2:fb:c3:73:c2:6b:fb:fe:d6:74:
78:9d:8f:ef:89:8d:d4:98:11:b1:84:53:69:c6:f2:31:fa:df:
d0:14:9e:13:87:c4:f1:b9:d5:ca:52:fe:99:7c:be:80:23:15:
51:7e:6a:aa:d1:fb:eb:81:62:26:b0:4e:fc:84:43:14:b2:30:
d4:63:f3:85:5e:c1:a1:97:86:28:7d:97:42:17:7a:aa:87:31:
f0:c5:1d:13:9d:92:d4:18:8b:87:cd:55:36:10:ca:f6:3a:92:
a8:18:83:ef:a5:a0:69:21:b0:f2:8a:0e:65:b0:41:81:c3:bd:
a3:05:8b:56:38:1e:5f:60:09:ad:5d:dd:97:f7:4f:3e:89:63:
26:e0:83:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:21:23 2025 by rpki-client