Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json)
Hash identifier: wj7iKBGeJN1NGndJbsQT+82ohreg500Bnp28vxD8Vsk=
Subject key identifier: 9A:C6:25:EB:A1:32:8C:2C:8A:E5:99:5E:69:B4:0E:88:5D:6D:1B:46
Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Certificate serial: 01974B566FDFFBA6738237CB64D4A9D68C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
Manifest number: 0512
Signing time: Sat 07 Jun 2025 17:00:45 +0000
Manifest this update: Sat 07 Jun 2025 17:00:45 +0000
Manifest next update: Sun 08 Jun 2025 17:00:45 +0000
Files and hashes: 1: 0i_jhQqN2iNg5AEP50J1N6ocU14.roa (hash: dte6GhHBF0dhj/nHMGGQvO/MzVf6vGP1TT8x/x47jYs=)
2: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: R3FbYixMNVljBpW/Pjthw6oB40NVd1yE7lUyUaI+plw=)
3: wH2BXhQbp4RbWEqazf0ETM0OAOI.roa (hash: WPj1rnPevOFK6Wz2Mo2etzdEIyu2IX1IvghxSjU5v1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:6f:df:fb:a6:73:82:37:cb:64:d4:a9:d6:8c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Validity
Not Before: Jun 7 17:00:45 2025 GMT
Not After : Jun 8 17:00:45 2025 GMT
Subject: CN=9ac625eba1328c2c8ae5995e69b40e885d6d1b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:9c:9f:e2:57:87:1d:c3:06:67:6d:30:1e:
e3:55:80:fe:67:76:43:f3:ba:47:02:dc:20:f5:77:
f0:9e:8a:3e:fe:53:7e:67:29:6c:39:40:ce:e7:6d:
07:a3:22:d7:89:3b:db:1c:71:35:97:98:eb:1b:5b:
91:a7:5d:6f:ca:7a:ef:62:f8:de:f5:56:6e:f6:45:
ba:04:f0:d7:eb:a0:e2:9f:c3:ca:0c:5a:dd:b5:ae:
69:f9:0b:24:75:05:d7:b5:16:13:11:8a:9a:be:ad:
cd:d5:85:96:14:4e:40:6a:b8:17:a1:01:d6:60:56:
ae:34:2f:df:54:f7:85:84:37:66:71:f2:4a:f7:ef:
b3:5d:ef:f2:ad:16:7c:b3:24:18:17:52:91:0e:e3:
b0:38:bc:da:63:94:9c:8a:6b:91:8d:79:9b:37:f7:
8e:b4:9e:cc:43:84:fa:96:f8:74:11:f3:f6:4e:2b:
08:34:7d:eb:d8:e0:4a:a9:8f:6a:05:ad:1f:72:98:
3f:61:f7:b8:bf:43:fc:8a:f9:44:2c:b1:0a:74:68:
9d:ab:cc:68:92:b1:fc:09:c3:96:6b:af:86:54:a2:
11:c6:d3:00:b1:4a:c6:e2:19:56:0a:ae:44:20:99:
df:cb:8c:cd:c2:09:2e:11:49:56:42:ca:e5:c5:30:
2d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C6:25:EB:A1:32:8C:2C:8A:E5:99:5E:69:B4:0E:88:5D:6D:1B:46
X509v3 Authority Key Identifier:
keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:da:ac:e8:a6:26:b8:00:7b:f0:cc:a0:8b:b2:41:a2:e3:68:
9a:a0:69:27:86:e4:79:2f:ec:be:95:47:92:88:16:19:0a:a3:
fb:7e:b6:6a:55:af:80:c0:66:39:96:85:27:ea:da:7f:9c:e5:
2a:3d:85:b0:7a:ab:4b:13:f6:8b:53:5b:52:ff:67:3f:73:e0:
49:65:3b:ed:56:45:3b:26:4f:69:4e:f0:40:1f:31:b2:c9:95:
88:3b:f9:dc:f7:ff:e0:30:83:49:06:9c:9b:c8:68:e7:9b:18:
42:d5:16:64:d3:ac:1b:68:86:8b:49:44:b9:45:30:76:d7:b2:
c1:a3:dc:18:63:80:2a:6e:f1:35:59:49:3c:62:cd:d8:57:91:
33:e0:f2:47:c6:c1:a7:dc:e1:61:ad:44:d5:c3:41:cd:ee:2d:
f6:f2:18:b2:b6:6f:97:61:d2:36:c1:8d:69:fd:a4:9f:db:7c:
f2:38:8f:8a:50:04:09:b0:87:1a:f5:78:bc:d6:53:c3:eb:95:
f0:dc:f5:f0:38:f7:c1:90:ff:ce:0e:14:3c:ef:9c:40:c0:86:
e2:7d:27:54:93:71:ed:1f:31:62:7a:3d:29:94:c6:09:13:a5:
ca:03:17:9b:a7:2a:3d:89:03:a1:b2:6d:24:46:db:af:66:03:
7f:0a:43:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:27:17 2025 by rpki-client