Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: /KyWwNu7YmOPL17p6sN7/ZICA/9MVjKtTdjx3sbIt0g=
Subject key identifier: 3C:DD:2C:24:89:70:42:32:85:F7:28:03:58:3A:D8:BA:F8:D0:81:BF
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 0197481E4767F6D47316F170BD22589F8199
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0AC3
Signing time: Sat 07 Jun 2025 02:00:33 +0000
Manifest this update: Sat 07 Jun 2025 02:00:33 +0000
Manifest next update: Sun 08 Jun 2025 02:00:33 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: UB0t55kEFxs53WsYaObI47Pc4lcc+Gs/X+oXeeRhQyY=)
2: It-Yns2Nwvw18OgbQ81pWbtQZ7M.roa (hash: 7H+X0erT0owXhcTltBjLEsiIIl6BxhT41pVVMePz04w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:47:67:f6:d4:73:16:f1:70:bd:22:58:9f:81:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Jun 7 02:00:33 2025 GMT
Not After : Jun 8 02:00:33 2025 GMT
Subject: CN=3cdd2c248970423285f72803583ad8baf8d081bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2c:4f:4a:1c:96:64:68:33:2b:d6:f1:a1:36:
c0:20:72:e7:67:13:95:d3:59:75:33:cb:39:22:c0:
c1:34:5d:80:75:f8:1f:e3:fb:a1:b1:9e:12:b8:c1:
df:24:f6:13:dd:3f:40:66:bc:af:c3:0d:06:63:4d:
af:50:b5:28:ab:35:d0:6c:2f:44:32:7a:ce:a3:bd:
4f:3c:c2:5c:25:7d:11:ac:c9:11:c1:ff:fd:99:a7:
17:b5:aa:bc:a2:3c:97:fa:57:2b:a5:24:9d:1a:07:
a0:d1:c8:10:2e:7a:56:75:b8:bf:96:2b:58:aa:4d:
df:62:9f:b5:7e:a0:18:8f:16:77:57:35:a5:4c:90:
af:64:74:20:d9:89:a0:f2:a4:a1:e9:00:73:c6:d8:
fc:47:ef:34:e8:cd:1d:b5:b7:a3:ef:6b:a1:fb:27:
9b:82:67:4a:eb:d5:39:cf:06:37:48:3d:9c:c5:56:
1b:02:75:fd:46:7c:59:e1:7c:a0:27:f8:b7:9c:98:
cf:d2:ed:55:b3:7c:85:08:32:78:2e:25:26:3f:32:
f6:ed:a5:73:5f:2b:ee:37:64:94:9e:9a:d5:18:45:
3a:32:3c:69:43:bc:b9:7c:b0:2d:c3:5b:18:a1:1f:
71:43:0b:dd:29:26:d1:88:a3:24:ce:d9:9e:d4:96:
05:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DD:2C:24:89:70:42:32:85:F7:28:03:58:3A:D8:BA:F8:D0:81:BF
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:e9:c9:81:59:2b:16:f3:21:81:0e:23:bb:c4:dd:e5:2c:72:
64:bc:19:99:f9:a6:1f:8f:f2:ef:07:13:6d:50:5d:66:d8:b3:
19:7b:7d:d4:b4:4e:35:60:ba:d3:58:6d:dc:7d:3f:75:42:4a:
dc:83:a0:ef:fa:f6:c1:54:73:e7:8b:b8:42:ae:ce:9f:50:85:
29:13:7a:11:64:af:e6:0e:f2:32:35:d4:34:2a:44:7c:9a:71:
9d:bf:d4:ad:17:f5:51:1f:70:14:24:3a:11:ee:86:31:53:75:
56:97:5d:be:83:aa:91:99:d8:51:6f:2b:ea:01:15:a1:bf:89:
5c:5d:8a:c8:5c:ef:24:44:9b:56:0e:92:2c:39:5e:93:4e:c1:
8a:e8:7f:04:50:9d:3d:9b:03:93:29:bd:fe:3b:88:49:42:1c:
f4:7f:6a:87:9a:18:58:e1:46:f0:f8:a1:13:e9:c9:25:6f:8c:
64:30:cb:46:0c:ca:b7:41:a4:02:60:9e:be:d9:10:93:a4:d6:
ba:a6:87:bd:27:26:00:cd:29:0c:5d:1a:73:59:2f:61:ca:d3:
87:f9:5d:33:a7:d0:57:75:8f:91:ad:b9:64:1c:5a:a8:a2:88:
89:0d:72:e5:ec:07:10:be:cd:56:12:fa:13:46:a7:b6:6e:ae:
78:49:8b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:56:54 2025 by rpki-client