Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
File: tE-FORdNAL-ov95JBD9IXDpYdSU.mft (raw, json)
Hash identifier: ZysW8iFHcBjndpCrY6YLVrybFwKZHbdFG5Ls9kA+bb8=
Subject key identifier: 3C:0E:6F:30:D2:4E:D5:73:D7:F6:DC:C1:7F:B3:86:CE:71:02:A6:8F
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 01974C69EEA656698E9A1D10A12AEDE1DB47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 22:01:39 +0000
Manifest this update: Sat 07 Jun 2025 22:01:39 +0000
Manifest next update: Sun 08 Jun 2025 22:01:39 +0000
Files and hashes: 1: tE-FORdNAL-ov95JBD9IXDpYdSU.crl (hash: dkn2ZmTA3TEd7ER13QAJ8UQHhjQ5fBG/MVtXpu0Vjss=)
2: xUV-1OBQ9tZ_Xv0-wwfyT7s6w0s.roa (hash: kyqwYkE6bzY0EYwjT0bnHVarYHy1IZctjgwIpdkE7zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:ee:a6:56:69:8e:9a:1d:10:a1:2a:ed:e1:db:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: Jun 7 22:01:39 2025 GMT
Not After : Jun 8 22:01:39 2025 GMT
Subject: CN=3c0e6f30d24ed573d7f6dcc17fb386ce7102a68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:06:de:bf:e5:33:9e:35:6d:b5:4f:04:ed:d0:
30:f7:16:a7:ad:4d:1a:e0:8e:7b:ab:e5:2d:4d:a3:
62:a5:47:df:80:0e:5e:2e:01:4f:b7:41:fa:b3:f0:
39:12:62:f3:9c:b9:a0:aa:cb:a7:3f:1f:3f:d0:c2:
b0:fb:e8:d3:c7:34:e4:34:df:e6:01:30:9b:e6:a0:
48:54:48:0e:e7:b0:0e:8e:2b:8e:c2:23:ea:40:fd:
a1:3a:00:11:56:d2:1b:5c:62:4c:95:f4:8f:de:80:
e2:15:dd:b3:13:18:d3:3d:5d:67:60:32:57:36:e0:
f9:1e:8f:32:eb:88:22:ad:cf:6c:06:d8:94:2f:b1:
d8:5e:69:d3:f4:e9:63:91:53:72:d6:08:d0:de:86:
95:53:b3:9c:8f:cf:56:4d:f7:42:9a:4e:a8:93:6f:
75:4b:d4:3e:bb:e7:4f:8b:d0:1d:04:c6:4b:4a:1b:
6c:5f:81:4f:b0:c0:ea:24:5e:cc:bd:12:7e:dc:b6:
54:6a:4b:a1:2e:90:e5:08:ba:f8:b6:48:c1:85:3c:
0e:57:27:39:9c:14:29:a2:ba:e5:4a:fd:5f:3f:0b:
2e:02:82:9d:a3:bf:3a:15:db:71:cf:6a:81:96:bc:
f8:56:79:aa:69:8f:44:ef:bb:8c:00:fa:6d:9e:ca:
11:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0E:6F:30:D2:4E:D5:73:D7:F6:DC:C1:7F:B3:86:CE:71:02:A6:8F
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:99:18:b8:7c:87:1c:87:5a:9c:58:c7:47:fc:ea:c9:45:37:
79:a7:df:4c:6d:fc:f1:5d:76:1e:1a:b0:00:3b:3c:ad:55:e3:
a7:36:21:d1:57:d8:b6:c4:8d:5e:0e:37:10:bb:40:da:fc:7d:
fd:1a:16:cf:a6:99:b2:5e:b0:d0:6a:7e:66:48:22:9b:86:80:
64:0e:2a:6a:e3:a1:3d:28:0a:df:ce:05:93:c2:bf:9e:93:29:
19:a1:6b:41:72:1d:ef:0d:72:b5:1d:45:49:00:3d:9b:12:ad:
e8:29:1d:39:34:e5:9e:f6:86:e5:3e:41:61:6e:fc:68:78:df:
ec:06:43:5c:61:4c:98:4c:a5:44:76:50:41:a2:9b:1d:55:62:
07:5d:25:d1:cd:ab:e5:dd:ce:2b:84:10:b2:f9:0f:f8:92:73:
4b:d8:52:1a:36:30:eb:17:d3:d3:b9:85:c3:a5:c1:6a:d5:3c:
59:39:29:01:11:7a:f4:a0:8a:8a:c2:0e:f8:df:f8:9a:4e:b4:
f9:84:39:3b:60:33:12:a3:40:6f:a1:c1:63:dd:dc:cc:30:a8:
10:a9:09:9d:d6:1b:ef:95:35:ae:af:ad:6c:02:3a:34:ba:81:
80:0f:86:91:de:60:76:96:6c:1b:f0:f6:12:76:f5:7d:e4:02:
be:4d:86:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:24:45 2025 by rpki-client