Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json)
Hash identifier: 5QOAQX5/2NXLGyRHjMDL+x8mmqGhSeY0wTiCdBGIaNk=
Subject key identifier: 72:DF:95:8C:29:19:65:20:B9:67:F7:A3:89:0F:E8:0F:27:92:70:06
Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Certificate serial: 01974967DAD0264CE132D5BF8B7BB5877C39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
Manifest number: 1034
Signing time: Sat 07 Jun 2025 08:00:32 +0000
Manifest this update: Sat 07 Jun 2025 08:00:32 +0000
Manifest next update: Sun 08 Jun 2025 08:00:32 +0000
Files and hashes: 1: 5C3OBNWJVX0XYEPy1WMxBH9P3fA.roa (hash: paK6hyOcqXDBN745vkYjBiywiYBVzqMBn2uUtBINBBA=)
2: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: DqsNP4ngrTxDM+Ei77L9yJlZSyUqZYmqd0C+vlPpLXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:da:d0:26:4c:e1:32:d5:bf:8b:7b:b5:87:7c:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Validity
Not Before: Jun 7 08:00:32 2025 GMT
Not After : Jun 8 08:00:32 2025 GMT
Subject: CN=72df958c29196520b967f7a3890fe80f27927006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:29:62:c9:0b:15:bf:98:a1:ea:25:a7:18:59:
81:ed:6d:9a:c9:c5:13:cb:7d:0d:5e:a0:95:06:62:
c6:55:9b:7f:68:01:81:02:e7:9a:07:18:f3:59:4a:
3d:e1:7b:57:a3:d4:fb:da:12:66:dd:a4:3c:f3:2e:
42:04:42:ca:7a:36:d7:fc:fe:98:c3:17:32:e6:04:
fd:35:60:0a:e7:4c:51:e5:3f:16:04:e1:4d:1a:e6:
ab:fa:5c:68:2e:b8:93:72:7e:97:d6:9c:34:48:cd:
a3:3b:04:40:3c:f8:7f:78:28:85:31:68:37:88:8d:
14:99:60:e6:a9:ef:1e:08:42:96:f7:13:97:fe:47:
bc:52:4c:fe:5c:54:fe:2c:9d:14:5c:34:5e:1b:e7:
ef:29:78:b8:c9:31:1c:a5:bb:97:3e:6d:c4:38:64:
2a:f6:aa:fb:f0:5f:9c:fa:ad:01:71:ee:07:1c:c0:
b0:bb:ed:86:75:e9:e6:0e:fc:95:e9:6d:32:7f:bc:
d8:f5:55:59:cd:f7:38:b4:88:3f:c4:9c:a4:66:a0:
82:ff:a1:1f:b5:a9:d5:7a:c0:a0:57:56:24:2c:4c:
13:2f:ee:9c:87:ed:bf:5a:90:8e:6d:c3:f4:8a:fb:
98:83:5d:fc:72:8e:d2:8b:ea:d7:7a:44:6c:64:0c:
77:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DF:95:8C:29:19:65:20:B9:67:F7:A3:89:0F:E8:0F:27:92:70:06
X509v3 Authority Key Identifier:
keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:71:26:de:59:76:0b:ab:7f:b3:54:b9:0f:57:20:d0:c1:5d:
05:99:71:a4:5e:13:3a:38:b8:bd:67:fa:7b:20:31:aa:ed:85:
54:7b:4a:ef:34:20:ff:83:9d:16:37:ed:8f:95:46:82:e2:ce:
68:8c:43:2a:27:23:e0:ad:d8:92:f9:d0:6d:36:35:d2:5c:23:
a9:c0:b4:68:3b:14:4b:55:4b:d9:d8:3e:94:59:4d:d2:54:04:
09:fe:c9:26:7c:da:13:60:76:5f:4f:0f:11:ee:ae:be:e1:9d:
88:fd:39:bb:8b:10:38:73:42:7a:24:9f:d5:db:5a:05:25:9f:
b3:88:9c:2a:52:1e:9e:cb:c9:2c:ab:ed:c7:a8:7e:5b:1b:50:
95:12:ab:77:86:b4:e6:4d:16:78:63:bc:a2:fc:47:c1:27:67:
a4:cd:09:01:44:61:15:9f:80:3f:55:57:ff:48:b8:ff:40:79:
f3:dc:5b:93:79:c1:0f:5a:cd:ff:b5:fd:5f:e0:b1:4d:e9:c5:
71:50:ad:49:80:3b:26:8b:f9:66:30:37:19:9a:b8:96:02:fe:
f9:c9:7a:e8:ad:af:2a:98:f1:81:05:a8:7d:14:f0:32:14:99:
e8:22:62:49:90:50:54:d2:ff:85:2e:b5:5e:4d:2b:1b:16:90:
ab:0f:b2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:48 2025 by rpki-client