Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: MLzqlI6rwWCpc8Wd2now4+hsCpvZJ5VxiwKhHdoaxn0=
Subject key identifier: 49:26:8A:17:DF:74:35:7A:4F:9F:E1:65:08:13:D1:A9:AE:92:34:B2
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 01976D747D4EB1E7418007411FCA1EB9E1B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 02EF
Signing time: Sat 14 Jun 2025 08:00:40 +0000
Manifest this update: Sat 14 Jun 2025 08:00:40 +0000
Manifest next update: Sun 15 Jun 2025 08:00:40 +0000
Files and hashes: 1: fwI8WQwy5fbXMlIKzIdcXaYEMU0.roa (hash: bPDJhxbWV/nawvua5orm+AkfyQvA9xpKaA3uAdqYMPA=)
2: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: d5J977wC9D0Jm4ZaQbykoSvp5+8tqhiOaZlkc3TXf/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:7d:4e:b1:e7:41:80:07:41:1f:ca:1e:b9:e1:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Jun 14 08:00:40 2025 GMT
Not After : Jun 15 08:00:40 2025 GMT
Subject: CN=49268a17df74357a4f9fe1650813d1a9ae9234b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fc:c4:42:e2:80:55:a1:fa:6d:b0:38:2e:ea:
70:3a:25:3c:25:7a:47:b3:b7:60:30:b0:e7:5e:fa:
f8:d9:33:d3:f6:0e:ac:f5:58:5f:b3:4b:f0:c6:91:
bb:58:f2:b8:83:6c:75:74:82:0a:5f:de:da:cf:c0:
48:a5:63:cf:fd:8b:90:66:19:87:b8:db:e2:35:54:
39:48:22:89:8b:d6:a4:b9:7f:85:68:bb:2b:c0:1d:
c4:1c:9b:2d:42:9c:82:24:bc:66:1c:10:ea:d7:82:
11:b7:72:98:54:5c:61:da:37:cd:25:3a:48:20:5d:
0e:9d:d8:79:69:e1:4c:d9:d9:91:d0:1b:9d:62:bf:
7c:6d:63:0d:8e:ee:c6:e3:8d:2e:f4:b3:86:0e:bb:
26:10:63:15:79:40:7e:13:92:20:5a:2b:58:71:63:
00:3f:79:02:82:78:57:fd:d6:01:35:97:7f:7f:51:
af:4a:95:32:1a:c2:e0:b7:2c:dd:6d:75:9e:65:26:
fa:15:f0:3a:75:dd:40:cb:fb:ba:b2:fb:58:89:5c:
c8:b5:45:41:87:2f:4c:10:b2:91:2a:7a:61:da:59:
28:c3:4a:af:1f:a1:f2:7d:fd:44:50:a2:c8:96:13:
45:ab:91:8f:1e:d3:37:4d:5e:01:67:04:13:c9:80:
bf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:26:8A:17:DF:74:35:7A:4F:9F:E1:65:08:13:D1:A9:AE:92:34:B2
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:ed:61:3b:05:4b:bb:5e:b1:ac:0d:42:f5:49:aa:2d:c5:3b:
c9:d0:6e:05:dc:66:91:23:cb:e3:f8:f2:8c:0b:7c:f6:7c:6e:
9a:f8:17:63:51:25:c7:2b:d5:ae:dd:5f:f2:56:c0:8b:47:f3:
8f:b0:4a:7f:ac:90:bf:4d:4f:85:5a:4a:d5:45:da:3e:ee:b3:
dc:70:5a:47:31:20:ce:da:0d:df:50:0a:1f:a0:2a:14:96:b0:
6f:17:53:26:f3:76:bb:34:f3:2a:14:7d:df:45:ee:3e:cc:39:
41:c1:ff:4a:6b:10:b2:57:0c:3a:51:ad:38:fb:79:e9:a4:97:
be:e9:29:9c:4b:c8:b8:99:97:22:ba:87:ac:6a:9a:f5:e7:6c:
ca:9d:fa:a1:71:e4:7c:16:a6:ea:d0:01:a7:ff:a7:e5:21:57:
20:07:52:a3:06:80:87:27:0a:3f:75:b2:57:ce:c3:25:97:e6:
15:97:4e:cb:3d:fb:b0:76:53:b5:87:7a:4b:da:de:f5:e8:a8:
ab:3c:68:70:fd:58:07:04:b0:66:be:d9:68:f6:a3:2a:29:cf:
06:ad:5c:b5:76:05:b6:48:f7:f2:74:6d:d7:f7:bd:be:37:c2:
58:e7:9e:c4:ff:7b:7b:a8:99:9d:13:11:22:a2:1c:5e:35:1a:
78:20:88:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:14:17 2025 by rpki-client