Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: R4hAjvl1Klomx8sb6h5omRm0fDGWqf22kobREPE1h80=
Subject key identifier: D6:F2:42:51:03:31:32:A1:7D:F9:25:E8:47:EF:B4:B6:BA:9B:70:8C
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 01977FB184B0A0C847EFF7BFD5684AC69368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 0222
Signing time: Tue 17 Jun 2025 21:00:29 +0000
Manifest this update: Tue 17 Jun 2025 21:00:29 +0000
Manifest next update: Wed 18 Jun 2025 21:00:29 +0000
Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=)
2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: rLBV83xvz/TNj8FABxtwwXweeNeXsTfVawCoc/GV/Fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7f:b1:84:b0:a0:c8:47:ef:f7:bf:d5:68:4a:c6:93:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Jun 17 21:00:29 2025 GMT
Not After : Jun 18 21:00:29 2025 GMT
Subject: CN=d6f24251033132a17df925e847efb4b6ba9b708c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:88:4b:9d:8e:2d:34:4e:df:35:76:fd:b9:0d:
05:93:cc:50:98:2a:db:d4:bc:e5:dd:d1:2f:d1:db:
d0:70:da:ac:a4:5b:3f:e4:68:69:ac:6a:a6:6e:36:
27:43:fe:fc:6e:ba:fd:94:0f:aa:16:0b:c2:78:e1:
11:f7:8c:a5:1b:95:da:96:4b:ea:54:44:19:a7:6b:
0d:d4:e2:67:91:ad:2d:5f:82:7d:6a:a1:2e:af:c2:
c3:e1:c5:c1:33:fa:7e:d0:bf:da:c0:e8:dc:25:47:
c2:35:01:4a:98:22:14:47:cb:01:f7:a5:72:7e:ea:
9a:61:ff:b3:86:d1:a0:33:53:31:8c:d2:f3:26:42:
c9:81:e4:15:fa:7e:43:ca:f7:ea:ee:ce:18:32:9e:
9e:1f:b4:1c:d4:90:e8:3c:63:24:25:8a:ea:a9:41:
58:28:0b:48:bf:f0:74:65:2c:0a:56:44:dd:7d:67:
cf:d0:cf:b7:29:92:fb:82:79:d1:ef:7d:93:bc:92:
0b:e9:bf:a5:af:67:40:e8:80:c9:20:44:ff:99:5b:
38:7d:64:3f:36:97:90:5c:de:51:e7:12:76:cf:d1:
6f:8a:5a:52:fc:a0:e4:5d:aa:f3:f4:e7:e7:b4:4b:
0c:ce:86:94:f6:65:97:2e:5b:a9:be:6e:3e:54:5b:
0c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F2:42:51:03:31:32:A1:7D:F9:25:E8:47:EF:B4:B6:BA:9B:70:8C
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:c2:ca:70:05:86:3b:2b:69:a8:2f:6f:d6:24:56:79:38:1f:
e3:40:8c:ea:7c:9a:fb:8e:11:ab:6b:fb:16:39:d8:7d:50:1e:
9a:99:c7:40:bc:47:65:0f:98:a6:ec:dd:da:72:eb:80:eb:9b:
6d:a2:33:6a:97:4b:d2:ff:2a:34:3d:d5:32:87:87:99:dd:08:
72:6a:9f:5e:4a:e8:f6:ab:02:bd:a2:b0:91:4e:a4:9a:61:bd:
27:8c:79:48:77:6d:4f:24:33:59:35:10:96:5b:26:87:11:a7:
d2:31:ac:c9:d4:d7:7c:fb:d7:3e:51:91:72:eb:50:fa:15:8d:
88:48:8e:f9:1a:6e:d7:71:5a:0c:83:d3:89:6c:67:46:9c:11:
cb:d0:8b:e1:d9:f1:d7:85:22:74:de:f6:a9:a4:1b:af:6d:e0:
6f:61:f0:47:67:56:59:8d:08:6a:9e:78:28:e5:3b:22:76:24:
0a:d7:69:17:42:11:0d:8f:c9:f2:3d:36:e0:c8:e8:11:2d:ce:
3e:12:c1:88:b4:20:08:2e:85:81:f6:69:99:2a:95:49:d2:01:
b4:2e:73:04:d7:3e:c0:30:21:72:29:4e:a4:ee:b1:d2:f4:94:
71:90:96:6c:74:42:40:52:4a:33:d9:85:17:5c:7c:7f:23:0a:
c7:f3:b5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 06:42:14 2025 by rpki-client