Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: b1zqCk4E/q+FUQxhX6rz1/XWh/L6fwvSVz/rYOn7g7M=
Subject key identifier: 83:FC:9B:11:94:FF:FF:A3:B2:19:24:34:B7:CD:76:C9:F9:0E:3E:4B
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 019771511659378C1EA552711D9BEDEB7C3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1592
Signing time: Sun 15 Jun 2025 02:00:28 +0000
Manifest this update: Sun 15 Jun 2025 02:00:28 +0000
Manifest next update: Mon 16 Jun 2025 02:00:28 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: KdIdkBno8e3SUarwtK7igLmId/yJxaxj+GT50yeUOF8=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:16:59:37:8c:1e:a5:52:71:1d:9b:ed:eb:7c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Jun 15 02:00:28 2025 GMT
Not After : Jun 16 02:00:28 2025 GMT
Subject: CN=83fc9b1194ffffa3b2192434b7cd76c9f90e3e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:81:18:fb:79:fd:78:0c:b0:fc:a0:04:23:
9e:77:e7:e8:88:6b:3b:12:08:6f:34:dd:d0:bc:37:
15:67:9d:9d:26:f1:36:53:0a:60:1c:93:cc:3b:b3:
c7:9e:1f:48:ef:ea:76:ec:3f:c5:06:dd:7d:90:6c:
35:81:52:97:4a:41:9f:b1:6b:90:ff:c5:bf:5f:52:
1a:34:0f:23:7a:75:39:b3:60:55:c4:5e:89:84:dc:
bf:76:24:29:2d:3e:ed:5a:97:5d:c1:c1:ed:34:3b:
4c:e5:02:39:b2:8a:ea:ff:a8:23:51:77:53:c3:87:
60:72:2d:99:68:d0:40:b9:a5:56:f9:fa:14:65:bc:
e4:40:55:2b:a3:c6:eb:77:aa:4a:58:b3:6b:15:1a:
76:d8:ef:4d:9f:c9:97:49:33:34:02:dc:38:2c:75:
79:1b:b0:be:15:98:06:f3:c4:a4:50:9a:23:e8:a2:
33:08:57:a7:c2:53:73:57:3b:cd:cf:c6:76:d7:e3:
6a:0d:3e:f5:61:42:0b:dc:69:6d:97:cc:5d:6e:ee:
9d:9f:81:e2:25:95:46:c1:bd:7f:45:bc:d1:a6:9e:
04:d0:c7:cf:d2:10:34:2e:a0:13:b8:19:bc:5c:9a:
b1:55:72:31:9f:a1:04:dd:a1:77:51:8d:a0:73:80:
e6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:FC:9B:11:94:FF:FF:A3:B2:19:24:34:B7:CD:76:C9:F9:0E:3E:4B
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:08:7c:6d:ac:3d:2c:37:2c:0e:9c:d6:d0:55:72:90:2d:77:
3a:6d:69:b1:35:40:00:be:47:11:f8:17:d2:25:2e:bc:6f:cb:
94:3f:cd:77:de:00:3f:c9:2b:b9:2d:5c:1e:be:2c:24:7a:cd:
06:ef:88:0e:38:5c:a7:93:9f:dd:cc:7a:be:4f:b5:93:ab:f0:
c5:a1:64:32:04:92:ba:6d:35:9a:a0:9a:6a:60:ce:5e:bd:36:
4d:2f:47:aa:1e:fd:97:b0:24:60:16:e5:4d:5e:bb:49:89:ff:
a4:b9:a5:a5:a7:e8:49:e7:7a:e2:0a:10:20:9b:e8:12:d6:06:
52:2b:6b:45:99:c4:24:65:ff:2c:4c:18:74:ed:db:88:29:34:
24:4c:be:65:a8:d3:f1:da:44:62:2a:cf:b4:c0:2b:93:fa:4e:
fc:af:36:7a:89:22:13:9d:98:a7:01:25:d3:dc:20:b1:14:fc:
a0:6d:d5:fe:df:f1:22:b9:e0:84:fa:72:10:e8:5e:c1:e0:a7:
e0:be:1c:2a:66:35:bc:2d:b5:9e:22:96:2c:b7:56:0f:43:8d:
90:71:42:5e:9a:8d:4c:fe:80:f9:b7:25:f3:79:b7:36:10:e4:
75:92:82:c5:a9:1c:af:c6:ce:c2:d9:3d:e6:da:7e:89:4c:0d:
8b:d2:fb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:03:07 2025 by rpki-client