Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: hE6dAzdRhaQI9uCEdl5NNFpaEj6HlL6asIeETW5M6+w=
Subject key identifier: 05:FD:28:56:DA:68:6F:E8:AB:FD:7B:A9:25:7B:68:E6:C7:0A:B9:80
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 01976D3D6D6C165285DAD7CE29DB243AA9EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 1352
Signing time: Sat 14 Jun 2025 07:00:31 +0000
Manifest this update: Sat 14 Jun 2025 07:00:31 +0000
Manifest next update: Sun 15 Jun 2025 07:00:31 +0000
Files and hashes: 1: hzoYOWaigOBhVgvLojtyU6Dx7N4.roa (hash: T/q+Lugm+i1exm5XgQ+QByz6sPtwXurIWQU3uySV9uU=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: CyIua4QSbmR5gWLpT6qC7s2uxxmzrT37kWe/DOnD+jg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:6d:6c:16:52:85:da:d7:ce:29:db:24:3a:a9:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Jun 14 07:00:31 2025 GMT
Not After : Jun 15 07:00:31 2025 GMT
Subject: CN=05fd2856da686fe8abfd7ba9257b68e6c70ab980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d0:b7:06:7f:f9:f2:8b:00:6a:17:57:67:87:
38:31:f7:20:d0:53:78:32:6d:d3:04:61:26:fe:5c:
2c:54:92:93:fe:e3:21:6b:78:61:c4:94:ed:7a:26:
e6:8b:9e:58:a7:7d:5d:d8:02:9f:31:af:cb:8a:7c:
ef:dc:50:70:eb:bd:e4:95:4f:10:03:97:56:d6:11:
df:b4:f0:e2:be:bb:1d:33:38:5d:56:b7:34:55:94:
24:93:9a:a7:de:56:d5:12:82:4e:1a:ac:7b:30:05:
ae:8b:ac:d1:4b:2e:0d:0e:4c:60:8d:b4:01:a7:8b:
52:0d:05:29:17:0a:09:6e:11:e3:5e:3d:ab:9e:e5:
fc:90:f2:bb:b4:29:95:7b:73:c8:09:29:25:f0:93:
a1:dd:69:a3:bc:5a:5e:93:cd:c4:a3:32:fb:45:57:
57:20:b8:d7:7f:9f:20:1d:63:1f:9f:9c:c5:36:28:
d1:2a:06:e5:df:aa:2e:f4:bc:29:8e:c6:a6:a7:9a:
4d:e4:73:11:c3:da:e3:fc:15:83:b5:dc:8f:b7:28:
4d:c8:b0:ec:99:c5:06:a3:62:14:47:d7:4e:c7:84:
5b:91:4f:d2:22:fd:f4:0d:d6:39:28:24:7b:0f:4d:
45:ee:aa:9c:43:b7:25:66:5c:92:1b:6c:0a:87:e2:
b6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FD:28:56:DA:68:6F:E8:AB:FD:7B:A9:25:7B:68:E6:C7:0A:B9:80
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5b:e0:a0:0d:8e:33:12:15:7b:8c:7e:b0:46:a1:8d:18:06:
06:f8:43:eb:6f:60:83:4f:0c:2c:e6:4f:5a:be:a8:b8:89:cc:
8c:17:ba:d4:5d:24:e2:90:3c:36:db:bb:df:2d:c1:6a:a7:9b:
4b:c5:eb:0b:4d:10:a3:a2:ab:b5:ff:7a:43:74:6f:10:25:8a:
f6:c7:f0:62:0d:0a:26:85:9b:6e:e0:64:b0:df:bf:ec:e9:6b:
f1:f2:af:fe:6e:ee:8d:ce:76:c4:45:77:31:d7:42:37:9a:0e:
26:f2:74:95:f6:b6:99:38:02:98:eb:38:48:a6:58:30:2e:5d:
e8:c4:e4:e8:2d:d0:ac:b6:f6:0d:1c:b9:a5:70:aa:c2:f5:9a:
92:d2:2a:93:d3:ed:18:3a:a9:d4:5c:ef:0a:04:a1:a5:86:85:
9a:c0:70:b4:63:98:27:bd:6b:08:d2:57:c9:a7:be:51:03:51:
fd:9d:30:55:7e:c4:8d:fb:53:7d:3d:3c:38:ab:2f:3b:40:a5:
c9:45:e5:b5:91:07:f1:90:c8:de:e0:63:c8:cc:a7:7d:f3:ab:
8d:32:e4:e2:ab:c6:37:23:ce:2f:5c:24:4a:d3:3a:36:3d:b8:
27:d0:75:e6:17:d9:0f:7d:e1:86:e0:99:8d:5f:e5:e0:86:fa:
14:d7:00:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:13:02 2025 by rpki-client