Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: /xI+YrWwcpfabGt5ZwwWY9WyOl+xIdXlJOWFt+nK5Xg=
Subject key identifier: CC:8B:E2:4E:5B:B5:5C:7D:69:CD:89:7B:49:90:30:06:71:5A:F7:8A
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 019877BFF293F13570178D6EC43DF40EBF65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 13DC
Signing time: Tue 05 Aug 2025 01:02:04 +0000
Manifest this update: Tue 05 Aug 2025 01:02:04 +0000
Manifest next update: Wed 06 Aug 2025 01:02:04 +0000
Files and hashes: 1: hzoYOWaigOBhVgvLojtyU6Dx7N4.roa (hash: T/q+Lugm+i1exm5XgQ+QByz6sPtwXurIWQU3uySV9uU=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: bgiVTV8ciDSPM31nna9OYwEVE6FLcl6X4novqmotQ60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:77:bf:f2:93:f1:35:70:17:8d:6e:c4:3d:f4:0e:bf:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Aug 5 01:02:04 2025 GMT
Not After : Aug 6 01:02:04 2025 GMT
Subject: CN=cc8be24e5bb55c7d69cd897b49903006715af78a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0c:9a:42:c5:0b:c4:96:2a:27:b4:0d:40:32:
76:19:51:f9:c9:bb:45:1b:36:19:6f:6d:3a:62:d7:
c1:1a:e2:4d:0c:df:c2:3a:1c:fd:56:67:29:d5:95:
c0:14:08:44:bb:06:da:53:b1:8f:56:75:b2:bc:e4:
a2:29:57:40:52:57:a9:2e:81:70:8a:70:6d:95:e9:
68:37:1e:d9:eb:eb:0e:df:ff:64:48:66:45:cc:df:
09:1c:10:2e:a5:2e:4d:91:7c:22:9a:77:81:aa:44:
7d:b6:03:a2:88:f0:bf:8b:9a:a5:cb:b4:20:87:a9:
84:e9:a1:47:5d:64:c8:12:2a:47:a4:e8:f5:d6:de:
47:2e:02:18:7c:23:fe:4f:73:24:5a:ea:6d:c4:5e:
58:77:b4:f8:1c:67:45:d2:e7:52:60:61:2c:d2:93:
25:64:93:df:d1:c6:99:07:8f:3a:04:2d:8b:f2:aa:
44:68:98:aa:1a:06:07:91:2b:66:38:41:30:79:b0:
da:60:0f:df:43:02:49:84:69:03:e3:50:21:7c:e1:
de:b2:e6:99:0d:11:07:29:0f:64:a9:c8:e4:34:0d:
70:9b:a4:50:c8:37:ea:5e:06:30:e6:7b:ab:02:14:
0b:56:b9:9f:ec:84:38:10:51:59:85:48:4e:44:54:
94:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8B:E2:4E:5B:B5:5C:7D:69:CD:89:7B:49:90:30:06:71:5A:F7:8A
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:0d:12:e9:23:02:7e:9c:02:60:10:4b:78:6d:26:b0:2b:13:
e4:de:37:51:e0:c6:5d:9f:43:82:55:ff:ac:f1:9c:be:28:39:
18:a5:fe:d9:40:ea:a6:d6:9d:e6:f8:37:ff:bb:9d:77:00:e7:
77:a5:7f:19:6f:66:b2:93:89:a7:70:e0:06:8f:8a:62:b0:15:
4e:44:ce:4a:bc:10:96:98:62:a3:32:d8:e7:ac:74:9b:b3:20:
90:1a:08:36:66:ae:88:7a:dd:72:49:9f:d7:e2:92:15:e7:2b:
34:e0:8b:4f:f9:28:8a:03:ab:e0:fb:ab:b2:92:62:a0:55:34:
10:8f:10:60:3b:64:32:c8:95:ec:98:c1:5d:be:4e:9b:0d:ab:
05:a0:bc:7e:ee:59:22:48:3d:7d:6c:03:f1:ce:6a:09:13:c2:
09:01:8e:2d:0f:0c:9f:29:0d:f4:1c:0a:a6:f4:93:5e:6f:a6:
37:98:b4:0d:4c:82:e1:28:b7:1f:91:29:dc:c6:86:c9:67:b9:
40:00:29:71:f0:f7:db:19:eb:27:15:91:86:86:9d:7d:da:21:
3c:2f:db:48:cb:95:25:6d:08:4c:4b:ac:6b:b5:97:ba:ae:16:
2a:a7:e9:68:49:28:48:9c:f5:e2:2b:26:50:31:5b:42:4e:bc:
c6:3a:1d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 08:10:54 2025 by rpki-client