Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: kpGyHSbA9AifNnEzHaxgnn3jqWUgOJeyR1lO50Y6jpU=
Subject key identifier: 68:4C:B4:AD:21:95:C3:8B:AA:50:34:52:11:05:50:0A:42:5C:03:80
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 01977A54A75486D7EF06261239B969F1CDB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 159B
Signing time: Mon 16 Jun 2025 20:00:57 +0000
Manifest this update: Mon 16 Jun 2025 20:00:57 +0000
Manifest next update: Tue 17 Jun 2025 20:00:57 +0000
Files and hashes: 1: SpsqNCwISL1D7YWDs8MOUK4XUcQ.roa (hash: VKTdP32emCO1Alc2phplZ6z5V0MT3UL3VXfP0BBA76I=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: ufdHxKFnUHsRGr8ypna1CtGYAiaz06kcCURrLE33Zpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 20:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:54:a7:54:86:d7:ef:06:26:12:39:b9:69:f1:cd:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Jun 16 20:00:57 2025 GMT
Not After : Jun 17 20:00:57 2025 GMT
Subject: CN=684cb4ad2195c38baa5034521105500a425c0380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9e:aa:f9:ed:2c:1c:27:5c:28:66:eb:4e:7a:
78:1c:c3:e8:38:06:70:28:dc:16:64:5c:49:9f:d7:
63:7f:08:1e:ad:0c:25:42:af:89:df:b9:0a:de:4a:
ff:39:5f:cd:7b:b6:9f:e2:a2:b3:63:bb:9d:4b:76:
3f:24:be:77:89:20:08:22:28:3b:1e:ea:31:87:ea:
63:ba:1c:52:f5:d2:ae:ea:ae:e7:48:e1:ac:38:a4:
05:e3:fb:2a:57:aa:57:21:d7:43:35:fb:ba:e7:4c:
23:ce:2d:b3:ef:db:7d:ba:7c:3b:4c:92:9b:c4:20:
87:5a:4b:40:f5:54:11:fe:9f:55:73:f0:58:57:3d:
5e:b4:ac:78:8e:3d:f2:6d:de:af:3e:40:bf:df:59:
49:0d:18:8b:69:ef:91:ae:91:7d:1d:62:54:04:6f:
3b:e5:f4:89:d6:70:26:86:a7:a8:dc:28:5e:5f:be:
5b:0c:2c:f4:0b:af:75:63:cc:3e:5b:fd:a9:0c:be:
d2:d3:ec:23:a2:ca:16:e5:a1:2d:15:ef:ce:98:fc:
59:c6:37:62:e3:45:d6:50:54:c9:24:5a:14:ef:33:
d5:0d:bf:93:68:68:bf:3a:6e:d3:86:42:6c:f7:38:
2c:c9:74:a0:c7:4d:a9:8c:b2:73:0a:e7:2e:a2:4e:
45:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:4C:B4:AD:21:95:C3:8B:AA:50:34:52:11:05:50:0A:42:5C:03:80
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:22:92:8a:4c:4a:27:c5:9e:5b:b8:ad:18:0b:79:5c:36:b9:
71:19:9d:9d:aa:12:0f:a3:1b:df:3d:29:e3:51:82:c0:92:5e:
c2:4d:fe:61:ad:69:36:9e:ea:07:46:d9:97:2f:fe:a3:6e:4f:
cf:06:9f:34:e1:51:a5:05:6d:b9:2c:a7:25:62:f5:76:54:dd:
b0:49:28:48:a8:9f:28:b7:49:c1:9b:90:fa:34:55:aa:c0:33:
3b:c9:6d:c9:3b:06:18:ab:54:a4:a0:ba:8a:d4:c0:c1:de:ee:
9f:ab:92:e2:3b:2c:2d:17:66:c0:93:ec:0a:4c:1c:ba:37:a2:
e0:d4:7d:fa:0b:3f:b2:d0:be:6e:b2:0e:62:66:a3:ad:07:22:
46:e4:5f:e6:52:ed:24:15:e3:e6:d9:c0:ce:38:4f:c5:6f:35:
23:d0:62:4c:fb:e7:5c:3d:b9:fd:30:e6:be:20:a1:16:8e:d4:
23:1b:7b:10:aa:14:39:ca:27:2f:fb:89:ab:8c:4f:c5:3e:d6:
5f:eb:8e:82:40:64:42:fd:08:cb:63:a1:2d:bf:f2:33:de:9e:
65:fb:36:45:96:36:4c:81:82:7c:52:bf:c7:bb:23:c7:d3:cd:
e6:d2:e3:42:0c:26:42:4e:f5:cc:71:f3:f8:9e:32:b8:d9:d1:
39:17:ce:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:19:18 2025 by rpki-client