Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
File: 0dI-JBGcupM36DRmSFv7EGsuJLY.mft (raw, json)
Hash identifier: LdgIarflKgW5iRzwkTCv6dswiMZPxstJwPmDKGezBEI=
Subject key identifier: D5:9F:70:12:8C:C2:11:31:23:49:55:C4:74:FD:0D:61:88:7C:D3:37
Authority key identifier: D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
Certificate issuer: /CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Certificate serial: 0198820BFA4A93C03AB6F891E08422961619
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
Manifest number: 66
Signing time: Thu 07 Aug 2025 01:01:19 +0000
Manifest this update: Thu 07 Aug 2025 01:01:19 +0000
Manifest next update: Fri 08 Aug 2025 01:01:19 +0000
Files and hashes: 1: 0dI-JBGcupM36DRmSFv7EGsuJLY.crl (hash: AOSrWKaNl5o4+cwFBo5L1HrtrkUQeTyWn/phh9V98lU=)
2: M-IfQdJ5pbgcbSVbmMmO8aaPrAY.roa (hash: XwGRnAxf2Tdx5V01T06WDZvLLVmv2uRnErY5moi+5Gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:fa:4a:93:c0:3a:b6:f8:91:e0:84:22:96:16:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d23e24119cba9337e83466485bfb106b2e24b6
Validity
Not Before: Aug 7 01:01:19 2025 GMT
Not After : Aug 8 01:01:19 2025 GMT
Subject: CN=d59f70128cc21131234955c474fd0d61887cd337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:78:db:26:d9:1e:5f:be:b4:9c:a1:66:31:61:
8f:cb:eb:e4:d7:1b:5a:a2:a5:29:6f:82:c1:77:58:
f0:bc:df:27:94:62:8a:1d:96:ea:54:63:4e:ba:75:
96:a3:41:34:9b:7d:fa:68:44:5f:d5:19:57:7c:8c:
ce:4e:0a:0b:d5:ad:26:f4:d2:27:12:7a:4b:9a:b5:
43:fa:30:86:c1:4e:c2:09:04:d3:b8:3b:46:45:ba:
35:01:75:ad:16:f9:aa:e2:79:27:98:5d:98:b1:39:
ff:a0:25:48:e2:c6:f1:2d:c8:1d:52:ee:29:e9:d6:
1b:99:6d:e5:b0:46:0c:ec:0f:9f:8e:66:71:01:19:
0c:b0:7c:6f:04:4f:09:80:2a:39:3b:c4:85:4a:15:
21:74:94:73:37:d1:1d:03:7f:72:2a:c9:90:7f:cd:
53:b5:a2:79:78:35:f7:d5:a9:9e:84:e8:e8:5c:d0:
c5:20:ee:5d:db:bf:59:9a:d6:aa:13:b1:9f:f8:c7:
b5:33:6a:29:d2:f2:5a:0f:52:25:01:e8:d3:6e:dd:
87:bb:52:42:9f:21:f2:f7:f4:64:0a:64:77:6f:5a:
39:f9:71:9f:f1:c5:b3:fe:56:0b:0d:7d:2c:c1:f5:
07:a1:5e:55:3a:83:3d:64:82:01:04:12:85:1a:76:
04:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9F:70:12:8C:C2:11:31:23:49:55:C4:74:FD:0D:61:88:7C:D3:37
X509v3 Authority Key Identifier:
keyid:D1:D2:3E:24:11:9C:BA:93:37:E8:34:66:48:5B:FB:10:6B:2E:24:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dI-JBGcupM36DRmSFv7EGsuJLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c4064-8503-4d16-9354-74d4e5b01c35/1/0dI-JBGcupM36DRmSFv7EGsuJLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:86:6b:fe:0f:8c:b8:f2:b0:a0:43:23:bd:41:34:45:31:eb:
d3:16:a1:ba:d1:6a:f9:da:0b:d2:9e:6d:d6:5d:84:48:a4:fa:
98:83:d7:37:a5:eb:17:5a:73:39:0d:d9:b2:36:3b:93:4c:b1:
ef:88:a4:1f:26:1e:00:9f:a3:5c:65:2e:fd:5a:2d:b2:81:3d:
0e:97:f2:80:59:c0:7e:f2:3a:e6:38:cc:f6:5f:bb:90:75:10:
ae:90:0d:74:92:09:0e:e9:e9:4e:c0:c1:c0:3c:2a:ec:8b:23:
65:9e:d1:31:9c:6a:71:ca:16:2e:54:e9:54:2c:eb:be:53:94:
bb:fc:42:bf:45:9f:87:de:e7:6a:33:52:e6:96:9e:60:67:4f:
85:3a:a8:7c:b1:b2:e9:5a:e1:2c:74:fd:b3:e0:72:10:48:ca:
97:20:ed:ce:0a:a1:82:5a:38:40:59:38:ba:bd:b3:83:85:ff:
a8:9c:03:80:53:10:f0:0e:66:50:8b:45:b9:b3:c8:c5:7b:ce:
32:59:dc:74:10:04:34:9a:f9:94:b3:3e:8b:17:04:af:60:63:
89:31:83:f6:ca:c0:5b:ba:04:45:54:2f:48:7b:8b:28:9c:b4:
1b:93:6c:13:a7:8d:e0:01:5d:ad:02:b6:d9:27:8a:81:6d:43:
7d:5e:d9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:09:50 2025 by rpki-client