Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
File: 95d69YDIUMyL-QZJ-b2opqSL85Y.mft (raw, json)
Hash identifier: bb3yjOYmbQn3s+qC3H5Xy5oLjwx4WnRwfdiiCL0bL54=
Subject key identifier: 5B:0A:88:C4:77:93:88:CA:50:0F:F6:C7:F0:E1:52:E1:B8:D7:AD:4E
Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Certificate serial: 019880F9693771CC357494EE542BFF4A8290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
Manifest number: 0CA1
Signing time: Wed 06 Aug 2025 20:01:25 +0000
Manifest this update: Wed 06 Aug 2025 20:01:25 +0000
Manifest next update: Thu 07 Aug 2025 20:01:25 +0000
Files and hashes: 1: 95d69YDIUMyL-QZJ-b2opqSL85Y.crl (hash: 3g9YchIPEpbIEOs2s9mcMaJbQ77ZyRElgL9m71Q11U0=)
2: cmLjyeJCay-rIpV13cL4nS3umqA.roa (hash: zv80BsoFgYMaUhk2eqxE9kG1WrpCEraiiqsDzPaa4r8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:69:37:71:cc:35:74:94:ee:54:2b:ff:4a:82:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Validity
Not Before: Aug 6 20:01:25 2025 GMT
Not After : Aug 7 20:01:25 2025 GMT
Subject: CN=5b0a88c4779388ca500ff6c7f0e152e1b8d7ad4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:27:89:c7:66:71:2b:fe:06:0c:1c:a1:ba:cd:
25:2d:22:21:80:53:6a:fd:b7:e6:c6:52:0b:6a:b8:
33:cb:ba:1e:42:a7:d7:b0:39:0d:18:03:35:8a:ca:
97:a9:c0:85:54:82:cd:03:93:f4:38:f7:c9:70:29:
f7:c6:6f:b8:a6:9b:ec:d9:6f:39:82:6a:48:8d:94:
08:5b:0e:97:2c:58:ba:7d:44:39:4f:1b:db:01:a9:
65:8f:08:53:53:b5:96:cc:c8:1a:47:61:46:93:6d:
75:9f:6a:2b:a7:e1:b9:c6:89:ac:85:c2:d1:ad:2f:
f2:a7:69:b8:a0:e9:e4:43:a1:9e:11:fe:3e:4c:08:
3c:3e:a6:ee:e6:51:c9:43:8f:d7:88:68:86:32:33:
d7:e0:7f:d2:c7:d2:d2:39:7a:58:05:e3:63:e5:57:
20:53:5f:67:2a:73:9d:b8:13:4e:b5:22:d1:00:51:
e8:a3:2b:6e:b6:fa:7d:ff:c9:ec:19:48:6d:e7:b2:
7e:28:ca:47:38:5c:83:0b:1b:83:cb:bd:7e:32:3e:
df:a4:0c:dd:bc:51:17:9b:92:96:32:dc:54:c0:2c:
fd:98:a9:d7:6c:57:fc:5d:79:4d:3c:d1:2e:0c:60:
ef:7a:1d:b0:17:21:a2:29:c7:81:37:2e:b9:43:ba:
ff:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0A:88:C4:77:93:88:CA:50:0F:F6:C7:F0:E1:52:E1:B8:D7:AD:4E
X509v3 Authority Key Identifier:
keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:3d:e0:4a:49:37:a8:f1:8d:c6:6a:c6:79:e6:11:ba:ba:54:
26:e2:b3:c2:f0:ab:d2:0b:04:7c:b6:27:99:c9:c6:b0:3f:15:
31:34:1a:5f:ad:4e:a6:a8:ef:93:77:09:d9:41:ff:2d:56:91:
62:f6:0d:e3:26:63:96:98:b1:2d:6f:9d:77:b1:61:8e:a5:df:
ed:b2:6e:7e:d9:4c:6b:62:d3:67:3c:f2:5e:f2:86:10:e8:6b:
40:16:d8:81:1c:4a:e5:57:3a:7e:2f:8a:6e:d2:af:b4:7d:e0:
25:5f:3b:e1:15:a4:b4:de:c0:cf:41:1d:53:5f:c4:59:6e:a0:
69:bb:23:33:e9:c3:d0:80:f7:8d:84:0e:0b:a8:c0:43:b3:75:
61:e7:88:5d:99:f0:fe:81:6d:4f:fe:88:56:fa:92:4c:f5:4d:
0e:1a:66:b4:ef:e1:be:30:e2:11:d2:f4:da:2c:dd:d6:c1:ab:
b5:1f:d7:9f:aa:64:30:65:4d:20:85:4a:0c:a4:82:23:87:71:
0b:31:06:79:a8:86:b9:46:74:bf:dd:64:d3:9c:56:74:61:79:
d4:14:d4:d4:f3:9e:3a:23:e1:97:cb:0a:4f:62:dc:dc:33:4d:
40:74:0d:8f:1f:a2:ac:8a:be:77:75:36:06:f3:81:97:8a:7c:
14:38:94:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:20:47 2025 by rpki-client