Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: N46N/IVr+S1KxwOu7ufCrZNhDHuR0wJm3z9y+I/IyEU=
Subject key identifier: 56:16:BD:4A:45:5C:AB:AC:7C:94:E2:0D:B2:87:99:11:FD:4C:4A:1C
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 01976C2AE8B03130A407A61B5379AAD99AA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0C12
Signing time: Sat 14 Jun 2025 02:00:40 +0000
Manifest this update: Sat 14 Jun 2025 02:00:40 +0000
Manifest next update: Sun 15 Jun 2025 02:00:40 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: RiXPcoNsc9AsE/1KRfcFss02Jeartp4F+/YN8gt9sSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:e8:b0:31:30:a4:07:a6:1b:53:79:aa:d9:9a:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Jun 14 02:00:40 2025 GMT
Not After : Jun 15 02:00:40 2025 GMT
Subject: CN=5616bd4a455cabac7c94e20db2879911fd4c4a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4d:37:b6:9f:b4:de:45:6a:28:13:be:77:ed:
4b:39:c3:dc:35:fc:7f:10:94:39:b3:cd:e4:71:7a:
86:e9:06:41:cb:14:b5:c5:0c:db:5e:7d:39:41:9a:
87:c2:2e:d6:15:ca:15:3f:7a:fb:72:89:13:5e:41:
b3:37:85:75:78:96:d1:f5:0f:ad:6f:b8:4f:38:36:
0e:08:d5:d0:d2:a1:29:10:4b:69:78:84:ed:81:2a:
7b:a0:14:59:b5:a2:77:58:fa:73:ed:a6:38:22:8c:
3f:d6:6d:8e:2c:1f:1e:62:be:d9:c0:52:92:0b:e7:
8b:80:85:51:30:5b:16:e1:1c:4f:18:37:31:3e:4f:
c9:c7:d4:2d:c4:01:73:10:d3:dc:13:6e:2b:c3:73:
97:a1:3e:00:e3:81:a8:05:94:35:53:e0:c1:2d:36:
9f:5c:a6:8e:a8:62:fc:7b:78:b2:f9:e9:a5:9c:8b:
fe:13:a0:92:ad:18:77:e6:bf:73:b5:ca:f3:96:bb:
55:82:bf:66:4b:9f:3c:a9:6c:e8:d4:68:2e:57:9c:
b2:f2:6b:6b:37:45:5b:ee:63:5d:4d:a0:ad:91:2c:
1a:00:7e:f3:44:06:13:13:09:a2:ac:ee:d1:fd:fb:
d5:8c:f2:70:87:20:92:07:08:44:8a:7a:ec:fe:41:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:16:BD:4A:45:5C:AB:AC:7C:94:E2:0D:B2:87:99:11:FD:4C:4A:1C
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6a:ad:4c:31:de:b6:ab:53:68:bb:7a:90:3e:c6:1c:bf:fb:
b2:2d:55:e1:da:30:20:68:c9:fa:ed:6e:44:6c:a4:b7:31:9d:
38:79:cc:5f:c1:1f:2c:31:2b:c1:e7:11:a8:86:f4:3f:5e:cf:
84:c2:36:44:b0:c4:6e:83:68:ee:23:13:a1:78:6e:b7:36:5b:
47:0d:5b:bf:37:18:a2:f0:3b:05:88:70:5f:08:0d:53:59:f5:
c8:ff:e2:cf:b6:a1:a8:53:14:eb:82:a3:d9:03:46:e1:e0:0e:
63:ec:04:38:7e:85:70:26:20:87:92:b0:b0:82:03:cb:d1:18:
71:03:d8:30:a5:46:b6:92:8a:d9:9f:d4:20:58:6d:00:f2:f8:
3a:01:f6:d5:40:36:a1:fb:65:5f:f3:1d:3d:20:ce:66:4e:22:
80:0d:2b:10:02:00:8b:6e:f4:37:df:70:c7:96:b0:c6:fd:f2:
2a:10:70:b9:80:a0:00:d4:3d:5c:33:ae:6a:c7:3f:d3:8e:a2:
87:70:01:06:58:59:9d:77:71:71:cd:32:2c:6b:17:dc:b1:40:
e6:a2:fd:f4:54:38:15:02:e8:67:5f:ec:ce:13:6f:78:52:ff:
37:8c:84:7f:e7:6f:e9:87:22:33:90:3b:03:22:70:48:24:f7:
49:9c:77:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:09:18 2025 by rpki-client