Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: DKgq9V3g6oys9aKsJHl8qgge1wEK6MDFgGYFkgvpT8M=
Subject key identifier: C7:42:0F:CB:CA:85:EE:FB:D9:71:9F:4B:2F:8F:1C:A7:0A:F5:EE:8C
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 019783203FE22B0C05829EDB28F5721951A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 0293
Signing time: Wed 18 Jun 2025 13:00:17 +0000
Manifest this update: Wed 18 Jun 2025 13:00:17 +0000
Manifest next update: Thu 19 Jun 2025 13:00:17 +0000
Files and hashes: 1: cutf0Yk4GqOLANVUSKcxrSdUxug.roa (hash: Q8Q4U3gD48zecWRmDv6Pw0MZwpRvb60BHrR0/Xs/Hmo=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: mmwb0oGcFz81PiyVXM/B4GhWelpJxouRfv4s72bWqjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:20:3f:e2:2b:0c:05:82:9e:db:28:f5:72:19:51:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Jun 18 13:00:17 2025 GMT
Not After : Jun 19 13:00:17 2025 GMT
Subject: CN=c7420fcbca85eefbd9719f4b2f8f1ca70af5ee8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:49:b0:70:68:9d:7d:54:ae:a2:f1:68:1d:32:
f0:9b:2e:47:a0:6c:2b:bd:bd:25:3e:ba:0e:3d:38:
a9:81:52:97:7d:d9:05:55:a2:ce:e2:14:a8:61:01:
9a:b8:53:ed:94:87:b3:57:ea:5d:9d:24:7f:10:93:
a5:2b:c0:12:1e:42:a9:82:38:31:18:ff:28:be:89:
b6:33:aa:9c:9f:1e:09:1b:24:82:43:12:74:93:ae:
55:8a:6d:f9:16:68:37:50:54:a3:b3:70:04:ce:ab:
d4:a4:54:f7:80:0c:c7:44:70:ea:88:06:eb:18:31:
32:e9:4a:c5:6c:ed:7a:f9:dc:68:71:e3:7b:b9:c8:
c1:4b:fb:1a:26:74:74:b6:5f:92:d1:3f:42:b7:a5:
8f:8c:94:5a:96:8d:4b:e0:ef:be:00:47:7d:ce:00:
35:65:fc:47:d4:83:2a:f7:7e:b0:14:a5:f0:f4:6e:
3d:a4:00:06:ce:81:9d:4c:fb:87:ef:fa:75:9e:be:
ae:a5:71:32:39:b3:e5:e1:93:a3:c7:fd:d5:ff:f9:
4b:32:b4:8e:0f:73:6b:e0:7e:c8:95:1d:ae:3f:d6:
20:aa:db:10:03:62:1c:73:62:a7:e4:b2:5e:b6:6b:
14:fe:37:27:d3:7f:ae:6c:7d:34:b5:16:04:7d:b5:
c4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:42:0F:CB:CA:85:EE:FB:D9:71:9F:4B:2F:8F:1C:A7:0A:F5:EE:8C
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:7a:d4:1b:f4:81:fe:87:ac:c9:bf:72:68:5a:7d:df:fa:01:
09:a1:74:f5:f5:90:27:43:5b:36:ec:aa:0b:f5:7b:37:d2:ae:
cf:7b:08:e9:70:6a:44:e3:f0:82:35:1b:57:86:60:ca:e6:38:
f7:8b:b1:ad:99:2a:9e:38:7f:ca:90:8e:b6:49:92:7c:d0:e9:
71:a4:90:f3:98:52:8d:a0:13:d8:b7:37:b7:20:73:85:b7:0e:
7f:48:a6:2f:4c:1d:40:22:e3:1c:78:55:06:84:17:97:35:86:
40:47:86:c5:f2:e1:05:c3:62:da:ca:1d:d1:e4:50:a2:06:7f:
a7:4d:8a:4a:3d:b5:65:b5:67:42:e7:dc:1b:97:48:1b:10:c7:
95:41:b7:54:89:d4:25:26:36:bd:a8:ad:8f:20:43:51:89:ad:
ff:8d:7e:b6:71:35:df:49:41:49:a1:bf:ee:56:ba:d5:aa:81:
c2:5f:d2:5e:1a:28:69:a0:ad:4f:60:40:a2:11:e0:81:ec:44:
8c:a8:d6:76:6d:7a:65:be:21:dd:c4:6b:d9:71:61:24:72:be:
07:85:c6:cd:de:ee:59:46:ba:07:5e:88:72:36:18:aa:ab:96:
b3:fb:ee:83:6c:c6:96:9e:ed:6b:1a:96:ae:a0:d3:cd:a7:3a:
62:71:b6:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 19:09:03 2025 by rpki-client