Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json)
Hash identifier: VoQfIUfcoM0O8lln5eQKhzwAChAIf5xp87RvQ9OV7kk=
Subject key identifier: F3:51:78:0E:EA:3F:69:F5:42:91:31:62:AD:6F:AC:C8:56:B0:FD:07
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 01976D0668BC6EA5866E37B89D46BE9F45EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
Manifest number: 0F9A
Signing time: Sat 14 Jun 2025 06:00:25 +0000
Manifest this update: Sat 14 Jun 2025 06:00:25 +0000
Manifest next update: Sun 15 Jun 2025 06:00:25 +0000
Files and hashes: 1: KwomHtAHnCM0D-yGdW_0Sf3mopc.roa (hash: nJuUP0j6H239g1R7GMJyKq0zviXnK+AhK7Q4U43dyg4=)
2: ZYlcf7X6lFUqPdlZgjx7h6pY7f0.roa (hash: Z91lhusvfId6xXTKVa6gm5qmkQJNcO8M7YoIqY37LFU=)
3: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: O6llTEpOhjePWhqE1kx3u2feBLmfxNAwZCpL7JjgMoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:68:bc:6e:a5:86:6e:37:b8:9d:46:be:9f:45:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Jun 14 06:00:25 2025 GMT
Not After : Jun 15 06:00:25 2025 GMT
Subject: CN=f351780eea3f69f542913162ad6facc856b0fd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c0:2c:9c:da:3b:ae:ef:4a:85:0a:95:79:1e:
43:eb:23:d7:05:5b:2c:5c:96:3f:f1:a2:b4:f1:c5:
68:e6:59:7d:ca:6f:67:ff:a6:c1:5c:e2:9d:00:3f:
d3:5c:a5:57:73:d0:1a:3f:ab:1e:e9:aa:49:f2:d6:
be:6c:73:67:72:24:be:c6:af:23:2c:db:90:6f:c7:
ba:f6:7a:84:9f:0d:ca:fe:a6:f0:26:76:0c:f3:fe:
ad:d0:db:ea:d8:b3:6f:f5:ee:a4:fd:39:50:11:1e:
9f:83:70:e5:58:10:a6:3f:b2:e1:5d:53:31:82:83:
f0:21:15:f6:8f:b8:c3:65:6f:42:c5:e8:37:36:77:
35:b9:f4:42:ce:d1:e8:2f:d0:b8:d9:91:8e:e4:c2:
2f:c8:67:d3:a0:c3:fa:e3:cc:c3:b5:f1:90:72:05:
5f:94:67:5b:94:aa:39:aa:d0:64:13:5f:12:79:97:
70:a4:34:97:0e:cd:e5:b8:42:93:be:6f:2a:61:c8:
1d:04:f3:99:88:1f:4c:fd:9e:04:1a:e2:3f:36:28:
19:c4:d9:d1:f3:57:f9:2d:2f:1a:7d:5f:0a:27:7f:
6e:42:1f:73:0f:90:7a:1e:1c:3e:e3:14:b0:62:61:
02:f7:94:4d:bc:0b:33:3a:80:89:6e:3e:bf:d0:b0:
00:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:51:78:0E:EA:3F:69:F5:42:91:31:62:AD:6F:AC:C8:56:B0:FD:07
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:29:97:b2:bf:4e:93:ad:65:71:43:89:47:3f:03:78:40:9e:
3e:2c:d8:56:bd:e5:e8:26:40:3d:86:2c:d3:76:84:24:fc:d8:
46:61:e0:a4:1c:08:9c:d0:97:db:d9:3d:4c:c5:08:a9:bd:f2:
d4:17:7a:35:f6:8c:a8:c9:2c:55:f3:a5:c0:b6:2b:c5:e6:2c:
3b:d2:05:f1:7b:79:9c:ed:5b:ec:e7:ce:0e:f5:2f:84:56:da:
a5:de:ed:53:a4:99:f2:7d:a4:f8:a7:f2:fc:1e:8a:ba:0b:6a:
0f:c9:c1:6f:75:1e:b1:06:ae:39:22:dc:15:61:c0:cd:af:49:
87:08:a3:1c:ab:e6:e8:77:12:4a:8b:6c:67:ed:1a:ff:a3:86:
fc:87:4e:e6:2d:27:56:94:c0:78:c7:cd:ea:2e:d3:5c:b5:9a:
1c:43:b7:51:23:36:bb:35:a7:f6:97:55:a3:91:f3:f3:fe:de:
38:34:63:51:6b:a0:18:82:e6:13:39:ba:1b:6a:4c:93:d5:37:
76:e7:e0:0e:b7:d1:f9:63:66:d5:6b:48:73:82:5c:89:04:a4:
c8:15:5a:bd:b9:52:c6:bc:cf:ad:42:10:d2:7e:be:2a:61:76:
8b:17:24:8e:21:d3:b1:48:0f:4c:e9:8a:ab:96:03:91:88:e3:
67:20:09:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:34:02 2025 by rpki-client