Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json)
Hash identifier: h+WkxYG1soglvelIn90bcxkuzSZUMDlfcZVVuZSsvgA=
Subject key identifier: 09:A8:F9:2E:42:0A:34:D9:69:EC:D7:90:EE:27:EE:89:81:29:FD:06
Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Certificate serial: 0197808DD05B2B94D00FF8364CEE8F1A2B5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
Manifest number: 01E6
Signing time: Wed 18 Jun 2025 01:01:06 +0000
Manifest this update: Wed 18 Jun 2025 01:01:06 +0000
Manifest next update: Thu 19 Jun 2025 01:01:06 +0000
Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=)
2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: 2xjCieofac+Lx5oxHXQNEPIETcdN2v7clRpyJgbKHxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:8d:d0:5b:2b:94:d0:0f:f8:36:4c:ee:8f:1a:2b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e
Validity
Not Before: Jun 18 01:01:06 2025 GMT
Not After : Jun 19 01:01:06 2025 GMT
Subject: CN=09a8f92e420a34d969ecd790ee27ee898129fd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d7:25:de:2e:32:29:5b:50:34:53:82:33:f7:
ef:ad:33:1d:fa:08:31:b0:3d:ff:fb:5b:e5:0e:fe:
91:d9:7c:d8:d3:2d:31:7a:9b:42:49:91:b7:bd:ab:
aa:ce:6a:e6:8a:5b:d8:24:ce:24:71:56:b5:e0:cd:
cd:cd:04:ef:cc:52:b6:f5:af:af:14:9d:8f:bf:99:
a0:85:bd:31:43:57:25:72:12:e2:91:8a:7a:29:27:
c0:bb:04:a7:47:8d:a6:37:60:70:75:c5:c8:ec:a5:
eb:0c:fb:2b:e4:39:be:80:c4:99:ef:95:7a:28:df:
ce:e3:dd:7a:4a:fb:6c:01:05:fb:e2:9c:b4:7c:f7:
64:48:d0:ad:1f:52:99:ba:2f:a2:47:de:cc:b8:0a:
92:89:ef:f6:38:4c:72:7e:49:6d:c1:36:86:1e:99:
c2:c5:de:cf:4e:f1:b8:68:89:d1:71:b7:cf:2e:6d:
23:66:11:ca:c1:b1:e3:18:88:9a:1f:87:3b:fa:30:
4e:e4:49:85:4b:7f:9f:2b:6b:34:7b:6d:21:b1:a6:
0d:81:a2:dc:ca:7b:f0:65:f7:81:3a:ee:60:fa:43:
56:61:65:b0:41:a1:8b:d3:04:14:2e:80:86:4b:f6:
bf:c6:de:05:11:bb:d7:b8:75:07:c8:b5:17:0f:19:
6f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A8:F9:2E:42:0A:34:D9:69:EC:D7:90:EE:27:EE:89:81:29:FD:06
X509v3 Authority Key Identifier:
keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:78:15:bd:2c:fd:02:df:1f:ba:7b:3b:48:99:28:2a:e9:fd:
2f:1c:b5:e0:2b:41:4a:78:b1:c5:f0:2e:22:33:7d:dc:f3:e9:
43:b5:28:d2:29:0b:82:36:b2:95:6f:a0:70:45:7e:af:ea:22:
8c:0e:c1:98:c2:c3:81:bc:20:28:30:b4:a4:2c:c8:a6:79:73:
2b:67:5d:eb:fa:32:de:d3:2e:3b:ac:e7:8b:16:f8:35:82:c1:
7a:ad:49:61:c7:b9:33:76:53:fa:b8:ba:af:78:6d:b1:c5:0d:
98:19:23:03:a3:6f:85:fa:f9:b2:e1:ee:24:8d:9c:15:6c:b4:
43:1f:28:cd:93:ed:9b:39:67:df:c1:ff:d3:74:e5:60:ec:47:
fe:aa:49:b1:cf:df:81:02:d9:f6:0b:66:b3:7d:4a:64:5c:43:
a3:a2:6e:0a:b6:c4:37:6b:5d:1b:4d:8b:06:91:00:6c:28:a5:
8f:8a:13:4d:71:1f:59:21:2b:f2:64:df:88:bd:72:f4:2b:d8:
79:b0:f8:58:d4:a5:b4:2a:73:e9:10:29:73:51:d7:a1:58:75:
12:0d:36:a6:fb:0f:ca:3c:56:63:60:89:ae:77:80:9e:61:c7:
0b:fe:f4:18:86:a5:6e:5b:fa:a2:40:44:84:16:25:74:0c:41:
c3:b4:68:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 04:38:35 2025 by rpki-client