Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
File: DQh0szPjXfFP2XDhiVgdoJO8gJM.mft (raw, json)
Hash identifier: or79nkT7+B3aw6E0aO3p1TyiLGwHYyi3+vtW6bBIlaw=
Subject key identifier: A0:E2:3B:3E:F2:5D:6E:DB:EF:16:0A:B5:B8:39:52:DB:B6:9B:7F:E4
Authority key identifier: 0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
Certificate issuer: /CN=0d0874b333e35df14fd970e189581da093bc8093
Certificate serial: 0197756513CCCEEA8F274BACAB958A2F41C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
Manifest number: 1599
Signing time: Sun 15 Jun 2025 21:00:47 +0000
Manifest this update: Sun 15 Jun 2025 21:00:47 +0000
Manifest next update: Mon 16 Jun 2025 21:00:47 +0000
Files and hashes: 1: DQh0szPjXfFP2XDhiVgdoJO8gJM.crl (hash: Yc7Ftkev+h+vIxkK25ziPI7arccqPcM0EULkz3n8YNE=)
2: KXd_5OhpNxA2dAEUBM7BRlNmng0.roa (hash: naKbPeMlQvH49cTjg2nRiud0MzlhFN73NWmhIANkiB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:65:13:cc:ce:ea:8f:27:4b:ac:ab:95:8a:2f:41:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d0874b333e35df14fd970e189581da093bc8093
Validity
Not Before: Jun 15 21:00:47 2025 GMT
Not After : Jun 16 21:00:47 2025 GMT
Subject: CN=a0e23b3ef25d6edbef160ab5b83952dbb69b7fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f8:a9:76:1c:61:79:ab:e7:b4:52:90:3e:02:
e5:e5:90:f8:e1:9e:b4:c2:db:04:b5:0a:e6:3f:69:
c3:fe:c5:31:ed:0c:60:ea:2c:4e:08:be:ea:26:9b:
11:34:76:bf:99:c9:67:be:42:92:47:41:7b:52:a9:
a5:8c:ba:c4:89:c7:2e:6a:ee:27:20:9d:7f:4b:49:
eb:f6:d0:8d:6f:2f:37:1a:23:5a:f9:fa:80:2c:c6:
1e:44:08:73:57:17:6e:c1:27:7f:83:7c:d5:ba:67:
1f:41:58:f3:89:50:41:4b:cd:5c:bc:1a:00:0a:de:
d4:cf:2f:e4:df:29:7f:da:cb:65:47:c9:fc:c5:d4:
4c:ca:5b:50:4a:da:50:85:e0:10:17:22:db:8e:a8:
8a:10:02:68:7e:42:41:68:64:e8:1d:c7:76:af:3b:
06:90:f9:d0:17:50:0a:b3:c4:39:64:b6:3c:03:bb:
dd:ea:f0:21:eb:bc:a7:04:c4:b0:9d:0c:25:0b:f8:
52:aa:f9:24:c5:af:c6:58:ab:b0:76:1d:1e:de:28:
60:e3:68:11:10:76:ff:73:41:97:ab:97:a7:56:c0:
c4:88:31:73:98:1a:30:8d:6c:41:56:61:4e:57:c0:
7b:62:c5:fe:18:70:87:2a:24:f3:59:08:8d:18:35:
3e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E2:3B:3E:F2:5D:6E:DB:EF:16:0A:B5:B8:39:52:DB:B6:9B:7F:E4
X509v3 Authority Key Identifier:
keyid:0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:03:25:b7:32:1c:d2:e6:89:e0:e5:7c:52:de:4b:42:f5:dd:
e5:4f:79:0a:d6:c8:2b:db:52:62:a2:ab:a1:df:05:b0:d3:ec:
a4:69:4b:fa:4d:32:6a:46:89:91:f6:b1:6b:85:06:e4:dd:4f:
3b:a8:df:23:d4:b1:dc:e3:08:48:1d:f1:9c:33:8d:2a:21:d2:
42:bd:9e:d8:7e:ad:cb:cb:90:b5:c1:e3:d0:65:7c:29:3f:04:
f4:76:1c:26:15:00:32:79:83:4e:c0:91:dd:59:33:7e:1e:80:
19:e6:38:01:1b:9b:c2:4e:09:48:3c:3c:39:d4:56:9c:5c:80:
a0:61:54:0c:1b:56:2a:3f:e2:53:c3:30:85:b4:0e:77:c8:53:
ad:4b:16:b0:de:b0:81:88:91:84:c3:19:f2:fd:60:cc:79:63:
38:be:5a:a1:0c:6e:e3:a2:9c:9d:43:46:05:38:7a:32:4c:a5:
44:7a:b7:92:8b:10:89:06:6c:b5:60:f0:76:63:5e:12:5c:1b:
55:23:95:39:69:3d:9f:1e:4a:0b:35:05:f8:32:3f:b0:85:e4:
75:b2:11:4a:e5:a2:17:c6:70:fc:e0:48:b8:35:e4:57:1f:07:
93:ce:d5:62:d7:13:23:76:9d:b8:cc:f2:cd:a6:61:83:92:28:
3d:75:50:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 05:14:00 2025 by rpki-client