Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: BuTazTl+4WPHvL9rO41JTJAd+I4zgSkcyt6m66tR/2A=
Subject key identifier: 49:28:25:A7:90:E5:CC:2C:44:C7:38:BF:8C:67:9B:10:8E:29:CE:0E
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 01976961BB9F4885179B971CA9223583B607
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: F8
Signing time: Fri 13 Jun 2025 13:01:42 +0000
Manifest this update: Fri 13 Jun 2025 13:01:42 +0000
Manifest next update: Sat 14 Jun 2025 13:01:42 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: 0HdbWU/z2kis6Oc2HJ31neQBGpRWwjYetuqWcm6FFko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:bb:9f:48:85:17:9b:97:1c:a9:22:35:83:b6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Jun 13 13:01:42 2025 GMT
Not After : Jun 14 13:01:42 2025 GMT
Subject: CN=492825a790e5cc2c44c738bf8c679b108e29ce0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b5:b5:59:04:7e:e5:9e:9e:1f:ad:e3:f0:e9:
a4:c1:ad:9a:d3:b4:d8:19:5b:c6:ec:b3:1d:6b:d7:
5d:ca:38:e0:4d:45:01:e7:7f:20:80:21:72:bf:36:
6f:ab:97:d5:be:ba:7f:9d:eb:5f:b6:4e:dd:c6:46:
a2:e4:96:de:36:d5:a5:c1:55:ee:ce:d6:95:7d:81:
89:91:7e:99:16:5c:c8:8a:1c:fb:16:e2:f0:4c:f9:
cb:bf:05:57:cd:4a:c3:88:8a:2a:3d:9a:1c:9f:95:
73:d3:cf:c5:6d:05:ec:ee:4b:63:ce:02:ca:30:51:
f5:5e:99:d7:26:e0:4a:33:20:40:b3:6c:0e:fb:ec:
54:12:44:b5:c5:d4:46:76:d3:ac:f2:39:e7:e0:4c:
f2:21:13:4a:4c:56:3a:38:2c:d8:5a:25:7c:72:c1:
0f:06:03:ac:21:05:8b:41:da:2f:ca:00:3d:81:b6:
23:33:5b:14:5a:fc:9a:cb:82:f5:e3:47:7e:b9:33:
91:99:ac:ba:89:4d:14:b3:da:a3:19:83:31:90:a2:
ff:30:d1:28:d8:97:5c:59:1c:9e:ab:0c:b9:f9:f7:
31:66:5e:b6:49:27:69:e6:da:86:4e:9e:ce:1a:50:
c7:ef:54:fc:67:30:c9:83:1e:46:cc:51:f8:31:34:
a1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:28:25:A7:90:E5:CC:2C:44:C7:38:BF:8C:67:9B:10:8E:29:CE:0E
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:26:8d:14:14:6a:bc:f7:d3:bf:4c:b6:81:f1:86:f2:df:26:
bd:44:17:38:a4:a5:02:a9:ae:ef:be:f7:39:e5:4f:61:e0:27:
6c:d2:8f:ae:27:dd:ac:cb:29:2e:3e:68:bd:77:42:02:03:06:
f6:e2:4d:35:28:7a:c1:a2:0c:4d:7b:f5:50:5f:ba:d0:f4:1d:
1b:7b:2b:9e:21:50:e9:13:e1:21:4f:a2:5b:31:14:0a:89:06:
cc:f6:4c:6d:73:9e:84:af:42:77:e1:6e:66:9f:17:f3:0d:9b:
39:5c:55:bc:9e:ce:8e:e3:50:dc:8d:4d:97:b1:62:02:f9:41:
ff:9d:5a:53:4f:3b:ad:9d:e3:f8:9a:ea:3e:a9:3c:c0:6b:8e:
a1:ce:79:a1:25:8f:2c:4b:45:99:95:e5:8b:7c:91:7b:f6:4f:
0c:82:a5:ea:6a:0e:05:98:2b:e7:fe:20:ae:cc:b9:69:66:99:
a3:7f:ff:53:bb:4c:b8:94:ef:8d:c6:72:20:22:86:77:b8:3c:
15:a9:31:60:3b:bf:92:c2:e9:51:37:9a:6b:08:96:cb:a6:15:
42:7f:77:2d:5a:cb:14:1d:83:29:03:b7:52:ec:8b:99:58:27:
4d:a0:c4:05:ce:12:38:74:a3:81:d9:a2:38:e6:76:ec:c3:39:
25:2b:36:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:06 2025 by rpki-client