Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json)
Hash identifier: 8I54W9UU8mQB2n4sZd2mD7BSo3ILESWS2cTTSUsLLP8=
Subject key identifier: CF:60:36:C7:3E:C0:90:FD:9E:AB:21:71:EA:04:31:58:A6:76:8B:8A
Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Certificate serial: 01976DAB38DA4406A6EC6AD515A1033968BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
Manifest number: 0318
Signing time: Sat 14 Jun 2025 09:00:27 +0000
Manifest this update: Sat 14 Jun 2025 09:00:27 +0000
Manifest next update: Sun 15 Jun 2025 09:00:27 +0000
Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: YS8hTawdN0A+HWd8byvN3BrCMMVXlsFYWfaQWCID/Ro=)
2: L86Czh-hgFnJfXYShvX9w1KKWEg.roa (hash: UlpXjqDOYfOCQf+VBo1cHNYWZUpj4u/uB6dnGVYlbBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:38:da:44:06:a6:ec:6a:d5:15:a1:03:39:68:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Validity
Not Before: Jun 14 09:00:27 2025 GMT
Not After : Jun 15 09:00:27 2025 GMT
Subject: CN=cf6036c73ec090fd9eab2171ea043158a6768b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:58:33:85:f6:27:97:57:b3:eb:df:f7:60:9f:
24:ee:f3:03:1e:ec:dd:29:49:aa:a2:b1:c4:25:6f:
3b:12:ca:51:34:2f:54:63:59:62:3a:bf:7c:c3:38:
55:73:08:62:9f:ce:4e:ef:aa:43:a4:e1:60:da:02:
5f:b7:cb:bb:54:cc:c6:03:bf:77:00:e7:9b:5e:f5:
4f:57:0c:76:4d:6f:4a:fb:3b:01:8d:75:d5:37:9c:
62:9b:5e:b6:ad:46:93:b4:06:31:df:32:eb:78:52:
9c:f6:91:91:a1:ec:02:c4:10:f1:db:ae:17:c9:88:
1f:e3:44:3e:17:1a:99:7c:6a:1e:ba:e0:07:7f:dc:
b4:9b:4f:7b:4d:a0:8d:ad:4d:dd:9e:c1:ca:43:b7:
17:57:25:50:31:d8:b6:07:02:0e:e0:d2:a3:2c:91:
2b:ce:da:06:1b:87:a8:04:96:b9:94:88:61:75:ce:
0e:d3:6d:f9:b7:03:6b:ad:d2:22:b1:34:2d:e0:c6:
76:67:9c:2b:2e:6f:59:85:9c:05:39:19:a0:40:a7:
c8:bc:9e:5d:f6:42:96:88:42:e6:d5:c9:a8:eb:fb:
1a:ba:56:21:6a:17:77:88:34:e0:a7:d2:bc:b0:82:
16:f9:4e:7f:0b:8a:e5:3b:da:0c:48:7c:88:50:a6:
0f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:60:36:C7:3E:C0:90:FD:9E:AB:21:71:EA:04:31:58:A6:76:8B:8A
X509v3 Authority Key Identifier:
keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:d6:ee:83:3e:75:cf:24:bc:ec:0b:f1:58:4b:a0:00:90:c5:
ed:e3:b1:59:5b:91:28:e0:68:56:c3:02:d4:32:ab:c4:98:65:
f6:b2:e2:64:91:6b:c1:46:fc:1c:57:3f:84:10:f3:32:57:f7:
30:1a:2c:86:fb:5f:c0:30:33:2a:47:bb:1d:d8:7b:a7:14:fb:
2b:4c:cd:e2:f7:e2:35:72:d0:46:32:8b:9a:a6:0b:2f:48:c8:
d2:80:c9:5b:63:f7:36:c5:ae:4c:16:a6:23:82:cc:8a:50:3c:
ee:b8:66:cc:19:44:ff:e4:06:65:a9:ad:69:87:7a:bd:18:f3:
69:21:7f:5b:4f:ea:8a:f3:94:af:0a:81:e4:16:81:07:27:99:
0a:5e:ef:8d:da:72:34:f0:45:20:ca:c5:18:9e:f0:33:50:fb:
86:93:91:41:89:bf:83:57:16:7f:e7:ba:12:43:e1:ac:5f:62:
7d:97:71:36:bb:51:0d:3a:b5:50:ef:fa:ee:14:ad:17:fc:9c:
a5:6a:c8:b2:d3:13:8a:61:40:7f:d7:7a:39:3d:7d:16:83:1c:
cb:85:76:41:71:3a:1d:4a:8b:07:95:ef:9c:1e:d9:b6:df:24:
23:94:d1:45:4e:6f:33:a1:18:03:ca:a1:0e:50:a9:e6:3b:ef:
9f:31:39:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:50:31 2025 by rpki-client