Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json)
Hash identifier: iHHqhrof+yls+WadrG5hUNm/GmamxWJ6We+rgQixsSI=
Subject key identifier: 06:43:9B:43:80:AC:77:63:67:60:D9:68:1C:09:E9:DF:0C:C3:F2:5D
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 019778D4E07CE5AEB01DC976D5CC40521956
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
Manifest number: 1526
Signing time: Mon 16 Jun 2025 13:01:46 +0000
Manifest this update: Mon 16 Jun 2025 13:01:46 +0000
Manifest next update: Tue 17 Jun 2025 13:01:46 +0000
Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: mv+eKZ8ywbO8J0XvgV5JQVEKxTL8n831GkPWfhITD+A=)
2: DSwyNAuAz2bJdfrLonxlYBob04I.roa (hash: 3+/CvQ/0iqsF5SqvqkyipksHlcWBh/rqDJFf0zM3tC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 13:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:d4:e0:7c:e5:ae:b0:1d:c9:76:d5:cc:40:52:19:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Jun 16 13:01:46 2025 GMT
Not After : Jun 17 13:01:46 2025 GMT
Subject: CN=06439b4380ac77636760d9681c09e9df0cc3f25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:b7:ff:76:87:1f:44:32:d3:41:44:93:6f:
fd:b4:01:5f:f2:b5:2d:6a:a1:8e:76:54:72:59:49:
52:9c:45:01:f8:0f:87:ef:b6:dd:86:72:4f:66:e8:
d4:9b:b7:e2:e5:45:0a:29:f0:99:a4:05:ee:f3:8c:
a0:b0:0c:86:9b:ad:e1:72:f3:06:5c:d7:c9:ae:9a:
90:9c:35:ce:8f:01:10:ff:8c:02:e2:3f:db:97:1a:
71:a2:c5:e5:b2:a7:75:ab:e5:1f:6d:fa:e4:ee:8e:
b9:16:b9:a4:a4:05:b1:e6:e8:b2:f7:e8:90:f1:6f:
54:a4:8d:96:d7:89:72:9b:aa:c7:c1:97:fd:92:c2:
17:69:cc:23:fa:b6:93:fb:dc:34:bd:b4:4a:a9:37:
c4:53:4a:6e:00:fc:da:49:d8:61:c0:73:7f:b1:37:
e6:36:fd:70:a8:37:14:50:9a:5d:d1:49:2a:74:1e:
21:b1:c6:5d:27:89:2e:12:e7:33:1b:ed:4a:d5:2e:
75:d7:b0:78:5c:08:50:e5:13:b8:bd:be:7a:61:dd:
12:55:e0:42:5f:1b:93:f4:17:6a:bc:cb:6c:35:d9:
77:cb:29:b9:00:bd:ed:aa:57:a4:4f:3d:6e:fa:a3:
b3:1a:73:ee:16:96:22:3b:a5:9c:e7:bb:bb:6f:fa:
ce:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:43:9B:43:80:AC:77:63:67:60:D9:68:1C:09:E9:DF:0C:C3:F2:5D
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:2f:ac:82:3d:f1:31:3b:94:20:ef:40:f3:7a:16:bc:1b:dc:
c2:5b:ef:34:29:17:78:4c:20:b3:85:f6:0b:1c:b3:4b:c6:bc:
a0:10:8f:5c:a6:ec:96:f2:62:d8:88:5e:f5:89:6e:02:f6:ba:
d4:c6:54:6a:33:2f:68:a5:8d:2c:08:84:d1:a4:da:88:01:55:
bd:6b:75:36:ae:e8:87:c9:ba:e8:0e:ec:de:01:47:b6:0a:3e:
3a:b5:7f:27:27:5d:75:17:e9:df:aa:3c:8d:02:16:11:80:e2:
97:9a:fc:24:42:e3:62:d2:47:0d:aa:ad:97:0c:77:6e:89:16:
ef:a4:cc:ac:1a:92:73:ef:41:00:67:27:f3:0e:97:23:12:d0:
d2:39:fc:eb:f9:6e:6e:e0:23:81:31:28:18:5e:f1:88:94:62:
7e:8f:50:21:7d:a9:21:95:7b:04:7d:32:0b:f7:cf:1a:ae:60:
bb:8f:8d:5e:33:ae:0e:cf:f7:ef:57:3d:fa:e1:5f:90:3e:2b:
14:d3:54:95:fa:c9:17:38:ee:ea:90:3b:29:0b:c9:ac:88:7c:
d6:f5:11:a7:d9:31:b5:11:96:5f:10:e7:5c:48:d2:8e:69:b5:
87:d7:73:94:47:65:2e:48:48:8e:2b:41:9c:2e:0a:e9:8a:1d:
c7:6c:19:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 17:06:49 2025 by rpki-client