Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
File: fexyg377vE6m3dS-lDYZFrTDYto.mft (raw, json)
Hash identifier: rSwMAEGHIhujDHbrLiHUQlzr7NFDCN2+uIL/o4H+G8U=
Subject key identifier: C7:11:0D:66:C6:05:C4:F7:FF:06:80:B8:08:76:D2:11:EC:22:78:AE
Authority key identifier: 7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
Certificate issuer: /CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Certificate serial: 01976A3CC95019C3E2D82E2BCAE55ADA583A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
Manifest number: 0C75
Signing time: Fri 13 Jun 2025 17:00:57 +0000
Manifest this update: Fri 13 Jun 2025 17:00:57 +0000
Manifest next update: Sat 14 Jun 2025 17:00:57 +0000
Files and hashes: 1: U2BvE4zbzFJTHLJzSmZ1W9x-kCM.roa (hash: CneTmiRYnA+2gIbWw8P2gftXT9GSMXZurQf8UEQYJtM=)
2: fexyg377vE6m3dS-lDYZFrTDYto.crl (hash: 99MAGLz3xlMJ0+IDC+FG+HM12KapRa1k3M5zYCt2Geo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:3c:c9:50:19:c3:e2:d8:2e:2b:ca:e5:5a:da:58:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Validity
Not Before: Jun 13 17:00:57 2025 GMT
Not After : Jun 14 17:00:57 2025 GMT
Subject: CN=c7110d66c605c4f7ff0680b80876d211ec2278ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c5:6a:69:13:84:62:a7:d0:87:34:45:a6:04:
14:99:b9:bc:13:33:4b:9b:5e:eb:dc:53:eb:00:d6:
20:55:e3:a9:47:cb:a9:52:ac:24:d9:49:75:5f:f6:
12:81:37:83:53:c6:2f:de:8e:4a:6c:01:1b:c2:7e:
a2:c4:10:96:02:54:47:0c:bd:38:0f:75:39:58:49:
9a:28:d4:54:c5:7e:de:de:e1:c9:9c:5a:c4:c3:02:
59:79:ab:96:9b:05:c5:f9:a3:77:56:59:03:bd:5d:
f8:7b:ae:40:1a:7b:1c:16:ca:34:57:20:7f:54:ac:
74:54:54:c5:a6:64:87:72:53:aa:f6:ea:22:4d:a0:
51:42:36:be:10:83:c2:51:ba:6e:e4:e0:5a:75:6d:
e2:a8:58:67:69:e6:2d:ad:e6:f8:cf:02:e2:b5:af:
69:fc:05:4c:11:09:06:16:61:60:42:b4:cc:3c:e1:
b5:30:93:ce:5e:8a:a2:28:f4:71:7b:69:a2:db:79:
d9:c5:d0:2e:5b:14:d9:15:29:da:ab:d2:0c:76:f5:
c3:79:5e:a4:c9:da:93:c1:cc:46:d5:17:81:5a:af:
8a:9d:37:94:cf:9a:0b:a9:ff:a1:6c:05:21:97:54:
b4:47:d9:d5:b2:32:5c:fb:5b:1d:6a:b8:0f:d1:25:
2d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:11:0D:66:C6:05:C4:F7:FF:06:80:B8:08:76:D2:11:EC:22:78:AE
X509v3 Authority Key Identifier:
keyid:7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:a8:46:51:54:37:d8:c5:b0:99:5d:a9:9e:b8:c2:f7:44:6c:
58:c8:42:41:92:48:0d:d6:ae:0c:b9:5f:8c:4d:1e:2f:ec:d1:
84:f7:38:6e:7c:54:7e:04:2f:b7:e1:2a:dd:7f:f3:34:ea:e8:
d6:fd:1a:f8:1b:ee:39:b4:11:9c:ff:8b:3b:6c:96:5c:46:e1:
57:43:4a:1a:76:40:87:0a:cd:3c:51:ec:cb:1d:c3:7b:df:19:
c1:ae:a0:06:f6:88:48:99:28:a7:ac:e1:d7:c8:ef:ba:c4:f7:
a4:d1:46:25:63:2b:70:e3:08:c7:8a:0a:73:98:bf:04:85:d2:
70:72:6d:b7:47:ad:e1:a2:c1:83:36:f5:1b:8e:e2:1d:c9:ff:
85:7c:8c:6d:0f:0f:98:ba:38:5c:e9:c4:34:f8:b5:c5:90:a0:
bd:7c:93:9d:08:16:1a:79:cf:a2:03:75:28:c1:c4:c2:f6:c1:
88:eb:6d:d0:9f:9f:5a:b0:11:92:de:28:ff:6a:65:a4:e5:7d:
1b:58:16:2e:fa:47:45:41:ca:e1:84:be:eb:a4:48:c3:01:ec:
ad:37:61:e0:f4:64:39:94:28:b9:18:27:ca:c7:4d:68:b7:1e:
40:01:50:03:19:f0:fa:49:ce:94:e4:eb:85:d2:ea:3d:89:74:
5a:dc:11:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:42:29 2025 by rpki-client