Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: twgerZN45+rJ7ra598jKNJ7NSX1RnQh3Q2q8xpFy4pE=
Subject key identifier: E5:2F:08:85:B6:E4:85:BF:B7:26:C7:8C:B9:27:0F:97:8F:8D:1C:15
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 01977309AF6A1C97058D4A960DF90B837C8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 1592
Signing time: Sun 15 Jun 2025 10:01:43 +0000
Manifest this update: Sun 15 Jun 2025 10:01:43 +0000
Manifest next update: Mon 16 Jun 2025 10:01:43 +0000
Files and hashes: 1: KrPbG6M_7Mm1PtcHhZI4wknQI1M.roa (hash: tjtqRRJLnNhIS/xM5FVWwtZTtirmBRvu7piQDYGy3mE=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: fcyfN/1mQifYOIhcQdgCBjAKOupaIqSJMAvGLvBmM/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 10:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:af:6a:1c:97:05:8d:4a:96:0d:f9:0b:83:7c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Jun 15 10:01:43 2025 GMT
Not After : Jun 16 10:01:43 2025 GMT
Subject: CN=e52f0885b6e485bfb726c78cb9270f978f8d1c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:04:f4:76:ff:03:88:6f:52:c0:1a:d4:fb:36:
ba:3e:6b:da:45:69:a8:ec:74:28:fe:e6:2d:88:fb:
3a:60:f9:2f:b0:96:71:ae:4c:2f:a7:39:15:69:d8:
35:01:b3:25:7f:ad:9a:ca:a7:18:97:75:95:4e:39:
63:02:5a:0d:92:be:73:3c:18:88:77:8d:df:96:0e:
33:7f:3d:22:39:2c:5e:6a:6b:5e:73:48:58:82:44:
e0:98:e2:0b:4b:13:27:b6:dc:88:b9:38:bb:03:47:
8a:c1:60:17:63:3a:07:0f:6d:0d:cb:47:8a:8f:6b:
b2:cd:d6:dc:d5:58:9e:2a:cf:34:f6:dc:32:8f:e6:
40:0f:6b:49:06:48:f6:ac:d4:d2:de:9d:95:3e:c7:
f0:95:f3:0c:a1:62:22:f9:a2:20:39:7f:a7:07:f6:
d6:b4:c9:aa:3f:f6:e1:ab:fd:5c:e3:b0:cc:de:b4:
bc:d9:5a:36:96:17:47:6a:9e:d8:1b:aa:53:54:34:
32:aa:ec:f9:9b:bd:d8:4d:3c:90:73:06:0a:2d:9d:
4f:9f:c5:b6:6e:0d:2b:d4:16:e1:df:c0:c7:32:c2:
b1:f5:cf:e9:d1:f5:d3:01:bd:20:d8:03:0d:4e:5e:
9c:8e:c4:89:19:8a:aa:10:eb:b8:7d:63:61:61:c9:
c6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2F:08:85:B6:E4:85:BF:B7:26:C7:8C:B9:27:0F:97:8F:8D:1C:15
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:9a:41:d0:0d:ee:b0:a6:ae:8e:31:a2:10:e5:5a:c9:6e:95:
3d:43:9d:7f:bb:cd:d3:f6:db:07:b2:9e:ff:45:27:4a:b8:7a:
dc:30:db:19:90:7f:2e:34:6a:95:17:19:b8:80:11:a0:31:cc:
04:ac:34:88:6d:4e:56:3e:40:91:b1:f8:d7:6f:76:e6:92:be:
c2:5f:31:7b:db:3b:81:26:50:56:c3:50:24:df:94:fe:04:05:
36:73:d9:cb:97:2f:69:e7:b6:5f:f6:c6:81:26:6e:db:84:b7:
47:3d:69:13:ff:1f:0c:f3:df:e6:3c:0f:af:66:d7:dc:26:80:
c0:8f:c9:c5:4a:26:8e:f8:2f:54:c7:a3:82:49:b6:d8:ad:08:
92:e1:3c:d2:b4:40:ae:ea:f2:f0:4b:27:91:be:72:39:af:ad:
28:9c:ff:83:eb:bf:77:48:20:8e:c3:f4:05:aa:68:a8:f4:87:
a0:1c:9f:ba:a2:3c:f4:32:0f:aa:c7:3d:87:c8:ca:7e:f2:08:
62:88:d2:cb:76:3d:b9:fd:58:75:8d:90:b7:8a:83:e4:20:94:
63:4f:39:ba:39:55:f9:e6:89:52:aa:98:6b:ad:99:55:7f:ab:
c0:87:0c:ad:96:8f:2b:2a:ea:82:e9:5a:08:26:3f:69:2d:e8:
d3:2c:6c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 18:56:42 2025 by rpki-client