Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: rq/3DNGt8Y3GcOLp1G0OoaN3VkEDuUCcEudgh5XxmSk=
Subject key identifier: 5E:A3:A1:6B:7D:CE:88:53:5D:60:C1:E7:F4:2D:81:6A:09:9E:EF:C5
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 01976F6312DDF6A2F3712D0C131AD66679E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 0138
Signing time: Sat 14 Jun 2025 17:00:53 +0000
Manifest this update: Sat 14 Jun 2025 17:00:53 +0000
Manifest next update: Sun 15 Jun 2025 17:00:53 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: HQreCn0PF/iZVmfWJYTZQ4MTn7qNG1vNfOMElK78OX4=)
2: gYQl8tX6UzR3RDmi_Q8x7-FjoRo.roa (hash: Ql10T2YHVZxrbMNqGA2K5KVTFR5OZbWrykLTc4F+v5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:12:dd:f6:a2:f3:71:2d:0c:13:1a:d6:66:79:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Jun 14 17:00:53 2025 GMT
Not After : Jun 15 17:00:53 2025 GMT
Subject: CN=5ea3a16b7dce88535d60c1e7f42d816a099eefc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2b:f6:f5:85:da:0d:11:15:39:42:03:7c:94:
5d:e2:61:51:e1:3f:47:b8:ef:62:9d:94:6a:b1:16:
a1:dc:4a:5c:a4:f2:73:b0:97:64:51:a2:e8:4a:d7:
c9:df:d7:08:0a:09:3a:b8:5c:a7:4e:22:18:d0:ce:
49:d0:a3:c4:e9:d1:ae:e9:ac:23:44:b8:15:8f:1b:
b9:08:73:0d:24:49:64:f9:3c:de:12:71:aa:de:79:
a2:be:69:a7:57:ae:29:36:d4:78:a8:dd:2d:c5:38:
47:7b:3f:22:b9:3f:a5:94:c5:19:a6:fc:f1:83:2e:
d6:2e:20:21:a4:d0:2e:5f:da:fc:37:76:1e:27:42:
ec:33:54:b5:01:6d:60:4c:b3:93:5a:76:fb:b9:25:
ba:ac:3e:3c:24:1e:28:75:8c:45:e7:16:3b:9c:d4:
01:98:e3:f3:0f:a4:e9:17:84:9a:40:80:08:b7:69:
37:95:6f:61:3c:da:0f:dd:85:fd:91:5f:cb:5e:fa:
78:42:75:54:d6:82:15:1a:7f:6f:19:1f:44:6d:90:
a6:32:9a:2f:7b:80:82:00:3f:60:55:a0:0f:c6:78:
c6:16:0c:4f:e2:55:18:f7:df:85:6e:8f:31:73:3f:
6b:99:ac:cd:5a:0d:dd:47:46:0d:ca:7c:48:8f:83:
1e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A3:A1:6B:7D:CE:88:53:5D:60:C1:E7:F4:2D:81:6A:09:9E:EF:C5
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ea:2d:d9:b8:bd:11:f6:6d:39:fe:5d:08:f2:63:4b:e1:88:
67:8b:b0:c4:7d:1b:4c:f7:1b:90:ff:54:c7:51:c4:17:68:ab:
8c:f4:de:25:a1:6d:4a:d2:33:97:12:5e:b0:6a:97:3d:ad:56:
9b:77:f7:64:7c:f2:85:bd:aa:6b:a2:ce:6b:33:5a:19:16:99:
6f:31:29:ba:e2:15:8e:90:84:79:0a:8d:31:78:9e:89:3d:41:
56:2e:50:5f:12:11:74:0e:eb:d0:b7:d1:23:6f:8b:ce:0f:3d:
be:d0:1c:c1:1a:89:2d:e6:bf:fc:97:3b:c0:48:ab:fc:e7:93:
bc:94:bb:02:b3:1c:81:7b:5b:1a:82:d3:ba:ae:d1:ca:34:db:
1e:36:8d:32:1c:e4:bb:e4:b1:b2:1e:2d:fa:03:de:9a:82:fb:
76:ff:ff:11:3f:5f:d0:9f:79:b4:f3:38:22:df:7d:dd:b4:8b:
83:d7:56:d9:2e:3d:d5:94:6c:8d:d2:25:75:dd:8a:a7:44:68:
c5:a4:05:8a:cf:8a:d1:dd:5e:56:ae:91:be:11:13:62:04:7e:
2f:f1:14:d9:e9:2d:d3:c6:b2:f8:ee:54:00:2e:d6:f5:f3:b5:
c5:fb:fc:e5:21:89:4e:be:c9:37:c6:67:9f:76:44:5b:6d:0c:
4c:e6:fd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:49:21 2025 by rpki-client