Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: bn0EjrIRDqZh9YjKD8Q0Cf6thRvhtMOkw7bVd+narUs=
Subject key identifier: A3:19:D0:A6:7A:0A:9B:FD:92:08:25:84:47:A5:E2:13:EF:10:5B:C8
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 01977E68581D3484EF6551DAC1F6F4A2A4F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 020E
Signing time: Tue 17 Jun 2025 15:00:56 +0000
Manifest this update: Tue 17 Jun 2025 15:00:56 +0000
Manifest next update: Wed 18 Jun 2025 15:00:56 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: 4Sdb+bpzrVbaCU/jQMsR9uZlLA65klU7MLVcVplmiuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7e:68:58:1d:34:84:ef:65:51:da:c1:f6:f4:a2:a4:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Jun 17 15:00:56 2025 GMT
Not After : Jun 18 15:00:56 2025 GMT
Subject: CN=a319d0a67a0a9bfd9208258447a5e213ef105bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:3f:3a:88:a6:36:da:64:a7:10:3e:9a:23:
f6:c4:ab:f5:e6:16:26:7a:3a:b3:c0:7d:34:a9:93:
6e:a4:ad:0f:0d:c8:b5:52:40:09:f0:95:01:2f:66:
18:81:d6:83:f6:be:b9:2b:94:46:75:c7:35:8b:40:
1b:e1:49:ea:aa:d3:31:a8:db:8f:af:ef:0e:e5:9f:
1c:81:90:43:31:b9:e9:35:d7:87:94:52:cc:1a:59:
99:ee:33:f1:7e:16:ff:5b:8c:62:eb:c5:95:85:36:
d5:1a:73:0d:23:d6:07:c3:a0:cd:98:8f:05:30:1c:
16:f4:35:ee:64:12:85:d0:b0:e2:ea:c9:64:3f:b6:
53:75:f6:35:0d:07:17:bb:72:ae:93:89:12:15:9c:
77:18:fa:64:aa:31:d7:7d:d0:60:3a:ba:4e:79:dd:
c8:36:12:8c:dd:5a:ac:12:c7:fd:fc:a1:b5:06:55:
32:41:75:93:db:48:ee:6c:ea:18:d5:12:47:67:7c:
cb:69:c9:2b:9f:b5:7b:f5:26:54:b8:f8:07:b3:49:
63:88:64:dc:b4:26:b5:9b:47:8e:45:e9:bc:43:ab:
fc:b5:57:f5:20:39:3d:60:4b:1c:ab:50:07:ea:2f:
46:f1:6f:6b:03:d0:ba:f1:a0:3c:af:25:f8:7a:d2:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:19:D0:A6:7A:0A:9B:FD:92:08:25:84:47:A5:E2:13:EF:10:5B:C8
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d1:e1:47:f3:c6:cd:d4:60:c9:ca:2f:d2:c6:86:c2:43:aa:
cd:a8:13:85:30:0d:5b:2e:59:2a:c3:f0:dd:5e:f3:03:4f:c6:
73:7d:29:00:2a:3b:aa:e5:12:b0:6f:1c:b9:fc:b5:59:72:79:
8c:54:a7:b5:e6:45:82:65:f6:6e:b2:db:f6:e9:24:09:fa:48:
8d:08:f7:63:80:54:25:18:3f:52:62:b7:28:07:55:7a:a0:28:
ef:cf:ee:16:7a:ea:b7:c2:2a:64:1d:b6:ce:0b:3c:19:64:95:
8d:c0:9c:45:4b:94:32:d9:ab:f8:c1:b8:89:14:e3:2f:31:b7:
f7:69:13:7b:c7:4f:37:11:ba:67:a0:55:c1:30:0a:47:94:f0:
af:90:ec:55:f8:97:91:72:81:09:40:6c:91:3a:e1:66:53:3c:
1a:3a:57:ce:1f:62:47:34:6f:8f:e2:ec:a6:ec:6a:17:b3:3d:
96:71:a6:4f:ec:d2:90:f2:3f:36:b2:f8:b4:6c:ee:22:e5:22:
91:13:ec:48:64:eb:89:27:0a:13:d9:fe:2e:87:e9:37:66:ce:
19:af:21:31:c3:7b:ea:67:f1:63:aa:35:c5:b5:60:8e:e7:3d:
9b:12:b2:f4:5d:24:b3:64:f6:92:db:37:f3:97:bf:6d:8d:4c:
02:5e:eb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 20:15:43 2025 by rpki-client