Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: iFlqOVu/IlkcpHAvZFwOjd9Ui7rJXZNgLqe0glPV4ec=
Subject key identifier: 3E:09:83:1D:5E:E8:41:8E:D6:3C:87:F8:ED:DD:C7:DF:16:C0:F8:AE
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 01976C2B1801F463F2C94F142B6675FEFA12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 12AF
Signing time: Sat 14 Jun 2025 02:00:52 +0000
Manifest this update: Sat 14 Jun 2025 02:00:52 +0000
Manifest next update: Sun 15 Jun 2025 02:00:52 +0000
Files and hashes: 1: OIDmEPbDXYESb6L8W110fitW4aA.roa (hash: AIH3VvHzWUC8AtgPyCBt/ld6YdiGtY4TDL+tLd/3C+w=)
2: OuQJP3rTcu0if4kJ5A5ZWqxKYpo.roa (hash: UN46ctiu4ND9IXGCd4EhP/dQ+ESw5QeLedCQ9yxaLnU=)
3: WV7QPmFglb32ubsYCfgK2rSXhGk.roa (hash: 7jclXGuRVqisqCezIaon+r4NXFS6nrK/O3nscYXGo0k=)
4: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=)
5: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: pFT86rXeXkdOl65ocliMgya2TuNwF1wTndj8tN7Pqmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:18:01:f4:63:f2:c9:4f:14:2b:66:75:fe:fa:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Jun 14 02:00:52 2025 GMT
Not After : Jun 15 02:00:52 2025 GMT
Subject: CN=3e09831d5ee8418ed63c87f8edddc7df16c0f8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:59:12:e5:aa:9c:99:d9:a5:a9:1e:12:70:20:
57:6f:d5:52:95:7e:f1:95:1a:94:34:40:d3:49:cf:
56:07:5f:2d:05:ee:75:22:ab:41:df:7d:24:79:6e:
91:6e:35:cb:5a:1e:0e:d4:79:b9:cb:29:2e:e8:b4:
9d:70:1c:75:3f:4b:73:aa:d7:c0:3c:7f:5b:1a:ac:
7f:85:ac:ad:2e:c5:0a:5e:b4:38:b8:ad:09:73:bd:
4e:7d:86:33:97:5a:ad:2f:9b:ca:d3:97:3e:2f:b0:
8c:d9:66:3d:6a:fe:07:af:7b:8e:39:89:a2:68:28:
56:94:b9:e9:cd:20:30:01:d8:ab:56:49:f6:92:4e:
c8:42:94:62:a4:01:8c:5c:a4:d1:ad:63:7b:d4:3e:
e5:6a:ae:43:52:19:43:a0:c3:1b:cf:c9:91:24:52:
21:d6:96:88:ea:77:9c:4e:ea:90:2a:76:01:9f:8b:
3c:23:29:6b:67:5b:e4:b4:5f:24:c3:ad:71:9b:8a:
d1:d8:ec:8f:80:3b:3a:fe:93:27:82:53:b8:fc:e1:
6f:5b:cf:5f:ee:37:5a:5a:10:c5:8a:8b:48:b1:3e:
6e:88:4f:a7:55:a7:80:1b:20:d1:5b:e8:84:ed:ad:
d3:97:64:13:50:4b:1f:a0:24:be:94:4a:5a:7e:45:
56:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:09:83:1D:5E:E8:41:8E:D6:3C:87:F8:ED:DD:C7:DF:16:C0:F8:AE
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:a4:97:b6:57:01:e5:a0:28:2a:60:23:24:72:df:f8:cc:2e:
43:4e:8a:46:73:df:ba:2e:02:e9:13:23:38:d7:cc:5b:99:9c:
f2:77:76:5c:04:48:50:0c:90:5e:7f:cf:c7:79:e1:db:e1:6b:
d7:12:3a:bd:f1:2a:47:08:e8:1c:d8:a1:04:43:0e:fc:db:3c:
75:8d:63:48:3f:40:6e:fd:fe:3d:0e:cf:0d:19:bd:94:1e:4c:
f1:16:96:6a:f8:09:4c:bd:26:12:a7:ad:d3:7b:2b:cd:fd:d1:
77:82:e9:56:b5:ba:1c:4d:13:59:8d:04:a0:9a:6b:2d:ae:46:
ee:85:38:b5:95:fd:8a:44:f6:4e:79:8b:37:75:35:a8:48:c9:
c9:17:9e:20:0c:f5:03:c1:5a:6b:7b:d0:c8:46:a2:28:a9:d7:
ad:42:b8:b8:7d:cf:dd:8a:33:9d:16:60:88:b8:03:b0:d7:97:
4b:f8:f7:70:a9:23:72:b8:aa:21:3a:07:75:bd:15:67:1e:37:
2b:8c:67:43:83:86:09:82:1d:dd:de:ba:73:c0:c9:ec:f2:6d:
b2:ce:65:0b:d7:7c:27:f0:8c:ef:3c:49:84:ce:7d:c7:a0:c4:
66:61:14:4b:38:45:3a:a4:a5:52:3e:bc:0e:1d:f3:be:68:02:
dd:30:8d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:04 2025 by rpki-client