Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: nCyYxeZpjODZpOg/quvGN9kSzPSI5HeUnpDQ6o8Ct0Q=
Subject key identifier: 57:D1:5B:A4:EF:6D:A6:17:33:48:8E:65:72:32:CD:E3:DF:1A:6A:8F
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 0197696172EDF6895F01CFE73721B20471EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 020E
Signing time: Fri 13 Jun 2025 13:01:23 +0000
Manifest this update: Fri 13 Jun 2025 13:01:23 +0000
Manifest next update: Sat 14 Jun 2025 13:01:23 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: tQQQnIZgeQvdVmGgXS38F8s6TL08s21of776h+rWkBc=)
2: bfd_WpvacXpVJP__dq6vej5IyyY.roa (hash: /B+pNt8vIwVV5x8COrKPeKukz7hh0c0T1g3kvtIg6Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:72:ed:f6:89:5f:01:cf:e7:37:21:b2:04:71:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: Jun 13 13:01:23 2025 GMT
Not After : Jun 14 13:01:23 2025 GMT
Subject: CN=57d15ba4ef6da61733488e657232cde3df1a6a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b8:3d:dd:da:ee:ad:b2:38:ec:66:b4:2e:d5:
61:d3:26:67:45:c8:d8:2d:68:df:ab:d1:5c:ad:86:
e5:78:24:13:67:4c:ec:e3:e0:cb:ca:a9:44:bd:0f:
ae:8f:44:12:50:24:4e:56:55:bd:6a:50:1d:11:92:
4c:8d:f0:c5:4f:32:e2:04:6c:f9:36:02:f1:22:4b:
83:3b:21:f1:29:0f:da:3c:e4:32:58:56:19:1e:a6:
32:b6:01:42:ed:55:a3:db:03:39:86:53:d8:7c:59:
c6:46:e3:18:70:c5:ac:46:e7:42:c1:10:43:d5:63:
0a:74:f8:9d:31:a7:46:39:5c:55:99:f8:d1:7f:6d:
d2:7b:06:c2:e3:9c:64:79:64:b8:8a:67:8e:49:97:
a1:f7:99:83:ff:0f:e6:d4:74:3a:42:ee:c7:0a:00:
c3:62:dd:d7:1c:ea:6c:60:3f:95:58:05:7d:4d:22:
7d:0f:96:32:21:e3:50:e0:7e:49:9b:0e:42:5e:61:
39:17:33:9e:a8:37:bf:85:f0:d3:13:de:e7:81:b2:
1a:c0:17:a8:59:5c:03:a3:31:1e:7e:98:93:e2:14:
c5:95:62:70:bd:cc:ce:73:60:4f:0e:6e:ac:87:25:
95:f6:7a:5c:68:06:2a:ff:ac:74:cc:cb:52:f1:69:
43:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D1:5B:A4:EF:6D:A6:17:33:48:8E:65:72:32:CD:E3:DF:1A:6A:8F
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:3c:7e:80:68:51:58:5f:77:3a:66:e9:49:81:3f:c7:7e:c6:
e6:e8:f2:08:cc:d8:76:64:42:29:e0:0e:17:3b:0a:29:3b:05:
94:d7:32:04:75:0d:90:a1:61:10:f6:f0:bb:5f:ae:45:87:c5:
eb:f9:44:4b:f1:fd:9b:2b:84:0e:08:a6:93:4b:c5:f6:ad:6d:
e5:e6:a5:4c:65:ac:05:9a:95:89:2d:11:6a:22:32:78:c4:4c:
f1:91:a5:2f:20:54:e7:54:d5:6a:26:ef:e0:0a:fb:44:dc:1c:
58:32:db:fe:c6:8c:5b:9f:9d:9c:60:b4:eb:27:96:39:c5:6e:
2d:d6:e5:5c:16:bc:5b:0c:9a:87:43:1b:39:10:a3:f3:08:14:
c4:87:76:be:96:5e:08:65:5f:87:da:b6:8b:4d:28:79:3d:8b:
18:ab:14:70:8b:89:07:c0:a7:e4:77:db:21:8b:51:ba:b0:f4:
50:80:1a:3d:23:9e:9e:7f:ce:b3:65:62:a6:34:c6:48:22:d7:
a0:45:95:cb:ce:8b:58:0f:3a:a2:d4:38:24:3f:1d:aa:cf:c7:
f3:98:16:b5:cd:99:eb:82:4a:e0:15:09:aa:3b:b6:8c:88:7b:
aa:d2:d8:34:5e:42:30:9a:cd:b9:39:85:8a:ad:41:25:af:ab:
e3:e2:46:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:34:37 2025 by rpki-client