Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: /eO6wwEtqTqd6hvba1/9Dg8uBME1ax7wvpYAT+CxF+w=
Subject key identifier: 66:02:DC:CB:89:48:07:12:93:FD:A8:A5:EB:54:4F:DE:E7:C0:86:55
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 0197707579DBC02F119813D63647E7F35618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0710
Signing time: Sat 14 Jun 2025 22:00:36 +0000
Manifest this update: Sat 14 Jun 2025 22:00:36 +0000
Manifest next update: Sun 15 Jun 2025 22:00:36 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: FFdrujELwwsD0vIGmeGHHLsxE/+2moG3XjQiuq4MY2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:79:db:c0:2f:11:98:13:d6:36:47:e7:f3:56:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Jun 14 22:00:36 2025 GMT
Not After : Jun 15 22:00:36 2025 GMT
Subject: CN=6602dccb8948071293fda8a5eb544fdee7c08655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a4:ca:95:dc:20:e4:35:40:c7:6d:94:82:a0:
54:fe:7b:64:a6:a5:41:fd:f2:68:72:0e:19:ee:0d:
42:42:cd:01:f2:0e:86:3c:c0:f1:92:86:72:94:60:
4c:16:05:45:de:f3:e9:d6:90:c4:a8:8d:14:66:73:
c3:e6:5f:28:a0:c6:4d:49:50:51:46:a8:c1:1f:a6:
26:0c:22:9e:4f:60:ab:61:ec:35:02:90:9a:11:0d:
98:91:48:e6:3e:ee:46:3c:ae:78:53:f0:71:28:8a:
f3:1d:2d:ce:6d:ca:17:c0:82:81:52:1b:21:89:51:
da:e3:88:e4:23:65:ac:11:f0:da:e6:6b:3c:39:c9:
09:0d:d5:e3:8a:57:6d:e8:3f:df:1d:55:93:55:64:
68:bb:b0:56:4b:86:25:68:4b:72:2a:c0:1d:d2:63:
7b:47:de:6f:92:52:1c:62:58:21:7c:b0:a9:a9:9b:
03:02:72:41:7c:0a:3d:3c:4b:37:e9:4e:dc:24:b6:
04:f0:b4:bf:be:0a:9c:45:5e:2b:6e:bc:5b:0a:e8:
2b:dd:94:4c:f6:b8:9f:06:f4:d1:0a:d1:9d:bd:1d:
3d:b0:19:e1:b6:ab:b2:ec:76:7e:48:e9:c3:6d:6d:
37:aa:9f:10:19:78:ad:e5:86:99:96:f0:04:90:84:
a7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:02:DC:CB:89:48:07:12:93:FD:A8:A5:EB:54:4F:DE:E7:C0:86:55
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:fe:ef:a0:0c:9b:b9:9c:03:17:7d:7c:dd:89:08:d5:97:b5:
c3:62:38:d1:80:ea:6d:fe:4d:9a:20:41:62:96:e7:9d:98:ed:
41:2e:6f:25:5b:87:13:6b:ce:70:f1:45:b1:d4:14:da:13:d4:
18:90:a5:03:c6:e7:6d:8a:b4:ab:21:f7:db:fe:ac:4c:d1:8c:
71:3a:ff:df:af:20:11:29:26:9d:54:00:8b:5d:bf:ac:4b:c3:
70:3b:19:cb:f5:4f:00:0b:5a:8f:05:29:94:f2:bf:7f:a5:37:
3d:7f:c0:69:e8:7b:29:3f:b7:5d:6c:9e:8c:42:47:41:01:eb:
e0:e4:1e:e3:14:24:01:47:1c:58:a7:f2:5a:98:93:ca:c0:85:
2c:29:50:c9:11:62:8d:15:7c:5d:d6:5f:6f:9e:2b:41:f2:9d:
bc:01:ad:1a:aa:90:e8:eb:99:24:84:0c:36:e7:22:46:6d:c4:
05:93:49:1b:23:78:40:55:3f:c5:33:ea:ea:d9:b9:f0:a2:b0:
30:d3:42:1b:af:8e:fc:dc:c5:1e:ba:33:9e:88:31:6b:b8:8d:
bd:99:00:c1:da:85:7f:a9:4b:58:72:b7:7b:be:a2:fa:d9:16:
7b:7f:b0:3a:f0:52:72:17:67:0e:2f:c8:4b:cd:53:bb:ca:44:
c2:88:61:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:07:01 2025 by rpki-client