Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: 6rnb5nbHDvlRqvbnKmUAjXknjPLKNoZV/opuo7lJE/Y=
Subject key identifier: 72:88:41:21:72:36:79:7D:A1:5E:33:E1:19:D5:26:BC:B4:28:1F:5F
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 01976CCFB4C439EB7A5E0B2B4429FE46F681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 94
Signing time: Sat 14 Jun 2025 05:00:40 +0000
Manifest this update: Sat 14 Jun 2025 05:00:40 +0000
Manifest next update: Sun 15 Jun 2025 05:00:40 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: Mkw793D04Fll+/SsxA9Yo43z2wptGSz8Ays+yL8auO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:b4:c4:39:eb:7a:5e:0b:2b:44:29:fe:46:f6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Jun 14 05:00:40 2025 GMT
Not After : Jun 15 05:00:40 2025 GMT
Subject: CN=728841217236797da15e33e119d526bcb4281f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:84:a5:b0:6b:cb:0e:71:b5:11:bc:50:aa:
7c:3c:1d:c6:96:59:f1:eb:3d:2f:0b:01:6e:72:95:
42:87:88:7f:bd:a6:a7:41:d6:9a:87:1b:14:be:3e:
6f:22:7e:10:53:4b:00:a5:07:5f:45:e3:af:70:dd:
2d:52:7a:68:b9:47:2c:49:91:e9:7d:a7:80:b0:34:
86:1c:ce:f8:76:e9:0c:e9:2c:55:d4:64:27:cc:f3:
7c:75:4e:e6:60:7c:22:f6:14:e1:af:6d:87:35:c6:
73:fa:ed:69:8d:27:e1:f8:8f:8a:68:ef:6c:eb:13:
42:17:a1:99:f4:32:a8:7f:be:15:72:77:21:8d:54:
1f:de:86:8b:db:51:3f:e8:eb:dc:13:b7:d0:50:d2:
5b:74:9f:eb:61:67:06:95:a0:84:c2:c4:fb:d8:75:
c6:a8:8e:c8:55:88:b1:2b:4d:98:9a:cd:fa:d4:47:
81:b7:64:6b:1b:07:7f:f4:fe:c5:c8:15:95:95:94:
9b:39:83:eb:50:97:73:a3:a8:a0:77:0e:e2:be:f0:
70:47:f8:21:e1:fd:6d:60:76:f4:4c:3d:63:2e:db:
19:dc:e2:2b:a9:9c:f4:db:4f:f1:3d:f0:b4:de:31:
77:39:2d:0e:53:4e:f6:5c:f3:ba:50:34:f9:bc:41:
39:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:88:41:21:72:36:79:7D:A1:5E:33:E1:19:D5:26:BC:B4:28:1F:5F
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:8c:2a:dc:13:e2:e2:c7:8e:cd:70:ca:ff:4b:b7:94:74:4e:
d1:c6:51:ba:bf:b1:4d:c9:3f:64:9d:16:9e:70:2f:de:c3:a4:
a2:81:5c:76:e3:83:10:a1:66:d9:1a:54:b4:cc:b8:2e:40:29:
ae:5a:c7:24:23:a0:b8:b8:34:d8:e3:16:54:e0:cb:69:fa:6b:
d3:8e:15:e3:d6:fd:e9:41:5b:55:e3:4b:13:00:94:3b:43:cb:
c5:55:15:6a:cb:9d:45:48:4a:da:f7:cb:fa:15:45:a6:79:61:
67:b9:0d:88:66:c6:2c:8c:f8:4d:30:e9:33:df:82:29:1a:31:
4a:22:81:c3:ee:2a:80:31:50:65:bc:68:81:b2:bc:5e:90:03:
f5:c3:67:b7:7c:92:15:48:09:59:d0:02:99:7b:41:fc:ef:4a:
11:8e:23:a0:51:4d:7f:57:a3:62:6d:f0:0a:de:2b:10:91:d2:
0e:08:68:5f:94:fb:36:b3:a6:6b:e6:91:07:ca:d5:84:56:a6:
7f:42:61:2d:4e:06:dc:32:58:72:d6:bd:78:0d:df:e8:86:6a:
b4:92:3e:56:3b:98:ea:27:fa:8e:ac:e4:d1:56:44:57:d3:46:
00:4a:72:59:a6:1a:28:9e:15:40:08:38:12:c2:09:5b:e6:8b:
88:f6:84:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:57:22 2025 by rpki-client