Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
File: iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json)
Hash identifier: ruKJ7O/6W18Zt920YYyYvxlVHZ8XlC6dDUsZFis84j0=
Subject key identifier: C9:9A:43:5B:1D:F2:F0:F4:86:B4:38:9A:BE:4C:19:61:EE:51:7A:18
Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
Certificate issuer: /CN=8b050e42c918de3c27366def433a61f13c3b16b2
Certificate serial: 01976F2CA4BA693E7CD30D40E47BEBBBFB69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
Manifest number: 158C
Signing time: Sat 14 Jun 2025 16:01:26 +0000
Manifest this update: Sat 14 Jun 2025 16:01:26 +0000
Manifest next update: Sun 15 Jun 2025 16:01:26 +0000
Files and hashes: 1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: 19aIvzWWtoDi5GEKHMco992U7TTNiuLcMQfAdT1oNhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:a4:ba:69:3e:7c:d3:0d:40:e4:7b:eb:bb:fb:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2
Validity
Not Before: Jun 14 16:01:26 2025 GMT
Not After : Jun 15 16:01:26 2025 GMT
Subject: CN=c99a435b1df2f0f486b4389abe4c1961ee517a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:20:12:a4:d5:d9:f2:0b:75:8f:c8:54:df:
d9:67:db:f8:3a:2c:1f:b3:c8:35:24:b0:48:33:14:
67:1b:ab:82:7f:9d:d8:77:85:51:f1:c0:6b:35:39:
08:44:9c:a7:09:ba:24:7c:75:10:d1:be:8b:e8:35:
db:bf:f4:0d:ee:4f:18:eb:c6:46:46:73:02:75:15:
80:44:1c:ff:a2:ef:8c:22:54:fd:47:43:de:d5:6e:
3b:60:d1:a1:1c:d9:42:1a:da:b8:d9:39:fb:18:02:
ee:7d:9c:b4:fa:6c:49:eb:ea:93:e7:5d:36:46:9f:
98:76:07:9f:51:cf:89:49:dd:63:70:c0:b3:63:1c:
fe:2b:fe:1e:f0:e3:f4:1a:89:73:6f:e8:ec:0c:3f:
e8:1d:69:22:4d:e2:ee:c9:94:77:10:8f:a2:36:0b:
f3:4a:bf:94:b4:12:56:7b:21:e0:05:9e:dd:66:08:
6d:01:1d:5a:0a:f1:18:85:60:1c:d1:ad:92:26:a2:
14:1c:c3:84:14:99:78:45:1d:e1:2a:91:30:64:8d:
a0:bb:46:f6:5b:de:0a:9f:c3:c9:90:fd:bf:09:ab:
68:6a:28:67:07:5e:75:d5:ff:0c:bf:f7:4e:23:a6:
d4:7d:34:8b:2c:51:e1:08:a6:4d:47:b2:fd:5e:47:
b4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9A:43:5B:1D:F2:F0:F4:86:B4:38:9A:BE:4C:19:61:EE:51:7A:18
X509v3 Authority Key Identifier:
keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:82:7f:52:7e:81:d5:97:19:a2:e1:8a:02:0b:a0:a3:5c:fc:
9c:fe:b7:2d:72:9d:b7:4b:8d:ea:db:3f:1f:ed:da:19:66:a5:
84:45:d6:b2:07:89:60:a5:e9:f8:8a:ed:86:e1:86:72:0e:0a:
e5:2e:43:54:6d:1b:6d:d4:23:95:0a:19:5e:d1:f6:bb:2f:6d:
3b:7d:2a:71:f8:38:7f:f9:f0:08:e3:4c:95:15:36:33:9c:6a:
30:bc:83:d8:cf:96:d1:2e:cd:73:10:09:a5:68:4f:5f:52:be:
ba:64:3c:92:16:6f:d3:03:aa:dc:05:11:0a:fc:22:aa:cc:54:
01:59:77:50:62:eb:0a:a0:c8:d8:be:39:f1:81:26:8d:fc:5b:
d0:76:f3:61:7d:dc:c0:06:4f:46:80:cd:3b:21:1a:4e:c3:80:
8b:6e:aa:81:4c:78:ed:1e:2f:69:48:ac:84:0e:95:e7:6a:7c:
2c:27:e0:0c:c5:4e:f7:cd:c5:48:4b:c2:b1:9f:19:3c:05:66:
c9:d5:76:cb:ca:53:ca:81:72:44:61:5b:f5:d4:7e:55:ad:03:
ec:12:5e:46:10:42:dd:8d:75:ed:09:08:70:57:5d:63:8a:cb:
e2:b1:29:ec:f5:cb:71:9d:4f:39:3a:52:74:a6:f7:2c:96:d4:
a8:cd:d5:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:46:25 2025 by rpki-client