Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: 8xUX88jc9tFNSs/mCwACftQ9b4TW6jHfXMVnet4JvqA=
Subject key identifier: 42:C7:01:24:2F:74:AE:D7:08:7D:97:56:64:33:68:C4:21:DE:97:7A
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 019774C059E986069FAAA0348392B4D9718A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 1592
Signing time: Sun 15 Jun 2025 18:00:52 +0000
Manifest this update: Sun 15 Jun 2025 18:00:52 +0000
Manifest next update: Mon 16 Jun 2025 18:00:52 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: jFQgCy0+pwRTlPZcQnBE8pp1nudx/JKGqp6d2N4CRSo=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:c0:59:e9:86:06:9f:aa:a0:34:83:92:b4:d9:71:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Jun 15 18:00:52 2025 GMT
Not After : Jun 16 18:00:52 2025 GMT
Subject: CN=42c701242f74aed7087d9756643368c421de977a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:97:ad:43:f5:c8:c4:27:57:6d:8b:04:be:3b:
f1:1d:19:9b:f9:f9:9b:c6:ba:b7:4b:6a:7f:ed:c7:
c4:5a:ac:88:2c:b9:48:42:06:0a:70:a0:29:16:e0:
44:b0:9b:16:65:4a:2f:bb:5d:5a:bc:30:e8:21:1c:
2c:de:7b:73:22:75:6a:7d:ab:b1:8f:59:92:42:a9:
e8:f1:0d:3f:03:9c:d2:1a:9e:44:ac:53:2d:e6:c1:
01:45:50:db:d7:fc:d0:85:6b:36:0d:ce:f7:5b:86:
ba:0b:e7:aa:47:ae:33:4f:11:8b:1b:47:ce:8a:fd:
9b:61:58:7d:cd:7d:15:c5:03:6b:1c:4c:27:8b:6c:
2b:aa:83:e5:31:0d:0c:60:cf:64:9f:df:79:14:11:
cd:a1:09:fc:a8:d5:89:cb:0a:16:52:14:6a:a3:e2:
18:0a:dd:82:e3:af:6a:90:4b:7e:24:85:00:71:58:
ea:16:86:a0:01:85:0b:74:99:56:c3:e3:ec:c3:1b:
a0:41:2e:ea:97:56:bf:0f:82:5b:21:34:7e:ae:cc:
91:a5:c3:19:0a:ab:c5:cd:b8:d7:50:a9:c8:c9:7b:
05:3b:03:56:9f:03:2c:6d:1e:36:02:38:fd:4a:84:
eb:05:ba:97:d8:ba:e1:8f:6c:83:34:94:67:d7:9e:
4d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C7:01:24:2F:74:AE:D7:08:7D:97:56:64:33:68:C4:21:DE:97:7A
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:7a:f5:9e:9d:8c:9f:c3:ce:2f:b5:7d:c1:8b:8b:c0:d7:5b:
67:26:71:5c:72:9f:1b:a3:e9:31:68:7b:bf:d1:be:8c:7c:04:
91:88:ad:5a:96:bd:6e:7d:f0:52:b2:11:0d:a2:b3:d8:59:47:
63:3c:e1:b4:79:c2:2c:af:f2:81:a7:17:91:b9:dd:09:d3:ae:
f8:c6:86:20:a5:34:55:cc:6e:dc:36:72:ae:db:7c:1d:d6:71:
1a:6c:45:d0:0a:04:64:79:e8:48:ab:ef:f1:7b:06:4b:9b:f0:
79:af:8d:13:23:f5:67:40:cf:fa:ac:48:3e:98:62:93:d8:42:
f2:5a:18:26:2b:2c:c8:44:e7:ee:18:04:55:83:5b:e0:cc:36:
cb:4f:25:59:be:5f:0a:27:ae:45:ca:23:f4:18:44:06:68:92:
ab:de:49:5d:5d:bc:54:9c:52:4a:09:40:69:4c:ed:d5:27:1b:
87:e9:ed:9d:6f:4d:e3:1e:80:97:56:52:25:44:14:e4:65:9f:
c6:b4:40:d7:36:7d:78:28:85:c8:8d:18:09:9f:aa:41:68:cd:
c9:34:30:d7:06:93:bf:ff:a6:b2:e4:f2:fd:bc:d3:56:5e:9e:
ba:90:f1:74:33:8b:58:f5:6a:44:ca:b6:92:b4:74:e2:5c:da:
07:e9:b3:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:05:23 2025 by rpki-client