Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
File: iydIPcFsMY5a__gyKTDIF_0ZLJE.mft (raw, json)
Hash identifier: MMAFWgJiO6oQpL+w+WHNqQqWtHF+Cw+aX3uGtHBhJv8=
Subject key identifier: 07:A8:15:D2:6B:BA:56:25:AC:C6:1A:DA:00:CC:A2:81:17:C1:51:2A
Authority key identifier: 8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
Certificate issuer: /CN=8b27483dc16c318e5afff8322930c817fd192c91
Certificate serial: 0197684E6090A630021C1AF3CEE12DBBBB02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
Manifest number: 08EC
Signing time: Fri 13 Jun 2025 08:00:56 +0000
Manifest this update: Fri 13 Jun 2025 08:00:56 +0000
Manifest next update: Sat 14 Jun 2025 08:00:56 +0000
Files and hashes: 1: WG1KTWwRB1pYbj2P1y-YbJWElMQ.roa (hash: /RcbZ2ujStzbSPjPDGEz6Qg57WsDieIVmjOcowRraSQ=)
2: iydIPcFsMY5a__gyKTDIF_0ZLJE.crl (hash: fkleVrNfSSw6k9YZOISB9B7MF6fwmwMwc62Ii/vywTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:60:90:a6:30:02:1c:1a:f3:ce:e1:2d:bb:bb:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b27483dc16c318e5afff8322930c817fd192c91
Validity
Not Before: Jun 13 08:00:56 2025 GMT
Not After : Jun 14 08:00:56 2025 GMT
Subject: CN=07a815d26bba5625acc61ada00cca28117c1512a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:9f:58:bf:ec:a6:d3:9d:a0:44:62:d1:8d:
a3:6d:85:31:e0:22:0a:53:be:f6:03:5f:14:7c:86:
b1:76:eb:83:b3:95:fc:26:e8:28:97:ba:71:14:68:
76:61:a2:79:5a:19:9c:87:a6:26:24:d9:5d:3d:0d:
7f:63:9b:81:4c:8b:cc:ed:23:c3:f4:65:13:df:96:
06:80:f3:01:8b:36:ed:bf:35:1d:f7:e1:ef:1e:5f:
ab:ee:1f:5e:19:c0:3d:36:bf:26:ac:3a:5a:14:00:
f7:3c:d1:63:84:30:ae:71:28:ec:e0:d2:56:5c:f6:
0f:5a:05:b7:e3:cf:b3:cc:a4:4d:4c:1c:65:8d:f1:
ff:a1:b6:cc:a0:d5:5c:ed:d3:47:c1:76:c0:2d:05:
be:14:12:09:2f:b9:b0:ee:9f:f5:5d:7b:1d:0a:ad:
cc:f5:d2:9e:22:e8:b0:6f:f1:94:2a:39:66:b4:98:
02:9f:77:e6:ee:97:01:67:b4:4b:3e:54:b5:29:6b:
89:58:eb:3f:ce:ed:0c:d7:8c:12:9b:3a:c7:9a:11:
e9:1d:a0:79:be:e5:5d:2e:99:70:83:cc:31:d7:5c:
c5:89:b6:4e:de:3c:ee:33:6a:f7:eb:a3:12:4d:81:
bc:df:a0:47:e0:71:f4:21:e4:4a:48:19:01:72:9c:
43:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A8:15:D2:6B:BA:56:25:AC:C6:1A:DA:00:CC:A2:81:17:C1:51:2A
X509v3 Authority Key Identifier:
keyid:8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:0b:49:75:45:ab:32:de:8e:2c:89:2a:54:54:2e:ad:93:0a:
c0:03:8f:d7:0c:5d:a7:d2:9f:f4:d4:f1:1a:36:cd:2f:73:76:
06:b2:01:b1:17:9f:3a:c2:85:59:54:2d:1d:da:b7:e6:42:f0:
e7:1e:10:b9:95:a5:22:27:32:df:fa:c1:94:b8:26:39:15:45:
a3:59:ac:3e:0a:15:66:cf:39:e6:88:43:c6:7d:93:02:53:ee:
d0:d0:76:08:46:7b:90:24:05:16:0f:0e:86:3f:4d:d1:13:46:
0d:d4:14:a9:7b:3e:5f:2b:e5:83:20:11:20:5b:94:d8:2b:7d:
17:bd:1c:dc:00:38:e3:2f:31:7a:d6:ae:9c:0a:05:8f:7e:11:
37:68:47:a1:a9:08:b4:0b:14:63:88:78:6f:a7:c3:a4:64:30:
10:cb:0c:fa:72:b6:3d:9f:44:ad:58:2d:16:da:3a:e9:d7:67:
35:fe:e7:41:a3:c7:4c:7c:79:4b:47:af:eb:d9:52:3a:0e:a4:
52:a4:05:29:cd:49:88:c8:3b:a4:21:38:77:76:94:80:4a:4c:
75:e9:c4:69:15:8e:41:d8:9b:43:ba:4b:18:e5:f7:37:4e:a6:
45:77:4c:93:c0:93:3d:22:13:41:c2:56:9e:57:76:4a:9b:d0:
45:2e:06:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:05:09 2025 by rpki-client