Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: Uzjs9geY0Zd5Hpo6A9EpeZFyQO/dY2y2xj6l9n9RXmE=
Subject key identifier: 58:4F:5B:80:C0:1F:D4:2F:8B:B2:39:AE:2B:06:76:EB:48:22:0A:DC
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 019778D3EF0E17EA112B5E2EAE4EC621A953
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 0D2B
Signing time: Mon 16 Jun 2025 13:00:44 +0000
Manifest this update: Mon 16 Jun 2025 13:00:44 +0000
Manifest next update: Tue 17 Jun 2025 13:00:44 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: RqO/KrraiLw4zdIPRclaQKAxP4OmKQsxyvl6Y6mKfIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:d3:ef:0e:17:ea:11:2b:5e:2e:ae:4e:c6:21:a9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Jun 16 13:00:44 2025 GMT
Not After : Jun 17 13:00:44 2025 GMT
Subject: CN=584f5b80c01fd42f8bb239ae2b0676eb48220adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:7c:bb:48:61:28:4e:73:2a:94:43:7b:9d:
e6:2f:e0:47:ea:87:57:66:0a:26:80:35:59:c0:4c:
6a:d9:89:c6:e2:4c:04:bc:84:16:fd:66:3f:b2:b4:
44:12:fe:0a:78:94:fb:8c:9d:4e:9e:94:2a:e3:fb:
e1:4c:88:da:d1:f0:da:e5:ac:a3:5e:b8:f8:d7:90:
d4:5d:41:b5:ce:e8:04:1f:28:18:75:aa:1e:3a:6d:
89:17:63:ef:0d:f9:67:3d:62:97:d6:e0:78:85:b3:
93:a1:0d:f7:23:99:1f:c6:3e:13:15:62:70:6e:d5:
4c:33:2a:20:71:56:33:9c:84:d8:f5:1e:7b:77:90:
84:8a:b0:bd:73:e1:f3:4d:a1:0c:96:0b:7e:e7:8b:
de:c3:80:52:d7:0b:45:ea:a3:92:0a:e4:61:85:a7:
53:3e:8d:c9:82:fc:4d:51:56:ec:01:b9:04:0d:7f:
c0:22:39:ab:5d:43:1e:f0:c3:d7:f6:8f:90:1b:73:
84:67:93:79:8a:60:e8:0b:51:fb:12:00:a1:a8:35:
9c:3c:a3:a5:18:01:93:fe:ef:b0:71:54:9d:0b:3f:
66:50:a0:b8:64:c9:f6:4b:1e:86:2b:d4:99:f6:13:
63:06:d2:99:57:bc:ba:6d:88:46:55:4d:bc:31:d3:
0c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4F:5B:80:C0:1F:D4:2F:8B:B2:39:AE:2B:06:76:EB:48:22:0A:DC
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:64:28:47:15:8f:55:66:ac:92:54:94:53:34:f9:f0:1b:14:
23:dd:d0:5d:cd:19:92:a4:4e:31:68:c6:80:91:97:5e:be:7e:
97:17:c0:e6:5a:3b:d7:55:66:bf:0d:6f:c2:84:ac:08:3c:ca:
63:94:65:a9:66:1c:a2:ff:fe:bb:61:25:09:d5:9f:d6:4e:fa:
48:b3:a6:b1:57:52:01:8f:34:94:c9:42:cf:ea:d5:72:67:b1:
85:cb:2c:31:99:ee:38:de:83:89:bf:89:ee:04:0c:67:c2:08:
66:8f:8e:70:3a:89:90:c7:05:1b:ae:18:29:a6:10:42:ea:b6:
52:9d:43:4f:f2:5b:32:06:eb:0d:ad:55:c0:8a:67:7c:96:ce:
ed:d8:18:78:dd:5d:bd:26:bd:9c:37:7e:b1:14:01:17:a6:92:
dd:1a:af:4f:7a:60:b5:23:b7:d8:3c:f8:3f:78:a5:06:25:ac:
7a:7e:8a:d6:7a:a8:6b:aa:3c:bc:89:96:e4:fd:dc:9c:d4:2f:
1d:75:a9:29:e9:0d:09:10:df:0f:10:1a:13:10:ae:a4:aa:7b:
5d:e7:0c:f6:f9:74:95:66:0e:ff:49:00:50:da:b2:4b:e0:a0:
0f:ac:72:42:29:01:20:38:a4:10:2b:ff:0f:44:6f:46:e8:ee:
fa:df:d8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:49:48 2025 by rpki-client