Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: JXnn9E8HLnyrzxa70CO5yhQXm74mGcHBOSUtvzWyRvY=
Subject key identifier: AA:48:FF:F4:43:54:87:FC:CA:18:E5:60:84:A1:87:54:C2:35:AD:11
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 0197711B19F0CFBD8C407FD412DC668272E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1590
Signing time: Sun 15 Jun 2025 01:01:30 +0000
Manifest this update: Sun 15 Jun 2025 01:01:30 +0000
Manifest next update: Mon 16 Jun 2025 01:01:30 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: D2zb5v2uhWa1rKhjBtHdghD2YwH5Aas9mgS0iSmG64k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1b:19:f0:cf:bd:8c:40:7f:d4:12:dc:66:82:72:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Jun 15 01:01:30 2025 GMT
Not After : Jun 16 01:01:30 2025 GMT
Subject: CN=aa48fff4435487fcca18e56084a18754c235ad11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b5:6e:f6:62:e8:33:2e:b0:bd:ca:8d:ad:b3:
dc:5b:ed:d3:ff:bc:e4:e8:d3:5d:7f:0b:cb:cd:59:
41:70:96:ee:34:d6:4a:ca:8c:94:52:c6:56:0f:2e:
18:91:97:81:89:14:f1:66:c9:3d:a4:04:a9:92:f1:
1f:a8:e1:c0:79:6a:bb:0f:a5:26:36:ff:c0:c3:16:
77:16:7a:22:81:a4:9d:5b:70:1d:46:af:19:a6:7b:
90:1a:68:8a:d9:47:06:b1:b9:da:6f:e0:b2:29:ba:
86:10:bf:29:87:91:3f:6e:36:29:95:34:7f:98:92:
4e:3d:64:4b:86:51:5a:fb:c4:d1:55:05:af:e1:68:
77:fe:00:07:40:8b:9f:56:c8:f9:17:f0:c9:d2:6d:
e3:9f:e3:a2:dc:42:c9:22:53:c0:9f:ea:12:c1:dd:
bf:f3:69:5e:db:f7:66:cd:6c:44:8c:04:c5:53:73:
ec:18:c5:44:a1:46:43:12:19:46:1a:f5:e0:25:7f:
a5:be:da:ab:83:0f:9b:a5:38:0c:3b:c1:a9:e9:8a:
b7:ec:c9:aa:bf:1f:a4:9a:22:34:e3:77:ac:e7:96:
35:c2:3a:06:25:9b:06:d2:a9:11:20:40:20:68:b3:
e7:ab:0a:2d:f2:85:fd:d5:54:b3:ae:09:78:d6:45:
b4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:48:FF:F4:43:54:87:FC:CA:18:E5:60:84:A1:87:54:C2:35:AD:11
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:a5:88:ce:47:a8:e9:9f:d0:21:c1:8e:a7:71:a6:be:91:08:
d4:bd:93:58:c1:b3:86:92:55:0b:d0:08:8c:bc:7f:50:10:fb:
09:82:66:50:d5:39:eb:09:a9:39:59:ff:09:66:b4:04:ae:f9:
6a:53:e1:a0:03:d7:31:50:07:d2:be:21:f5:76:c2:be:8e:9a:
71:0f:27:60:33:64:e8:d9:be:10:7e:4c:b6:57:d9:31:2d:fc:
a3:e6:e2:30:8d:28:3d:d3:ca:ed:22:ba:d3:a4:fc:7c:c1:a5:
b7:5d:4d:2d:15:2e:b9:4c:59:26:22:33:5a:65:fd:37:57:3c:
b2:ae:4c:d3:d8:bf:ff:9d:7f:bd:be:d4:1d:49:66:1a:ae:05:
03:63:30:ed:40:eb:4d:f4:8a:72:54:e0:4f:b3:e7:eb:5e:c4:
2b:7d:cc:98:4a:0b:0e:fc:f1:74:25:1c:18:7a:a1:43:24:4f:
d5:6e:ed:4d:cf:3f:94:bc:f8:30:d5:c9:29:76:f6:09:b1:a5:
9d:37:16:05:2f:12:39:0a:e4:df:37:ef:2c:5f:53:9e:a1:30:
10:94:9f:cd:a8:48:46:45:33:46:e0:b8:74:30:d6:27:52:40:
a2:d4:f2:30:d8:df:da:d7:69:d1:9a:14:74:56:cc:cc:28:55:
7d:f2:ec:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:57:25 2025 by rpki-client