Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: XCv1Oxmb3bELAOh6cpaQy8WdhAfQRBj+KA2iLjhmKqI=
Subject key identifier: AA:EB:55:74:65:A1:C4:9F:A9:BF:4E:0B:60:60:47:5E:49:40:CF:7A
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 01988CFEDBBE25883A093B2F09589E6A5E99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1623
Signing time: Sat 09 Aug 2025 04:02:49 +0000
Manifest this update: Sat 09 Aug 2025 04:02:49 +0000
Manifest next update: Sun 10 Aug 2025 04:02:49 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: E7Xks18j9c7IFaXig9T1gXC1/F018wzDRKdB0E4lvJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fe:db:be:25:88:3a:09:3b:2f:09:58:9e:6a:5e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Aug 9 04:02:49 2025 GMT
Not After : Aug 10 04:02:49 2025 GMT
Subject: CN=aaeb557465a1c49fa9bf4e0b6060475e4940cf7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:39:99:6b:ba:00:8d:29:b5:5e:73:36:52:ad:
de:95:da:7b:9c:5c:12:03:68:4c:ae:d5:30:de:3e:
2c:f8:80:3a:1a:56:dc:a7:98:85:69:2e:27:d0:2b:
c7:f8:17:01:05:44:5b:fc:37:e0:dd:37:52:2f:b4:
6b:24:18:ae:04:18:e3:19:8a:0a:42:b0:70:b6:ac:
9c:32:76:44:84:97:f7:d5:cd:28:8f:c4:1f:62:6e:
14:c9:56:7d:73:6c:4f:43:a9:6f:96:42:74:88:1d:
2c:6a:47:75:09:d7:59:42:78:3e:88:4d:fc:06:73:
d5:08:26:c0:71:42:37:2a:2b:97:59:a4:df:43:ed:
0b:d6:f9:77:f7:f7:74:ca:d9:e4:de:a3:32:cf:a2:
18:55:39:db:54:a9:13:3e:01:06:c4:3a:17:36:1b:
75:2f:9b:a3:e0:6b:19:4d:01:cd:9d:ed:95:48:7b:
2b:15:1f:b1:9a:5d:d7:94:9c:c6:e3:98:e3:cd:35:
a9:44:20:68:10:d1:a5:b0:8b:6d:aa:26:80:23:e6:
9b:e4:ed:b3:88:2a:1e:42:ca:69:14:da:f1:7e:ee:
06:e6:2f:30:98:e6:4a:7f:c6:8f:e2:43:59:fe:27:
59:03:58:75:c7:02:2c:8e:76:60:e6:d6:cc:39:e8:
59:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:EB:55:74:65:A1:C4:9F:A9:BF:4E:0B:60:60:47:5E:49:40:CF:7A
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:5c:86:32:0f:82:37:83:f8:85:73:f7:fb:b7:81:0a:58:5a:
f6:64:c9:e4:5d:04:db:44:09:58:78:03:e0:98:85:04:bb:7e:
4b:9d:f2:c2:54:57:d8:4b:81:42:69:1d:60:48:69:08:10:e8:
18:e9:5b:b3:48:80:3c:3e:85:6c:9a:eb:94:4b:62:84:55:a8:
37:6b:93:84:45:57:71:97:ea:b3:9f:3f:2c:f4:e7:d4:59:5f:
1d:be:41:15:6b:8e:5f:dc:60:3c:f9:de:f1:50:b5:13:89:07:
8b:cc:0e:b5:df:76:a3:46:34:97:e6:c3:45:01:b7:63:17:bb:
f3:bb:f9:ef:72:12:eb:4f:8e:6d:2d:f9:9c:f9:52:78:1a:2f:
82:72:57:24:1b:e0:69:0d:db:f0:7a:46:5f:68:f3:6d:d8:67:
64:a2:52:5a:70:0c:72:6d:69:95:4b:57:56:9a:b4:3c:d8:eb:
ec:69:82:f3:37:f9:e0:ca:3f:3b:f4:4e:78:c1:74:68:84:ee:
62:4c:27:0b:50:91:9e:e2:21:dc:26:4a:fd:72:1d:e9:0d:a3:
65:87:17:d7:8c:14:2a:00:79:41:74:e4:18:8f:39:d5:8d:6b:
0c:70:27:6d:70:88:72:02:4e:60:61:66:db:3e:9f:91:df:4d:
d0:6e:b7:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:18:54 2025 by rpki-client