Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: HdNPj5PRNgrghIJ6jagWIBce+4z8SNn1q6Nfhf+W85c=
Subject key identifier: 7E:9A:36:47:32:C1:C5:2A:C8:E7:86:A1:75:92:FE:A9:05:B5:D4:FC
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 019788B45917E91B34E3F6154A870AEB496F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0899
Signing time: Thu 19 Jun 2025 15:00:10 +0000
Manifest this update: Thu 19 Jun 2025 15:00:10 +0000
Manifest next update: Fri 20 Jun 2025 15:00:10 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: LngHjloM5jJw4pGCjmRBEBTS7oVhi6fwwQ3hIv4d0C8=)
2: 4Eso2GRh3TFlocCc5lcI1-kD4Pk.roa (hash: ZZWcQEmA2vmSeltVrHKBZfPJ+X7E/tLB/wKbTZ0f8BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:88:b4:59:17:e9:1b:34:e3:f6:15:4a:87:0a:eb:49:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Jun 19 15:00:10 2025 GMT
Not After : Jun 20 15:00:10 2025 GMT
Subject: CN=7e9a364732c1c52ac8e786a17592fea905b5d4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:45:c6:29:cc:de:6a:34:66:7c:74:7b:0c:39:
a2:45:ec:d1:0c:6c:b4:fd:21:5c:7f:41:ce:bf:2e:
d5:a6:ba:3a:e9:a4:4f:be:70:ec:69:bb:38:ac:4c:
87:2a:77:6a:52:db:65:85:9c:80:1b:12:0a:78:57:
44:8e:f9:db:2b:fa:ce:4e:fd:52:96:3a:dc:18:5f:
7f:9b:7f:ba:d6:fb:52:84:2e:b3:d5:b9:8c:d1:e0:
7e:75:4e:97:82:c9:7e:d0:85:2e:c4:3b:d6:5c:50:
c5:61:84:9c:ee:3f:70:ef:89:ed:38:74:dc:9f:21:
d3:3c:10:84:9d:03:66:54:ff:92:e0:0d:43:6e:aa:
03:56:63:a6:89:17:c7:ad:1c:78:aa:2e:d4:69:45:
1d:0a:83:5c:41:d9:59:8a:09:eb:9f:a0:8d:ab:6d:
34:0a:49:eb:49:5f:15:33:f1:f7:4b:3b:c9:f9:64:
a9:f3:92:6c:c3:cc:3f:5d:ce:b4:5c:94:bc:d2:8a:
3d:65:d4:30:e7:09:59:79:8b:fd:b7:62:ed:62:ac:
74:32:0d:20:7c:43:fc:76:5a:cc:52:cc:a7:af:4e:
92:97:6f:07:f8:c2:90:cf:bc:01:2e:17:d6:97:ab:
96:c7:82:59:67:59:d9:3f:0f:79:7d:47:ca:ac:95:
d3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9A:36:47:32:C1:C5:2A:C8:E7:86:A1:75:92:FE:A9:05:B5:D4:FC
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:72:13:54:be:82:68:56:6e:c0:66:0e:09:ab:a6:0f:6b:a4:
61:9c:9b:3e:22:ed:c2:62:bb:03:d1:cd:3b:81:b1:f3:9c:8e:
24:59:15:ce:14:e6:c4:b4:3a:02:77:2d:2d:68:6f:d5:cf:0d:
d2:b7:98:89:d3:66:da:98:a7:4d:5e:cd:7a:d2:00:96:07:ac:
51:b9:6b:42:f2:f2:92:02:87:14:18:ef:c7:a8:2c:b8:35:08:
f2:53:d4:4d:0e:a8:2d:cb:e5:d7:ca:56:4c:fd:25:64:90:7d:
9e:aa:26:cc:3a:55:88:54:17:87:48:9a:e7:88:ba:20:49:7e:
c0:d3:56:00:07:ca:ff:a5:07:72:9d:d4:dc:b9:65:de:35:77:
01:3a:7b:3d:96:16:20:5f:c8:8b:b8:42:8e:9e:21:72:f0:f4:
20:b3:31:9e:30:0b:c2:f1:95:b5:83:cc:d6:b2:25:a4:b1:3e:
81:29:7d:a2:56:ee:72:17:19:85:6d:07:57:fd:2d:ac:69:71:
d8:e9:3a:bf:8f:a6:73:bf:06:e9:c7:64:ff:23:5b:c7:0b:58:
ac:21:26:8b:cc:6a:82:a9:df:fd:2d:44:55:52:5e:b4:3a:4c:
ff:47:10:a3:35:60:f0:e0:87:37:8f:4b:c3:f9:3a:97:76:5e:
74:20:0b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 00:21:24 2025 by rpki-client