Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: bPqCWHLHWOlksZ+aLjLE+Aupo3lAveMLqIyE7tcQwgg=
Subject key identifier: 0C:6C:86:47:A9:30:BB:B5:17:87:81:B4:12:CB:91:33:8B:77:8C:FA
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 01976A05F413923CDC70604E09934E6BC11C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0CD6
Signing time: Fri 13 Jun 2025 16:01:04 +0000
Manifest this update: Fri 13 Jun 2025 16:01:04 +0000
Manifest next update: Sat 14 Jun 2025 16:01:04 +0000
Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: siVhh9MHdUmXdOv7sQ1+70llYJlYqaAqtG3cD4MRsow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:f4:13:92:3c:dc:70:60:4e:09:93:4e:6b:c1:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Jun 13 16:01:04 2025 GMT
Not After : Jun 14 16:01:04 2025 GMT
Subject: CN=0c6c8647a930bbb5178781b412cb91338b778cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a1:fe:9c:53:77:52:f4:70:a2:5b:c9:aa:8c:
49:28:58:29:25:ef:f1:78:31:47:50:3a:60:85:8b:
36:86:ae:1d:54:9b:be:b2:d0:8e:7b:e4:61:8c:47:
74:85:9c:49:78:62:ff:9f:5f:e8:22:bb:15:c7:96:
9c:b1:0e:26:09:ba:d2:83:cb:bc:5f:54:0c:49:fc:
89:55:43:1e:24:fd:2c:c4:ba:86:0a:57:0d:80:c5:
17:6d:cf:a7:59:24:a0:7b:c7:b9:44:ae:0a:3d:ec:
77:4f:e5:60:bb:4f:51:8d:1c:c3:0e:99:3f:c5:0a:
67:f6:35:20:a3:db:71:3a:a2:19:5b:1c:85:8e:bd:
73:a2:78:53:47:11:19:84:eb:43:04:41:e6:b7:b9:
c6:a7:0e:c1:f0:68:3e:5f:ae:2e:06:47:46:d2:18:
ff:bf:a1:2e:45:c1:e8:d6:6c:be:3f:0c:75:2e:92:
e0:aa:e7:1a:42:df:65:be:46:bd:de:89:86:e4:5c:
18:ab:b0:61:54:3a:6d:88:bb:64:cd:ba:48:60:34:
33:6f:92:43:04:df:5b:3c:da:b5:2f:39:3f:33:92:
40:6f:92:22:cc:60:1c:01:aa:06:fe:af:33:e2:cd:
a6:ad:a8:7b:a7:08:8c:52:dd:7c:7f:53:31:3c:aa:
34:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6C:86:47:A9:30:BB:B5:17:87:81:B4:12:CB:91:33:8B:77:8C:FA
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:7e:65:b7:4a:23:ef:f5:cf:93:c0:51:89:af:94:9c:46:6b:
dc:70:84:f2:ce:4e:e5:b4:df:d0:df:41:ec:51:b5:01:12:33:
2c:71:e6:94:e0:5c:7c:6d:26:e2:3c:0a:d5:52:64:58:73:75:
8b:1c:b0:fb:cf:57:2b:28:86:97:70:90:88:fb:b5:e9:5f:4a:
7a:a9:7c:66:50:a0:32:48:52:71:4b:f1:e2:76:ac:12:ba:de:
fc:b7:fa:87:f4:c9:54:4b:27:52:6f:b9:6d:cb:ff:2b:79:63:
d0:9f:50:2c:b8:bf:07:78:56:dc:c1:5c:c3:69:08:47:d9:1c:
23:44:4b:58:89:0d:bf:86:92:5b:3a:00:5e:5a:0f:16:31:10:
06:18:df:d6:a4:01:e1:67:b2:85:32:2f:57:1c:6b:74:ea:48:
79:25:64:39:3e:69:1f:01:a9:62:b6:ea:f4:5a:e1:8e:07:28:
55:a5:b4:f4:4e:f0:a4:91:43:02:3b:43:3a:42:21:be:df:cd:
c4:15:a8:cf:47:49:7e:0e:7c:0e:c2:b5:98:52:6d:e2:14:df:
95:fc:4c:09:2a:92:01:ee:4e:57:eb:61:16:6d:72:16:ab:af:
d0:01:b6:d8:02:1c:43:ee:f6:eb:fe:e9:6a:34:c1:a3:35:ae:
02:3c:54:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:40:20 2025 by rpki-client