Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
File: iZFbtGEcVfYprTpMz-NXwECh3BI.mft (raw, json)
Hash identifier: XPcsWOkssDQgVDb43T3pLQJcNeE0p5ntq9Zndwsa/I8=
Subject key identifier: AA:4C:24:A3:02:FD:E2:90:9E:91:CD:4B:71:3D:9F:93:EF:C3:99:49
Authority key identifier: 89:91:5B:B4:61:1C:55:F6:29:AD:3A:4C:CF:E3:57:C0:40:A1:DC:12
Certificate issuer: /CN=89915bb4611c55f629ad3a4ccfe357c040a1dc12
Certificate serial: 01976C992214741B72CE0E8370AAC33DDACC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZFbtGEcVfYprTpMz-NXwECh3BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
Manifest number: 055A
Signing time: Sat 14 Jun 2025 04:01:04 +0000
Manifest this update: Sat 14 Jun 2025 04:01:04 +0000
Manifest next update: Sun 15 Jun 2025 04:01:04 +0000
Files and hashes: 1: iZFbtGEcVfYprTpMz-NXwECh3BI.crl (hash: FQmoOsJaLWDjz6bgJxomz9gAutUQj6C3gMygt2mdPZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZFbtGEcVfYprTpMz-NXwECh3BI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:22:14:74:1b:72:ce:0e:83:70:aa:c3:3d:da:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89915bb4611c55f629ad3a4ccfe357c040a1dc12
Validity
Not Before: Jun 14 04:01:04 2025 GMT
Not After : Jun 15 04:01:04 2025 GMT
Subject: CN=aa4c24a302fde2909e91cd4b713d9f93efc39949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:6e:b2:00:e6:8d:d6:a0:a4:85:91:df:f7:
fe:12:22:97:7c:3b:ca:1c:59:98:1b:d8:03:6b:73:
5d:39:11:22:a6:19:b4:bb:66:7f:9d:d5:b3:e9:85:
8f:e4:e4:39:0b:44:b4:d4:4b:63:6b:ef:30:ef:03:
d4:f7:5c:28:19:e4:70:fb:5f:c5:e8:c6:e1:70:4c:
4a:ed:9b:b6:90:50:96:b8:65:36:75:32:1b:b8:7e:
7e:1c:ae:02:56:b4:ce:23:e2:74:47:a0:bb:5c:a4:
54:41:ee:4f:f0:bc:50:e2:a9:5e:fa:fe:db:34:a9:
a8:81:d0:58:8c:bc:54:bc:e1:a8:ff:ad:8f:d6:da:
87:88:64:c0:9d:af:c3:2f:d4:63:31:24:fa:cd:f4:
e4:b5:28:e3:a5:79:db:a2:78:e1:01:92:47:8b:24:
8a:5c:46:c7:2a:0a:2d:d3:6c:32:8e:5d:9a:49:5f:
23:05:22:40:15:b8:99:70:32:7a:cf:9d:01:2b:e6:
e6:f0:75:6b:47:6c:bb:3b:68:63:55:6f:93:b5:35:
95:a5:6c:73:0e:4f:0d:14:7f:c0:81:6c:3b:6a:6f:
0f:78:3a:01:93:ff:fe:2d:c2:09:d5:ef:00:81:95:
3f:31:12:29:8c:f7:52:cd:c9:0b:f7:be:e2:e9:bf:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4C:24:A3:02:FD:E2:90:9E:91:CD:4B:71:3D:9F:93:EF:C3:99:49
X509v3 Authority Key Identifier:
keyid:89:91:5B:B4:61:1C:55:F6:29:AD:3A:4C:CF:E3:57:C0:40:A1:DC:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZFbtGEcVfYprTpMz-NXwECh3BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/74ac9d-2a53-4ae5-ba72-62afcb9972d7/1/iZFbtGEcVfYprTpMz-NXwECh3BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:f7:f5:bf:d9:14:b4:de:9d:76:09:c0:b5:39:28:75:86:da:
0c:de:f5:42:cd:85:9a:6f:a0:0e:f1:d9:7d:7c:1f:01:1a:d1:
e5:cd:d6:82:f7:3e:6e:e3:55:92:2d:aa:31:20:76:1a:84:06:
b6:ab:6d:86:20:84:3f:3d:d7:ec:15:87:fd:4b:da:1e:6c:f9:
f2:b2:07:6a:31:22:28:01:05:fd:c3:47:32:30:4a:fa:eb:68:
68:b6:7f:02:1e:35:00:d7:c6:f8:76:01:df:bb:63:7e:f1:cc:
6a:76:b6:3a:56:7f:74:4f:ce:20:b4:16:59:fb:ee:45:27:af:
8e:b8:4f:11:0f:0c:8e:58:e3:a8:76:82:97:e5:46:7b:9b:8d:
72:fa:58:28:5b:f7:8c:3b:b9:16:4a:e7:2c:0e:0b:ae:e0:23:
bd:48:4f:be:ed:e2:75:b3:1a:6d:02:71:61:9c:90:16:5d:e0:
97:b5:fc:f9:fc:96:4f:60:f4:24:8c:5a:be:45:f0:30:9c:81:
3b:53:62:5d:b0:3d:cc:14:8f:95:a5:ff:6e:09:31:ad:38:a6:
ca:d8:dc:c9:73:a1:4c:0d:7f:a0:6d:e3:ff:a4:31:b8:44:4a:
e3:05:5c:99:78:e1:ee:60:d2:17:47:5b:1b:ec:02:78:9d:10:
46:b8:b5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:08:24 2025 by rpki-client