Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
File: iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft (raw, json)
Hash identifier: HLw0x8HwHQCprrT/mwfOxAhtiUWOEaygDH0wPKd3Zbg=
Subject key identifier: BC:06:D1:F7:1C:3C:C5:C2:5C:71:6D:9C:8A:AD:9C:2C:10:30:DD:FB
Authority key identifier: 89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
Certificate issuer: /CN=897378126f55d96519553daa48e02e3282121644
Certificate serial: 01976D3DD18477920351843B49E1026405C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
Manifest number: 0DEA
Signing time: Sat 14 Jun 2025 07:00:57 +0000
Manifest this update: Sat 14 Jun 2025 07:00:57 +0000
Manifest next update: Sun 15 Jun 2025 07:00:57 +0000
Files and hashes: 1: gGw6ft1sLBQmsJ-vRfx6KJXkhbk.roa (hash: S1p9cVSO3FaBQReociITznoI/L2Cqm4kk12uycY2TsA=)
2: iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl (hash: JxKRzHu+Jts03Xh6D02ohx7RaylwSASW6tt8GT4KiyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:d1:84:77:92:03:51:84:3b:49:e1:02:64:05:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897378126f55d96519553daa48e02e3282121644
Validity
Not Before: Jun 14 07:00:57 2025 GMT
Not After : Jun 15 07:00:57 2025 GMT
Subject: CN=bc06d1f71c3cc5c25c716d9c8aad9c2c1030ddfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8a:68:43:4b:8b:f3:02:d6:9d:67:ef:f9:a9:
21:01:3e:6f:fe:8c:26:65:7b:03:c4:64:ab:db:02:
c7:2e:63:d6:f4:8d:c7:b5:c5:86:f6:e5:24:33:47:
7e:75:ce:3b:9e:60:2e:d9:d3:cb:dd:41:45:71:0b:
0f:f3:eb:a8:77:5c:c1:23:36:aa:8a:62:3d:fd:4a:
07:5f:2d:3f:bb:a3:c2:39:ce:17:8b:01:5b:f8:bb:
ff:e8:38:a0:58:58:6b:3f:94:c9:7c:e1:e6:3d:98:
02:b4:32:3e:e5:37:36:71:62:6b:41:b4:c7:ea:af:
90:6c:78:55:a3:86:8b:40:a8:95:8f:31:99:6a:93:
8d:7b:8a:e4:59:40:5b:ef:58:11:a4:be:97:39:74:
86:41:fe:88:fd:1b:e1:d4:71:fc:c8:fb:db:fc:e6:
d4:16:14:3d:8a:e9:e8:af:95:ad:ed:0d:96:3e:5e:
a8:ea:d6:1c:32:de:2a:35:f0:21:5f:9a:81:52:ce:
94:3b:e2:ed:84:75:c9:0f:24:bc:2c:a9:5a:04:a5:
67:97:77:e3:76:b7:d3:ef:07:31:12:3e:75:b9:c6:
09:1c:28:ed:91:0a:9d:42:da:ee:ad:05:c6:29:f7:
56:53:9b:ca:51:13:a4:a3:7c:58:6b:b7:14:42:a9:
3f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:06:D1:F7:1C:3C:C5:C2:5C:71:6D:9C:8A:AD:9C:2C:10:30:DD:FB
X509v3 Authority Key Identifier:
keyid:89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:51:c4:ba:b9:57:96:ca:ec:54:b2:cc:8b:c7:4f:1a:05:02:
16:8e:66:66:3c:68:2f:6b:7d:65:37:ac:27:53:5c:f3:87:76:
0f:a5:ab:a0:4f:93:e9:02:6a:b9:80:43:54:26:f5:8f:a9:ce:
5b:02:59:ad:98:9a:7a:07:60:f5:6b:0c:98:e5:ff:03:47:dd:
af:b5:87:38:46:e2:46:a5:39:5f:74:30:a7:22:96:c7:71:11:
a6:72:1b:48:83:c3:0f:87:78:35:0a:4c:dc:db:d6:9c:c8:8e:
0e:03:31:c1:c4:80:81:34:2e:92:a7:d6:8c:ef:a6:11:ee:29:
d8:3d:24:69:73:54:84:3d:7c:e5:c9:ad:ea:71:5d:10:e3:e3:
5c:2c:64:e2:63:c2:e4:53:69:cb:04:4f:15:06:da:13:a2:93:
ff:f6:1f:30:cf:61:0c:35:67:35:57:93:b3:ab:ff:7f:88:98:
89:6a:7f:24:2d:52:00:17:c5:5b:a2:a8:ab:8a:8c:9c:29:e1:
5c:6f:35:b1:8d:b4:5c:2f:ff:21:77:b2:46:d3:5d:ad:b0:cd:
db:43:b3:39:62:d9:64:11:34:7d:4b:91:c0:5a:68:6e:12:01:
f6:8e:68:fd:27:87:56:6a:5d:0a:8c:c5:8f:e4:45:54:7c:c1:
1f:1a:46:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:17:26 2025 by rpki-client