Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: 2XssbFkkSzFyY9UAW+zoPuTKCblEqhsxFRZxRoM3HSo=
Subject key identifier: 2F:22:6D:D1:39:AD:93:5E:2C:6D:BF:2C:41:37:60:ED:87:FF:2C:EA
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 0197703E8D006EA327C48FD198488AD2C1C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 0178
Signing time: Sat 14 Jun 2025 21:00:36 +0000
Manifest this update: Sat 14 Jun 2025 21:00:36 +0000
Manifest next update: Sun 15 Jun 2025 21:00:36 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: d1w0fa+fAnBDg+cpnc3dz43pVksrpTIwavnDReIVWAg=)
2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:8d:00:6e:a3:27:c4:8f:d1:98:48:8a:d2:c1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Jun 14 21:00:36 2025 GMT
Not After : Jun 15 21:00:36 2025 GMT
Subject: CN=2f226dd139ad935e2c6dbf2c413760ed87ff2cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ce:17:16:59:25:90:3a:ee:79:63:7b:c2:37:
c5:65:1e:eb:d9:a0:30:f7:c8:cd:c1:3a:e7:2d:09:
77:4f:cd:86:f5:ba:2b:94:13:ae:d9:a4:40:6a:03:
bb:9a:c3:c8:00:09:e7:5c:fc:f0:a7:08:fe:b8:e9:
22:31:3a:ac:d9:97:16:d6:49:09:84:6e:fb:33:b9:
cb:cb:66:75:a8:b7:db:d4:a3:32:4b:ca:74:7a:53:
c0:79:29:2a:18:65:7f:08:0e:48:f2:35:89:38:52:
25:9c:ba:e7:70:5f:c3:70:7f:11:43:9b:6a:82:50:
f3:f6:99:42:ab:68:1d:8e:7c:92:84:54:bd:76:8c:
fc:4f:ea:0e:7d:7e:5d:37:d6:5f:4b:d5:c7:22:b7:
cd:f8:2f:e6:9d:70:20:8e:e8:57:27:b0:69:10:a5:
fb:04:2f:35:30:a6:af:7a:1e:ba:95:c8:aa:4b:bd:
31:39:06:d1:51:93:71:76:72:f3:06:5a:9a:a2:cc:
37:1f:62:58:d1:75:7b:85:48:52:c7:4e:0c:da:6d:
0b:ab:e1:ff:f4:49:ac:fe:3a:e0:57:4d:cc:a2:14:
c8:4f:ce:cb:06:78:c1:af:14:58:05:fd:4c:91:db:
20:de:28:94:69:d0:ab:84:fe:1a:54:93:51:6b:1c:
c7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:22:6D:D1:39:AD:93:5E:2C:6D:BF:2C:41:37:60:ED:87:FF:2C:EA
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:03:19:88:b9:0b:59:21:57:a1:37:01:ad:16:0f:bb:3d:d1:
d7:9d:c6:5c:dd:b4:7f:3f:13:81:11:57:8d:c8:ac:46:5f:bc:
81:73:2c:fa:db:7c:3e:8f:16:1c:50:20:24:e7:7a:fe:73:84:
5b:e8:1c:4e:ed:c9:d6:2f:26:bb:3b:b1:30:25:6c:6e:43:c4:
43:7a:54:a7:3d:b6:4a:7c:f1:10:48:a4:93:f1:a5:28:ea:e3:
9e:45:00:a0:80:60:6e:76:41:53:cc:b7:a4:15:81:92:c8:c5:
d3:37:18:c3:d6:35:ad:d7:43:4e:54:77:d9:e5:03:ec:34:ba:
6f:b4:d6:3b:62:b5:09:10:a2:79:04:0f:ad:87:86:c6:e4:40:
29:29:93:fd:f7:d0:de:d9:a6:82:7d:98:0a:70:ad:c2:b3:e9:
05:76:bc:a3:15:59:f5:ad:f6:df:4c:87:d2:33:41:30:9c:03:
5a:c4:be:e4:b5:7a:e5:d3:bc:97:98:85:1b:57:00:f2:7f:08:
d2:fb:15:ac:13:55:f1:1c:02:45:0c:42:0f:2f:e1:f9:9e:0c:
64:d1:05:a4:a2:3c:eb:70:42:fb:33:c8:f9:0e:b4:90:99:d6:
d1:7e:18:8b:21:dd:ce:86:ba:df:c2:08:c6:58:5d:e4:c0:f1:
4e:64:9c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:47:49 2025 by rpki-client