Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: pJ/MC/X7v3zmUvsdjBMI8Ijq02JOfCvrmFo6lGWT1AQ=
Subject key identifier: 5F:DA:0A:2F:11:EA:0C:91:0A:D0:02:D5:F1:A0:43:FB:32:70:B6:0D
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 01976F99D6D1BD03FB9E6FAE1888975A16D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 43
Signing time: Sat 14 Jun 2025 18:00:42 +0000
Manifest this update: Sat 14 Jun 2025 18:00:42 +0000
Manifest next update: Sun 15 Jun 2025 18:00:42 +0000
Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: pwCk2b0tHNo/K3y9CNUMj5+I99rFKcTgaObVy7Vpekg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:d6:d1:bd:03:fb:9e:6f:ae:18:88:97:5a:16:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Jun 14 18:00:42 2025 GMT
Not After : Jun 15 18:00:42 2025 GMT
Subject: CN=5fda0a2f11ea0c910ad002d5f1a043fb3270b60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:e8:d9:d6:7d:3c:2f:17:0a:9f:2e:e4:70:
e7:e6:0b:a4:ae:51:5d:f7:b0:fe:f2:f6:ce:de:e3:
48:a2:ca:cf:33:be:58:de:d3:68:40:53:88:4e:16:
ea:99:98:f7:b2:2a:7e:e7:20:71:95:2f:dc:d1:1f:
63:e7:ec:b4:8b:73:69:34:22:77:98:15:61:51:1d:
e5:a3:b2:e0:69:8f:bd:7e:9e:9d:12:13:ee:25:bb:
f1:ab:60:c9:1a:57:f8:70:f0:f6:14:e2:66:10:b4:
e5:a8:30:6a:e3:8c:38:3b:0b:c7:ab:c1:3d:b1:5e:
64:32:4a:a6:04:ca:ae:99:0e:51:2e:08:49:1a:66:
56:c3:45:2c:f6:dc:0b:89:ca:b9:f2:09:74:64:84:
50:03:d5:74:a1:a0:7a:6c:cd:ce:44:0d:23:cf:3a:
b0:86:1a:f0:1e:38:89:37:e7:94:01:3b:fc:00:b2:
b7:ce:40:bb:11:c7:3c:3a:eb:8d:2b:d1:1b:63:3a:
55:1f:8e:b5:ba:ab:a9:0f:20:53:5f:c6:e0:b9:19:
70:99:14:7a:16:ae:04:10:79:c3:8c:15:bd:1f:f7:
77:5e:b5:d7:9c:23:56:66:2d:2a:06:97:f0:a0:24:
8b:df:07:62:e7:bf:07:65:97:4d:f2:8e:1a:57:b9:
df:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DA:0A:2F:11:EA:0C:91:0A:D0:02:D5:F1:A0:43:FB:32:70:B6:0D
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:a4:39:47:d3:fb:b5:10:af:ee:6e:21:ff:09:ec:b7:aa:e6:
24:1c:12:cd:fa:01:60:4c:ae:62:3a:ba:c6:24:45:2a:1a:cf:
2c:0d:c9:39:5c:c4:84:6c:0a:b9:35:86:51:fa:a3:9e:2f:ee:
f0:67:70:28:92:9c:4e:25:d2:7c:25:1a:89:5f:1b:dc:15:ad:
dc:07:56:66:85:bd:a3:0c:e9:88:2e:ee:9c:df:44:d2:99:7b:
90:db:6e:3c:d6:93:18:46:4c:3b:1a:36:5f:3f:a0:d1:23:63:
77:a5:d0:c2:85:c2:3f:cd:0a:dd:47:58:2a:82:28:7e:63:54:
65:a2:1a:55:de:ec:46:0a:8e:97:2d:5c:d3:3c:33:2d:f5:b8:
e2:11:c8:cf:7f:98:7e:ed:b2:c5:6f:39:6a:a1:fd:cd:b7:ac:
80:5e:f8:0d:22:e8:53:f6:3f:96:b2:d6:0b:75:a7:31:76:52:
26:c5:4b:7f:d6:e5:4b:94:ed:4a:05:7c:90:cd:6b:7c:15:47:
cb:cc:2d:2b:92:ca:b0:1c:25:28:36:bd:be:3b:ac:88:41:83:
fd:ee:c3:c9:9a:0f:c2:7f:44:bc:4b:7f:3a:8e:03:bb:cd:9e:
d3:e5:4a:6c:6c:60:78:df:92:ee:49:56:c4:15:56:e7:af:be:
51:5a:d7:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:14:34 2025 by rpki-client