Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json)
Hash identifier: ib2LGEeicm5lwmCVVW3bxJgK8uqNW6wybq01sr2XvXc=
Subject key identifier: 61:B9:56:88:D6:20:D2:C3:6B:42:D4:EF:81:56:2B:9B:A7:EB:37:1B
Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918
Certificate serial: 01976997C9C7708F090167E4B42F3F1B83CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 14:00:44 +0000
Manifest this update: Fri 13 Jun 2025 14:00:44 +0000
Manifest next update: Sat 14 Jun 2025 14:00:44 +0000
Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: XBdkyk7dvAM6/mwJCc8MjepCMAo7CETMAP2ER/bRSSY=)
2: kFp1ntirY-_nRj5W9JqqX1ydSnU.roa (hash: NWOTQpr3hkXHB9fkn9UXRHKGkCwc9Gafyc4Z5IuHimc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:c9:c7:70:8f:09:01:67:e4:b4:2f:3f:1b:83:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918
Validity
Not Before: Jun 13 14:00:44 2025 GMT
Not After : Jun 14 14:00:44 2025 GMT
Subject: CN=61b95688d620d2c36b42d4ef81562b9ba7eb371b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:87:f9:be:09:89:3e:23:52:dd:8c:bb:33:1d:
2e:86:b7:23:12:b2:00:15:00:57:f3:52:4f:2a:8a:
ca:20:02:ec:9a:28:4a:9a:d6:92:e8:7e:1e:a4:cd:
a6:2a:1d:20:a3:52:1d:ac:f3:6b:97:82:e4:9c:1a:
25:02:84:dc:e1:e8:ca:19:3b:31:2b:48:97:de:7f:
88:07:ad:fe:33:36:90:98:1b:85:b2:8a:3f:b0:c4:
3c:a0:b3:6e:fc:11:a5:79:49:3f:86:9e:a8:36:11:
b9:d8:ec:0c:f4:c8:27:fa:c5:d0:92:dd:c7:ad:2f:
92:e1:fd:a1:90:7f:a6:b5:46:88:43:89:7b:3d:f2:
5b:97:15:9c:33:9c:69:d5:1a:39:aa:fc:f5:53:3c:
cd:a1:18:8d:5b:ef:09:66:60:a4:27:88:b6:40:5c:
11:c8:af:e7:6c:a7:f4:f0:95:7f:c7:82:ca:10:68:
75:62:90:de:fa:3f:2f:e1:ff:7f:38:27:7e:4f:72:
a6:fb:4a:72:82:21:30:9f:ae:25:27:fa:d0:d2:ea:
83:65:15:c3:65:30:3d:bd:92:22:e5:52:3c:28:e4:
59:8f:b0:47:d4:75:43:0c:1d:6b:75:c2:88:e1:e2:
d5:eb:d9:5f:09:6e:12:fa:eb:6f:05:69:da:cf:78:
85:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B9:56:88:D6:20:D2:C3:6B:42:D4:EF:81:56:2B:9B:A7:EB:37:1B
X509v3 Authority Key Identifier:
keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:73:79:22:a2:cd:94:c0:9e:4f:70:48:8b:c0:05:15:03:bc:
08:af:21:83:58:71:e7:51:c3:02:c1:03:48:e9:ff:20:1a:87:
f2:39:d1:80:b8:e4:c6:ac:22:df:87:b1:13:54:2e:ac:78:70:
a3:13:6a:f0:12:91:69:16:c6:01:f3:50:97:be:4d:ec:4d:11:
28:30:96:61:26:2d:1b:6e:39:2f:99:05:7f:41:fe:af:51:e1:
b0:be:20:7f:b4:12:ce:74:d4:6b:d1:1e:05:60:46:e6:49:e7:
5a:77:5f:e5:ff:b8:b2:d5:ff:8d:30:50:90:39:88:4f:6b:ee:
91:1b:17:20:68:a0:2f:76:32:5f:b0:1b:c5:aa:bd:1c:c0:cb:
d8:6e:93:d5:ef:38:87:3e:87:a1:59:44:bb:5c:71:a5:df:10:
15:bf:7a:01:d4:e5:6c:98:df:33:62:0a:e5:27:a0:6e:bb:0e:
5e:16:a7:5b:05:e5:64:07:ff:69:4d:be:83:0b:99:72:5e:a4:
8b:2a:cf:7a:74:1e:e3:3c:cd:97:7b:30:39:51:d4:ef:3d:a6:
d6:8f:d3:d5:c0:a5:46:da:59:dd:a6:f4:36:5c:00:ed:a6:45:
ad:7a:bc:25:4e:9d:38:88:48:ec:7b:ad:c0:1d:eb:44:90:40:
6d:ca:b0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:17:17 2025 by rpki-client