Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: /VY1G5F8s+1ALro+6pVBliMcvfjiI7014myV5Du/xfQ=
Subject key identifier: EC:64:57:06:A3:D1:90:1F:D4:B6:0E:D9:5A:1A:2C:CC:52:4E:5F:1A
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 0197B6A04A3659830CC1A317A36A6422E727
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 0236
Signing time: Sat 28 Jun 2025 13:00:47 +0000
Manifest this update: Sat 28 Jun 2025 13:00:47 +0000
Manifest next update: Sun 29 Jun 2025 13:00:47 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: J7EyHexJYe1PDJNQ9GW7FMoQ27OkGkTrOxhWWtKfl4s=)
2: bfd_WpvacXpVJP__dq6vej5IyyY.roa (hash: /B+pNt8vIwVV5x8COrKPeKukz7hh0c0T1g3kvtIg6Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:4a:36:59:83:0c:c1:a3:17:a3:6a:64:22:e7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: Jun 28 13:00:47 2025 GMT
Not After : Jun 29 13:00:47 2025 GMT
Subject: CN=ec645706a3d1901fd4b60ed95a1a2ccc524e5f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:cd:20:ad:f0:01:57:3b:6b:d3:1c:9a:e8:20:
41:1c:74:a2:48:c2:a7:bc:80:54:76:38:b9:8d:30:
88:49:b6:35:26:bd:d9:4c:46:81:06:2d:ea:d0:56:
4d:85:69:3e:8b:1b:9e:e9:56:ea:ab:ec:fb:30:22:
4f:e6:e4:90:ef:b7:89:a5:87:a3:37:a3:a0:cd:11:
cb:c9:c1:ab:4d:34:33:fb:10:0b:6e:cd:de:91:c1:
34:d9:54:9c:f6:39:9c:d6:38:44:19:2a:b2:2a:0d:
3b:28:a3:a9:3a:06:b6:e3:a8:a4:3e:6b:13:7d:ca:
19:52:f4:73:c1:19:db:72:33:b1:80:0f:5b:9f:f8:
7b:cc:bb:bf:0e:2a:3f:e4:dc:55:bd:c7:40:86:dd:
01:45:d9:ae:ba:73:d4:3a:92:9c:57:4f:fd:8c:04:
82:75:9e:9d:ce:4d:d7:7d:01:38:b7:52:44:f7:fb:
5d:d1:70:13:43:f8:6d:10:56:b2:bd:ed:78:1a:4f:
21:77:c6:cd:60:6b:20:25:5d:f0:27:db:2b:b4:f7:
22:e9:eb:07:89:5d:af:92:d9:cf:e8:20:b1:94:66:
65:a4:aa:c8:08:55:8f:ec:d3:18:3f:01:8e:6e:00:
e5:62:c4:e7:85:b0:ed:67:40:fe:2e:45:94:30:4c:
f3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:64:57:06:A3:D1:90:1F:D4:B6:0E:D9:5A:1A:2C:CC:52:4E:5F:1A
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:7b:bc:35:44:38:22:73:10:0e:e1:a9:07:da:6e:1f:f1:bc:
1c:5a:43:e7:ed:25:2a:1f:61:cc:24:70:04:ab:ae:63:07:36:
3f:cc:d1:b6:d5:fa:15:f8:6e:04:47:d4:c7:19:ad:17:ae:6c:
14:b2:c1:ff:e8:17:03:9f:de:a7:6d:cd:5b:09:0f:0a:46:71:
57:b9:bd:ec:a7:8e:53:2a:31:fa:eb:68:7e:9a:dd:09:a8:93:
fe:12:47:7f:9c:15:ac:fe:dd:db:55:83:df:ec:0e:17:84:b1:
52:e8:df:85:2d:35:bf:26:8d:7f:07:b6:cd:a7:3e:0a:9b:c0:
65:58:2f:99:85:a5:e8:82:02:06:21:ec:94:bd:20:a8:be:07:
4b:be:63:05:92:10:4f:df:0e:ea:04:d7:16:40:91:a9:bc:b2:
0a:80:48:f3:e8:c4:0a:65:05:17:e7:51:ed:28:b2:49:3f:9d:
dc:a7:1e:35:c1:0e:b4:70:ef:59:23:1b:7f:f9:37:71:b0:e1:
11:66:55:31:0e:33:57:ba:51:7a:51:64:43:ba:54:b0:e0:54:
b1:54:55:3c:e4:0a:10:fb:30:0f:9c:5e:9f:cc:3e:34:d4:f7:
5b:96:c1:33:4d:75:45:ed:1c:0b:91:51:35:28:56:79:0f:3d:
27:ac:1d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:40:53 2025 by rpki-client