Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
File: Iu8SfmGVSrmJNlydukuMBkzu2fA.mft (raw, json)
Hash identifier: PTMsJ/KoT6lDYtZcyonlMUc4Y7kwlA2qM2/X0MHW0NY=
Subject key identifier: DA:3D:7A:F7:D7:3F:B9:E9:8A:04:52:C1:AA:5F:42:44:FB:24:A0:6D
Authority key identifier: 22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0
Certificate issuer: /CN=22ef127e61954ab989365c9dba4b8c064ceed9f0
Certificate serial: 0197B7EA6DB45A4843B8FC555D2E1E673306
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
Manifest number: 040D
Signing time: Sat 28 Jun 2025 19:01:23 +0000
Manifest this update: Sat 28 Jun 2025 19:01:23 +0000
Manifest next update: Sun 29 Jun 2025 19:01:23 +0000
Files and hashes: 1: Iu8SfmGVSrmJNlydukuMBkzu2fA.crl (hash: vSWhCQJjwOKocHTOIulgwIhB6V95DTiPHiOQj8G1RaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:6d:b4:5a:48:43:b8:fc:55:5d:2e:1e:67:33:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ef127e61954ab989365c9dba4b8c064ceed9f0
Validity
Not Before: Jun 28 19:01:23 2025 GMT
Not After : Jun 29 19:01:23 2025 GMT
Subject: CN=da3d7af7d73fb9e98a0452c1aa5f4244fb24a06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d5:62:23:2d:e8:8f:85:ac:17:1d:50:d7:4d:
b1:5e:6f:da:fa:3b:9a:60:83:f8:54:da:8b:86:97:
7c:07:f5:42:7a:e7:ce:8d:37:4a:4b:63:57:01:5e:
4b:c4:6b:27:d3:73:aa:c0:23:24:7b:eb:a6:16:ca:
51:13:d4:f5:c9:80:ed:6d:0d:d9:94:cb:1c:47:0d:
7f:01:40:c5:73:47:99:35:d6:88:63:58:48:0b:d4:
e8:60:ed:38:44:6e:32:22:14:e2:50:e5:89:91:62:
ce:38:33:62:1e:b6:3c:ba:5b:41:d9:4c:30:56:71:
e0:f9:57:6e:74:5d:06:b9:c7:bc:c2:18:16:de:d8:
ba:eb:7c:1e:5a:01:f5:30:8f:5e:20:69:0c:1f:54:
a4:99:5b:38:e3:e0:06:77:ad:cf:85:59:ca:4e:86:
04:60:6c:e6:ff:a3:f0:2c:57:13:d1:8d:f6:52:8a:
6c:bd:7e:f6:d3:7a:bd:2a:a2:e2:35:9e:3c:e6:b5:
06:75:6e:a9:3b:63:0c:d3:da:85:af:dc:83:15:9b:
d4:4a:96:89:61:7b:f9:b6:47:a0:01:b9:91:41:68:
26:37:ff:72:6f:f1:12:c7:d0:bd:ff:49:5b:1f:3c:
b8:fd:91:7c:2c:7a:c1:c9:be:52:03:23:2d:7e:10:
89:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:3D:7A:F7:D7:3F:B9:E9:8A:04:52:C1:AA:5F:42:44:FB:24:A0:6D
X509v3 Authority Key Identifier:
keyid:22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:8b:0d:bb:59:f0:53:0c:96:47:75:bc:66:b5:35:fc:0d:cb:
76:1e:8b:78:41:61:b3:78:9f:41:c9:30:a7:1e:f0:42:02:d7:
d6:c2:11:bd:67:06:7a:60:22:3c:3f:ea:29:cd:be:8e:65:e1:
c5:e0:72:b4:99:98:99:75:de:dc:e4:a6:63:29:8d:37:be:5c:
c9:3d:06:03:38:86:6b:42:6b:75:fa:84:12:32:f1:2f:92:2f:
4e:d4:49:a9:76:dc:50:5e:58:d0:b9:6b:0e:3b:2b:a0:82:54:
97:49:64:99:31:08:d3:ab:1c:4d:ac:12:2b:f7:7d:5c:75:5f:
92:e2:30:80:91:03:7d:98:39:6f:d3:a9:e6:5e:d1:35:ab:27:
0f:3a:cf:d3:0e:98:48:36:ca:7f:ba:ac:40:81:1b:d5:e2:f8:
5d:ef:9a:5c:24:04:e5:3d:4a:9d:62:d3:f9:5c:ad:f5:b5:dd:
e5:5b:46:ba:5e:e2:f6:0e:5c:1e:72:9b:d6:5a:37:c6:6b:22:
0b:02:4c:05:57:fa:4b:7c:39:1a:3e:a6:99:03:76:8a:ca:11:
bc:fe:8b:2c:88:72:3d:1e:e5:0e:36:a3:e6:72:f9:78:7d:91:
62:95:57:6f:2e:65:2e:33:d3:41:36:92:0c:c1:03:b7:bb:13:
00:c7:21:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:11 2025 by rpki-client