Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: Bb6NLV3hyIzEyP2QqeTbn4upDxfqXoOC6QWs0BzfY/U=
Subject key identifier: 47:16:70:68:FE:9A:31:75:4A:D3:71:93:32:B3:0E:CE:60:5E:35:1E
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 0197B7B38834A15AF9083C4A86E9EB6B0A97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 12FB
Signing time: Sat 28 Jun 2025 18:01:25 +0000
Manifest this update: Sat 28 Jun 2025 18:01:25 +0000
Manifest next update: Sun 29 Jun 2025 18:01:25 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: kBVy52titgis2bkU1+oJmzCfGTMDbV2eMuYKMP/uzL4=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 18:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:88:34:a1:5a:f9:08:3c:4a:86:e9:eb:6b:0a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Jun 28 18:01:25 2025 GMT
Not After : Jun 29 18:01:25 2025 GMT
Subject: CN=47167068fe9a31754ad3719332b30ece605e351e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:07:80:b3:e6:9d:02:d4:57:62:b3:fc:c8:b5:
bb:ca:ae:f2:d5:e6:61:82:b2:8d:64:8e:f1:46:c1:
5f:53:6e:29:73:df:7e:ce:d6:1a:50:34:c6:2d:dc:
16:c1:2c:6a:ba:36:df:ba:00:6c:9e:40:58:b0:a2:
d6:78:17:9d:65:60:ff:23:e8:f7:54:16:43:5c:06:
ab:8f:01:f7:8c:96:2c:61:c3:64:c4:3a:ff:fe:3a:
9f:e1:87:ac:74:e0:17:55:d4:c4:67:c3:15:ea:8e:
47:81:fd:0a:2c:ba:9b:02:cc:a1:56:24:a1:67:ce:
9f:58:ae:77:6a:b8:6e:7e:e2:ec:10:3e:f2:67:ff:
0d:84:fd:f8:37:2a:21:0b:bd:af:95:f6:51:66:76:
85:5f:1b:52:b3:a6:e4:7f:3d:1a:db:02:cd:0e:8b:
20:da:d3:34:97:43:33:34:36:8b:3a:bc:fd:56:3a:
4e:29:44:14:13:6e:e5:7f:96:12:c9:9c:38:c2:0d:
90:c6:af:29:08:aa:51:56:b3:47:97:f9:eb:ad:58:
95:86:e3:f8:3a:a4:94:2b:c6:b3:c1:c1:31:03:ea:
70:72:36:d0:f7:f7:15:80:f1:72:54:59:aa:aa:3f:
95:18:31:ff:bf:23:60:0a:ca:ab:dd:7e:c6:58:03:
64:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:16:70:68:FE:9A:31:75:4A:D3:71:93:32:B3:0E:CE:60:5E:35:1E
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:1c:53:a0:8e:5b:5e:00:e3:7f:1c:d2:c0:f0:1d:5e:e4:7b:
ab:f1:a9:b1:e2:0e:ed:de:c7:1c:28:d5:72:a8:80:6c:4c:13:
c3:30:a2:1a:a5:c6:88:cc:01:0e:99:66:84:36:ba:45:56:a3:
6d:23:a0:ca:3e:93:cd:00:ce:96:69:de:c5:33:3e:6e:53:c4:
27:89:c0:5f:b8:3b:1a:65:fa:65:58:00:13:48:24:aa:99:83:
0a:85:36:58:3d:6d:46:a8:64:40:83:d5:36:f7:dd:14:c4:be:
55:cb:52:86:b9:32:48:da:94:5a:99:46:5e:d9:31:99:7e:05:
f1:dd:f5:e2:ef:88:39:25:04:aa:b4:07:74:2f:c8:6a:fe:c5:
f0:77:e5:7a:47:b8:86:e4:b8:9b:e0:9b:9b:82:1f:9a:69:cb:
95:50:15:e7:33:a5:7c:97:42:f1:97:0e:b0:57:e5:37:7b:c7:
00:5b:8d:08:e6:1b:95:ae:3b:94:ac:fa:77:9b:29:6e:ec:48:
54:e1:01:2e:f9:c7:63:23:ef:ba:c5:68:a9:a5:a3:f2:dd:2f:
d4:f2:15:2b:dd:6b:df:99:1c:0f:78:79:4b:d2:2d:ad:e5:4c:
af:53:d0:d8:3a:1f:ac:32:7a:e9:99:e2:c9:9b:a8:e7:50:2e:
7a:4e:cf:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:56:37 2025 by rpki-client