Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: UKWvvZ8ZaIhUhphSPN7UrbcpSiJgSZvla251vanRSyo=
Subject key identifier: 15:69:FA:B4:B2:8D:D5:42:37:5C:79:E2:63:B7:E2:C2:A9:B1:52:26
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 0197B6A0A62AB0CAF429E68635094795FBE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 13:01:10 +0000
Manifest this update: Sat 28 Jun 2025 13:01:10 +0000
Manifest next update: Sun 29 Jun 2025 13:01:10 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: XgkK0QFp8Ha5OvCjJ8z/pjISby/Pg1JxPHKMjueuymU=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:a6:2a:b0:ca:f4:29:e6:86:35:09:47:95:fb:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Jun 28 13:01:10 2025 GMT
Not After : Jun 29 13:01:10 2025 GMT
Subject: CN=1569fab4b28dd542375c79e263b7e2c2a9b15226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:19:4e:a5:28:2f:fe:a8:e9:35:fd:aa:98:06:
d2:06:2b:25:36:a1:33:17:8b:84:94:76:28:d6:28:
8e:8b:11:95:2b:01:44:c0:e6:d5:40:d8:f3:04:c4:
ac:ea:33:90:98:55:ec:cd:5b:f8:db:ff:7c:58:74:
c6:88:9b:3c:f0:23:1f:44:08:cb:14:19:7c:48:b7:
38:84:da:5a:3e:ca:b5:84:1a:6f:25:5c:f0:8f:bd:
1f:58:47:d5:a7:95:8f:95:bb:64:f7:82:f1:f7:47:
26:c8:e7:22:1e:7a:f0:6a:69:57:3a:d7:e8:a4:d8:
28:1a:9a:cb:90:12:9d:aa:ac:6f:30:3d:24:32:db:
52:3a:b9:67:4c:8f:5b:03:2a:53:89:9d:20:07:a6:
cc:80:27:9e:08:ad:b6:46:5d:73:82:26:84:0a:6f:
fa:75:a5:75:4c:61:54:b7:f3:ba:71:26:5e:cd:56:
ea:6d:15:80:ee:78:80:55:43:f8:f3:98:e3:b8:65:
dc:18:77:9d:58:e7:58:46:e9:fc:1f:ed:fd:19:09:
63:76:b3:e6:8e:ba:20:c1:fa:cb:03:29:bc:8e:05:
aa:5a:c6:0a:f8:7d:f8:15:35:09:3f:76:fa:ec:55:
84:c3:7d:d9:3b:fc:8e:b8:2a:39:86:30:a4:2e:a8:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:69:FA:B4:B2:8D:D5:42:37:5C:79:E2:63:B7:E2:C2:A9:B1:52:26
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:c4:2f:7b:54:94:80:6c:bc:ab:cf:8c:1a:b4:e6:1b:50:71:
59:58:2a:50:92:dd:60:16:99:9c:28:5f:e6:2a:55:80:9a:79:
7a:58:81:c1:07:97:07:dd:0e:b6:c5:e5:c8:c0:75:e2:36:e9:
42:08:20:af:a0:51:97:cd:20:16:af:bb:0d:2b:9e:ca:da:09:
e5:a2:db:45:83:c6:f0:d8:7e:41:d5:ed:ec:59:f8:fe:9d:84:
ef:98:4c:36:fa:ee:48:41:4e:8d:e7:80:48:3c:77:3d:89:0a:
fe:d6:26:ae:f0:26:f7:85:1e:b5:9f:7a:32:63:85:6a:f8:84:
f1:24:d5:35:96:a6:f9:ed:01:7d:1b:ef:80:fe:03:e5:47:44:
90:5b:d3:eb:2d:ba:2e:b5:e4:b7:1e:40:44:c1:7e:24:ae:a5:
2f:3b:b7:a9:e1:3a:40:11:f1:b8:11:ba:c6:83:f5:60:1e:7f:
74:b4:15:ca:bc:95:dd:a5:66:9a:00:91:b9:15:50:72:1c:07:
0b:8f:3b:83:79:dc:bd:83:0d:a6:80:b5:6b:aa:82:61:56:9b:
08:f8:b2:e8:43:55:3d:a9:30:e9:91:4d:f9:f3:0f:01:96:f3:
34:4d:19:a8:45:8a:1b:fc:f1:00:c2:61:2b:f1:94:cd:f6:78:
fe:16:e5:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:48 2025 by rpki-client