Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
File: IMz236cJVzqCG2PEy2lWBf0maAs.mft (raw, json)
Hash identifier: V0SxFQHt09PkLWhjR3ydLug9cWGzUeKCG2nYPSlVOo0=
Subject key identifier: F5:21:63:CF:52:59:A4:C8:46:0E:95:AD:8E:36:58:E9:08:5E:F8:AE
Authority key identifier: 20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
Certificate issuer: /CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Certificate serial: 0197B6A055DD69B78B85D49E3F29096C0858
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
Manifest number: 02BB
Signing time: Sat 28 Jun 2025 13:00:50 +0000
Manifest this update: Sat 28 Jun 2025 13:00:50 +0000
Manifest next update: Sun 29 Jun 2025 13:00:50 +0000
Files and hashes: 1: HO9laPPsdq6sfNd_PR3udt1kywk.roa (hash: ySqE/9cHXiOyjfUHGzF3+AzH1p8/SUImSsDU40s2CbI=)
2: IMz236cJVzqCG2PEy2lWBf0maAs.crl (hash: 5NaMhkC2z5s8ZZOep7avhCb8zyx14di4+RwXV+Ax6uI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:55:dd:69:b7:8b:85:d4:9e:3f:29:09:6c:08:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Validity
Not Before: Jun 28 13:00:50 2025 GMT
Not After : Jun 29 13:00:50 2025 GMT
Subject: CN=f52163cf5259a4c8460e95ad8e3658e9085ef8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a8:6a:dc:7a:d6:9e:77:0b:e3:af:ea:fe:54:
37:13:34:81:09:ff:7f:5e:81:2d:97:50:52:cf:2a:
09:af:8a:d2:ba:68:85:c3:95:8d:91:6c:c5:28:40:
4e:c2:c5:36:fa:e2:f8:6f:47:7d:77:e1:b4:95:11:
cc:49:bb:20:44:66:41:66:85:82:f9:1b:c2:3a:6e:
e9:6b:d3:f7:36:12:a2:9f:01:19:4b:b3:f8:d0:64:
36:ab:43:3d:12:01:0e:2a:79:08:0a:75:14:bd:8a:
f5:12:69:ae:35:2f:02:cf:ce:9b:ea:4c:83:09:70:
79:78:ae:8f:8d:cc:dc:ac:a9:bb:f2:c9:3c:45:d7:
ba:85:2f:87:3d:2a:64:85:d4:47:dd:17:13:85:76:
e7:df:ad:4a:79:7c:eb:7e:2e:e0:89:7e:a1:89:be:
19:e9:af:0f:c0:c5:8c:27:c0:cc:91:1d:fd:a3:11:
39:4c:6a:52:65:bd:0b:f4:d7:f9:41:44:f9:fa:59:
0b:a9:d5:43:68:08:e8:4d:3f:52:89:fc:ed:8b:10:
25:ff:a0:5a:d0:de:5e:5c:c8:b7:e6:76:c9:fc:3e:
cd:e7:dd:99:7d:46:7d:4c:ef:bc:25:a0:c9:09:16:
de:3c:5e:06:70:53:ba:fa:25:76:48:d3:2e:67:b1:
4a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:21:63:CF:52:59:A4:C8:46:0E:95:AD:8E:36:58:E9:08:5E:F8:AE
X509v3 Authority Key Identifier:
keyid:20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:a6:46:ba:50:c3:c1:77:87:06:4a:97:2f:93:67:a5:51:8e:
ee:0b:b4:68:a0:5c:91:65:37:76:f5:41:27:e8:e2:9a:1d:24:
79:92:4a:96:29:53:9f:fa:b8:c7:57:f8:42:d2:44:75:30:3d:
d3:cf:46:95:f2:ee:4b:bd:17:c3:0c:4a:78:c8:58:ce:42:e4:
41:9b:9f:43:c4:4c:31:b8:9c:95:65:db:d1:1f:2d:69:a8:06:
b9:c7:17:81:e9:67:a8:83:af:bd:72:2c:0e:65:96:c2:cb:34:
cc:25:a1:a3:ba:da:eb:0c:0e:d2:d7:af:98:fa:ef:55:57:32:
85:aa:86:53:e5:3c:0e:b1:1c:1c:4f:ed:14:90:46:03:9d:a9:
61:0a:83:a9:f5:4f:13:c7:4d:00:cc:9e:13:3a:f1:7d:f2:6e:
70:eb:78:de:9f:0b:45:23:40:35:ae:ab:63:2e:f3:c1:bb:5f:
f4:07:c9:03:89:d3:b2:6d:8b:1b:00:ed:ac:56:6f:52:ad:1e:
82:4c:6f:38:ce:43:26:d9:1b:d4:ef:be:ff:83:a7:06:a0:31:
48:80:c6:4f:a6:ea:a3:40:1a:24:98:cd:fd:d9:b4:81:54:b2:
e0:3d:29:13:b3:05:7f:61:4b:52:1f:76:fc:c8:19:ee:6c:c1:
4d:03:98:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:21 2025 by rpki-client