Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: VuXJj52FGcVF4SS+Jxzl45eGxcQIJ9wm6AB+0VokxhI=
Subject key identifier: 7C:F8:83:7B:88:5C:B2:3A:D0:AB:B2:C9:BA:96:D6:48:AC:21:1C:AD
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 0197B88EF084DF7ED6EE6C6AE1CF85AC7686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 0D4C
Signing time: Sat 28 Jun 2025 22:01:04 +0000
Manifest this update: Sat 28 Jun 2025 22:01:04 +0000
Manifest next update: Sun 29 Jun 2025 22:01:04 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: pkTznMBCjrFdAQ8bactUO9dt3j0CfXF9u7UN1yXlAUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:f0:84:df:7e:d6:ee:6c:6a:e1:cf:85:ac:76:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Jun 28 22:01:04 2025 GMT
Not After : Jun 29 22:01:04 2025 GMT
Subject: CN=7cf8837b885cb23ad0abb2c9ba96d648ac211cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3f:4f:8a:34:fb:d8:f3:a9:9e:2e:31:cb:6e:
de:d2:8c:50:47:6b:51:ae:93:e6:3d:9e:32:b1:23:
fc:09:b7:13:f5:ed:96:a3:4b:ec:0f:93:1a:4c:6d:
2c:0c:36:f3:89:69:7e:ef:89:f6:ec:da:21:19:bb:
11:c1:d3:7f:1c:7b:ae:9f:f4:e7:4e:8a:57:85:8b:
64:38:0b:8a:14:1a:17:7e:53:db:1b:cf:4c:0f:41:
84:f9:76:0a:a6:e2:67:6f:b1:41:29:0b:27:7a:40:
ef:24:ce:01:7f:5c:27:c7:50:b5:32:bf:f4:c2:e2:
b0:7d:c5:1d:fc:d1:ef:5f:03:be:83:a7:e0:79:7f:
4d:e8:2a:66:eb:88:08:3f:b3:54:12:6b:09:13:c3:
ee:c7:84:9c:b6:bf:55:db:a7:01:54:08:10:73:3d:
5f:85:c0:6e:22:bf:e7:78:e4:92:f9:67:99:53:45:
3b:db:9c:5a:73:03:49:d3:ec:d3:41:01:75:a1:99:
fb:48:4f:09:98:13:f5:c1:d3:53:89:97:ac:40:98:
a1:3e:58:13:f8:ab:4f:88:bb:4e:24:ae:de:79:b9:
1a:32:0b:64:c2:16:ef:a3:50:75:1b:57:ba:c6:72:
f7:ea:6b:62:2b:1a:f5:0b:2f:cc:b8:f0:2f:19:e6:
cb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F8:83:7B:88:5C:B2:3A:D0:AB:B2:C9:BA:96:D6:48:AC:21:1C:AD
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:24:01:a6:6f:f0:a8:31:78:ad:b7:c8:f5:b5:4a:ef:51:fc:
54:8c:fc:65:21:17:17:64:2a:91:e5:48:9f:ad:f2:57:d6:7e:
53:2d:73:70:b7:de:95:7e:4c:8d:30:e8:fa:a7:02:61:41:47:
28:95:8d:78:16:67:fd:65:f7:78:89:4a:10:be:29:ea:f8:d5:
61:a6:cf:80:41:03:17:69:eb:dd:f5:ba:4d:bd:fc:29:5b:6b:
be:51:2d:eb:60:8d:75:d1:28:a4:db:35:66:81:f8:93:dc:97:
06:bb:5d:35:04:2a:74:2f:6a:f5:ba:10:09:02:18:36:a1:ab:
4a:b6:5d:a1:dd:18:8a:d1:31:d3:b9:d5:5e:e5:b9:bf:fa:ec:
24:7a:61:4e:23:1f:0d:d4:2a:0f:5d:da:f0:04:ce:69:b0:a4:
2a:a0:91:dc:5a:b8:88:af:7c:f8:d6:00:75:53:dc:e4:3a:51:
25:0d:3b:68:ec:d8:4b:7f:64:cf:83:d7:cc:2c:05:81:74:36:
ea:b9:19:7d:95:d0:e2:ab:ca:9b:3d:71:21:a6:63:8d:30:8b:
d0:fc:16:77:37:ab:16:5e:33:17:6d:14:9d:a4:5f:f1:f6:58:
95:ce:95:93:69:2f:2a:11:31:3d:9f:66:b5:35:82:d8:9b:9b:
d2:9a:4d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 07:59:59 2025 by rpki-client