Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: HNautfbUpDtSjvejU+2QNJf5srXZ9ffdMgEJjwqFbIE=
Subject key identifier: 80:25:97:9C:E4:90:D8:D2:18:ED:38:FD:EB:F6:9B:6C:8E:76:0C:95
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 0197B89031162688098064D396E2CEFAD3AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 22:02:26 +0000
Manifest this update: Sat 28 Jun 2025 22:02:26 +0000
Manifest next update: Sun 29 Jun 2025 22:02:26 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: 8DfnZ3FzEoAr5ol/j2faPN+k4WRZ3u0of5nGYoi8PQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:31:16:26:88:09:80:64:d3:96:e2:ce:fa:d3:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Jun 28 22:02:26 2025 GMT
Not After : Jun 29 22:02:26 2025 GMT
Subject: CN=8025979ce490d8d218ed38fdebf69b6c8e760c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:10:81:c3:31:76:31:e3:70:91:0a:89:fc:e8:
a4:f5:f3:2d:14:2b:84:c4:a1:cf:9b:17:db:38:d0:
4c:4f:29:18:8a:a8:d0:de:63:d0:cd:96:cb:f7:fa:
09:78:57:8a:a0:8c:82:fa:c8:f5:96:af:47:cd:eb:
ff:5b:7f:14:49:36:ed:30:4e:bd:41:db:12:52:db:
02:75:6d:7f:34:c2:d4:ef:58:c8:92:b8:43:bf:8b:
de:27:80:1e:33:09:0c:15:04:f0:24:df:f9:c7:f1:
78:af:59:de:1d:bf:a8:49:cd:0d:ee:25:08:6f:11:
74:3e:bc:cc:6a:a5:c3:19:de:7a:c9:27:5b:87:d1:
61:78:71:08:09:8b:12:64:5f:2e:a7:08:90:dd:f5:
87:67:df:24:a5:f4:51:c0:9d:94:9b:5a:e0:c8:c7:
d1:58:a1:49:14:5f:13:86:1b:e1:1d:a5:9b:46:7a:
3b:a9:ce:03:47:b2:7c:86:e0:54:57:a3:ca:20:44:
79:8b:5e:00:00:4f:94:cd:e3:5d:62:6b:39:8c:fa:
4a:c9:f1:bd:04:63:77:a7:f0:05:ae:34:39:c2:b8:
72:ef:40:ed:c4:3a:61:93:7d:91:50:d3:56:ca:d8:
e9:ef:af:2d:38:69:b3:b7:fb:24:fa:8e:26:45:da:
f1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:25:97:9C:E4:90:D8:D2:18:ED:38:FD:EB:F6:9B:6C:8E:76:0C:95
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:fa:b0:5c:45:82:56:fd:04:da:39:2d:fa:5a:07:e3:b6:68:
a8:2f:6c:b4:62:ee:dc:9c:a6:24:9b:c0:3d:15:1a:4c:34:d7:
7b:35:b3:97:79:d6:03:2a:d9:93:d2:bb:45:39:f6:b3:ba:62:
b8:9b:3b:cd:9f:d6:72:3c:2a:f3:9d:0e:a5:25:73:78:4f:37:
f3:82:85:f3:87:18:f6:b6:c6:f2:65:f6:ee:ae:0f:0e:73:da:
82:75:b1:d2:84:a1:90:d0:6a:f5:ca:48:39:47:d3:48:3a:96:
b0:71:9a:de:b8:17:0e:b7:68:e7:08:e4:c3:c9:77:43:a5:32:
d2:43:ce:a9:b3:9c:c1:37:64:8e:bb:b1:eb:e8:30:55:fc:35:
b8:91:cc:bc:13:6a:77:81:ef:9c:42:6c:15:08:87:55:d6:6d:
ca:86:85:bd:8f:cf:76:e5:8a:67:73:0a:c0:e9:a2:77:e0:a1:
70:52:53:2e:f2:4e:52:4c:3d:3f:4b:9a:92:1b:e1:d5:72:8a:
a0:3f:68:40:f2:b2:15:bd:9e:6e:53:f5:de:1b:73:7d:ae:de:
c1:dc:4c:fc:cd:e9:b1:e6:a2:3c:b6:2f:ee:a3:33:3f:93:42:
24:67:67:97:5c:c3:81:9d:82:74:b5:5f:07:6f:57:c0:c3:48:
b5:33:f3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:38 2025 by rpki-client