Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json)
Hash identifier: JqSPzsh7Zqwwx80/W/AFDcXwHHpsueTg5/9nEgMk2S4=
Subject key identifier: 1C:FE:24:E2:3D:BC:27:16:FF:DE:92:3D:51:DF:45:FF:9F:D2:A7:67
Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Certificate serial: 0197CBDF0608EA7F3E6689E88C24767F61B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
Manifest number: 15C1
Signing time: Wed 02 Jul 2025 16:01:20 +0000
Manifest this update: Wed 02 Jul 2025 16:01:20 +0000
Manifest next update: Thu 03 Jul 2025 16:01:20 +0000
Files and hashes: 1: if3KaihHpbg1Z08V6cXxVYQmFhk.roa (hash: 4GJMU1mopT3EhZuM0ayjHedY3bbBO8iZn11kZBRbuts=)
2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: Zbap9qBEEf6Ye3oDmT6pSNo4RuY4WyLSRAfTjKOffcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:df:06:08:ea:7f:3e:66:89:e8:8c:24:76:7f:61:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Validity
Not Before: Jul 2 16:01:20 2025 GMT
Not After : Jul 3 16:01:20 2025 GMT
Subject: CN=1cfe24e23dbc2716ffde923d51df45ff9fd2a767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a8:b5:9b:35:38:c9:79:3a:08:c9:2d:6e:78:
45:1a:fe:fc:fb:f1:13:d1:6b:6a:ab:9e:88:a3:67:
61:d2:b7:6b:1d:b2:d9:e6:3c:58:ca:1a:76:4f:06:
94:9b:8d:50:f1:17:0e:91:e9:b4:26:e1:e4:0d:49:
de:d6:f3:ec:7b:ba:c9:eb:46:3e:f9:9b:3b:fc:a2:
ab:da:5e:10:06:e2:86:94:27:6a:f3:bd:37:c5:ec:
75:5d:71:f6:41:47:83:93:0e:0b:ad:03:38:cb:2f:
ed:0c:e7:23:b5:e5:27:96:17:8d:66:ea:8e:ac:ef:
c6:6e:7a:ef:73:04:1f:9b:78:5c:02:f2:47:92:83:
75:f4:03:42:41:54:4b:9f:1e:02:6a:4f:8b:d1:e8:
50:5b:ff:e4:69:3e:fc:cf:b0:ac:21:51:9d:8b:e8:
83:08:a2:9e:12:8a:ee:7a:89:06:65:4a:49:0f:18:
fa:84:91:23:81:e4:65:06:0f:c1:c0:53:b3:cc:fa:
df:ef:01:f4:0c:59:3f:1e:d0:25:76:ae:f7:1e:4a:
58:a6:03:6a:5a:da:89:6c:4c:a7:48:66:b9:5c:00:
51:9b:1d:7f:5f:61:a9:c7:1f:e4:f3:21:af:ed:30:
cb:cb:b5:94:8f:92:da:fb:e8:ee:bf:66:2f:9e:75:
49:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:FE:24:E2:3D:BC:27:16:FF:DE:92:3D:51:DF:45:FF:9F:D2:A7:67
X509v3 Authority Key Identifier:
keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:68:53:c7:39:74:cd:55:1a:64:bb:b0:86:20:27:3b:da:38:
b5:c6:e4:94:42:e5:ce:5e:69:ad:13:a2:37:aa:1f:2d:88:f0:
d5:25:9c:b8:44:4f:3f:3c:71:6d:18:dd:e5:48:4b:a5:b4:25:
7f:b8:73:9c:3f:72:60:35:77:62:39:4a:34:61:94:40:87:29:
91:bc:37:aa:8f:df:1a:45:5c:33:77:0a:e2:2c:05:a2:bd:0b:
99:0e:36:3d:3e:80:fc:91:47:f2:cb:fd:46:2c:ff:b4:3b:72:
f4:04:50:2b:01:d8:c1:87:45:97:9e:0e:e5:37:bd:9d:fc:f8:
d7:59:5e:de:97:e5:d5:4e:03:08:82:b8:75:80:c0:a1:9b:34:
17:32:d1:83:23:22:30:82:72:b8:63:16:e8:51:ae:27:43:88:
30:3a:0b:5d:8e:d5:34:86:dc:72:e3:79:7c:de:cd:3b:21:81:
3a:c2:39:77:b3:17:87:36:88:48:3e:83:c4:46:2b:c4:6a:66:
7b:87:0a:0b:1e:e1:07:69:38:16:df:d0:62:60:c9:c1:d1:43:
10:5b:66:40:73:a9:6a:6f:6a:a7:cf:de:4a:3b:41:be:60:d0:
c1:7e:fb:fa:c7:31:19:ab:f8:be:c4:b3:3e:bd:b7:b4:8e:ee:
c9:26:40:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:24:40 2025 by rpki-client