Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
File: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft (raw, json)
Hash identifier: 5JuM1mPt2UlQ15TEKv+KFq5QKScPJkvwK9LqTnl5plg=
Subject key identifier: E0:6F:FC:50:3B:E6:41:5E:49:4B:CE:A4:C7:F1:5C:1C:7C:93:96:15
Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Certificate serial: 0197BA0FA0C6F6AB243A70AD4A4AA5420CE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
Manifest number: 158D
Signing time: Sun 29 Jun 2025 05:01:15 +0000
Manifest this update: Sun 29 Jun 2025 05:01:15 +0000
Manifest next update: Mon 30 Jun 2025 05:01:15 +0000
Files and hashes: 1: QdF_t5GM6hFZDI7Ycz1kPbhRE0s.roa (hash: gZA+5nFU0e3J+dZOb0p/gBtvIfB/51rVDEOTe4nlfP8=)
2: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl (hash: wdy5he1ZSe9K2apFIAX91UeqWMURJgNi+bu3J/s6ztI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:a0:c6:f6:ab:24:3a:70:ad:4a:4a:a5:42:0c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Validity
Not Before: Jun 29 05:01:15 2025 GMT
Not After : Jun 30 05:01:15 2025 GMT
Subject: CN=e06ffc503be6415e494bcea4c7f15c1c7c939615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:d2:66:34:6f:7f:20:a1:74:a1:ad:e1:4e:
cf:d5:01:f5:f7:39:8c:70:b8:01:a4:f7:c0:54:fa:
b5:a1:2c:6e:b0:ad:c1:6f:f5:8f:b8:5c:0f:27:62:
f7:00:ab:db:f4:06:86:d8:9d:d1:b6:c5:61:1a:db:
71:15:57:da:91:9e:dc:5a:b4:78:fd:39:eb:4a:4d:
5b:a2:a5:74:b3:30:0e:d9:3e:6a:21:0a:57:8e:8b:
d9:a5:86:b5:35:f1:03:f6:3c:48:b9:93:c9:35:03:
11:69:dc:23:3b:ce:e7:4f:69:3a:b0:e5:8b:55:a1:
c8:50:9c:32:08:68:fb:49:49:c9:13:41:37:e3:6a:
6c:a1:b9:2b:c2:aa:2a:f3:86:b3:68:b4:ea:af:a3:
f0:54:08:1d:05:57:3d:c1:51:39:2d:5c:35:55:06:
c2:11:da:d0:45:53:e3:32:ed:29:1c:56:78:2d:ff:
69:34:ce:7d:81:1b:dd:be:09:9b:d2:e7:d9:4d:0f:
b2:09:dc:b3:b6:68:ba:e3:30:06:91:a2:ce:25:3a:
dd:c4:a4:da:c9:fc:08:10:b1:0d:15:27:bc:bf:d9:
fb:af:0f:0b:3f:ec:28:ac:92:15:8e:ad:03:35:e1:
d5:2d:da:b8:03:d1:0c:c0:02:23:a0:8c:a0:85:9c:
c3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6F:FC:50:3B:E6:41:5E:49:4B:CE:A4:C7:F1:5C:1C:7C:93:96:15
X509v3 Authority Key Identifier:
keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:65:a4:79:01:12:88:b2:bf:02:74:54:38:ec:bd:2c:f7:e3:
27:a2:2d:f4:a4:15:d6:87:5b:36:33:14:dc:86:29:f0:66:35:
e7:60:00:01:39:5d:41:54:4b:19:d8:06:78:b5:ce:f3:d4:e8:
18:9d:f7:d9:b5:ac:84:3e:59:8b:e1:66:b0:1d:ea:c6:00:38:
92:a9:23:ba:4d:86:18:e5:96:09:88:fa:8a:e0:a5:66:8d:83:
28:72:fe:99:50:18:8e:f9:23:76:9a:30:85:50:23:3b:60:75:
c4:8b:35:52:c9:09:67:21:86:82:af:6b:2e:04:57:28:37:19:
10:d0:bf:27:7f:38:20:6b:3b:5b:a8:4e:3c:bb:01:27:13:f1:
3f:0f:d5:b6:89:68:db:eb:ad:c4:d5:1f:9c:1d:05:de:21:2e:
29:1e:90:dd:6f:86:a6:9c:47:5b:92:74:31:25:c8:ad:e1:75:
8a:94:83:60:bf:d3:46:f9:90:ff:4f:43:97:56:4b:eb:f5:55:
98:75:16:73:5c:49:0f:e3:6c:4d:79:ce:14:50:0e:e2:02:7a:
c4:c2:43:d3:4d:8b:42:c7:35:73:ce:f3:4a:60:31:22:ec:eb:
14:bd:45:22:04:76:be:e1:4a:d4:c0:8a:46:80:ce:66:3e:dc:
c3:22:fd:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:48:20 2025 by rpki-client