Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
File: I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json)
Hash identifier: 5vlCpyQv4SzD9K5QcRrJhPiQRcM/iAc7/rK0GwCtu/Y=
Subject key identifier: 36:AD:12:4D:39:3C:C0:D0:90:C6:45:80:4D:FC:C3:9E:F4:3C:7A:21
Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9
Certificate issuer: /CN=23b1943087ce69623e76b2145b3479ac204ba1c9
Certificate serial: 0197B5FBBAEED52ABC241D5CAD19F604E6DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
Manifest number: 14F3
Signing time: Sat 28 Jun 2025 10:01:02 +0000
Manifest this update: Sat 28 Jun 2025 10:01:02 +0000
Manifest next update: Sun 29 Jun 2025 10:01:02 +0000
Files and hashes: 1: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: Djiu7xSfoP7os/L0YWX1r3LAy9R2qK/XAhlvCjQUxho=)
2: IGzDnKyfU3XrsCi1kVIq3v9WjnM.roa (hash: BCjdpahib4P29wEhEZ+5HfDxKnWj0l2OSsP7lZ3IOHg=)
3: fngY7vAjtnIa6khyzBr6ohfARXc.roa (hash: 8j7K0AdGmWd/+RMVsdDrX0khITQq1MTMhTuPXkbPnqc=)
4: xgdlAL2WKr_Js4V_ZLjPaz6bev8.roa (hash: CfOyHBtQR8zjYYv9qA3Dd8n5he3YeIT+MsIzoT30dKc=)
5: z5Ucz1kkGg56QZyAblN2WefSoGM.roa (hash: 5hK/qHn0csimMvRktmqCqsq2To8mi7zen0Vo1KFJGyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:ba:ee:d5:2a:bc:24:1d:5c:ad:19:f6:04:e6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9
Validity
Not Before: Jun 28 10:01:02 2025 GMT
Not After : Jun 29 10:01:02 2025 GMT
Subject: CN=36ad124d393cc0d090c645804dfcc39ef43c7a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0e:aa:1b:dd:fb:4a:bd:87:0f:b6:b3:02:3f:
b1:d8:f3:eb:af:d7:1b:2d:02:c0:4c:59:41:22:aa:
0f:e3:39:60:e6:a1:a7:42:92:e5:1b:52:60:fd:fc:
0c:fb:72:5b:58:54:0c:33:f1:8e:54:6b:06:dd:cc:
f2:56:d0:e6:bd:68:df:d2:55:11:02:dc:44:e3:9e:
76:b7:60:71:5b:2a:8b:43:70:81:57:60:c7:f6:05:
46:c5:28:78:24:76:20:05:16:41:98:d8:74:29:6a:
88:88:b8:fb:87:c2:00:7e:5f:c5:00:61:83:33:43:
3b:36:32:02:ac:94:89:20:04:4f:d0:e8:f3:4c:67:
ec:3d:10:9e:57:83:ff:db:fc:07:7e:6f:8c:5e:75:
2a:e7:a8:a1:ee:53:2e:ce:97:85:8c:31:21:8a:6b:
dc:91:39:c1:04:fa:fc:c4:40:23:74:c0:52:97:82:
e0:ad:81:92:23:5f:eb:1e:28:6a:e7:23:fc:21:64:
91:4b:31:c3:d6:4d:f8:d1:79:42:1c:a6:71:fc:34:
bf:fb:9a:df:98:4a:57:36:5e:e2:8f:99:98:6a:25:
c9:06:51:97:62:b2:06:1c:b3:ad:27:77:a0:b1:24:
8d:ca:03:b6:e4:23:56:db:79:ab:a7:37:79:0b:c1:
ae:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AD:12:4D:39:3C:C0:D0:90:C6:45:80:4D:FC:C3:9E:F4:3C:7A:21
X509v3 Authority Key Identifier:
keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:c8:60:6d:21:27:c1:bd:31:58:a2:44:79:c7:9b:17:5d:5b:
f3:b0:61:eb:b4:d9:76:da:33:ee:ea:3d:34:89:7b:9a:6c:3a:
ed:a7:c4:71:a7:c9:e5:e1:21:5b:f6:c5:0a:7a:e0:5f:f2:5a:
5a:34:83:99:b2:14:ae:5a:c3:77:83:bb:b6:86:c9:4e:13:c7:
2b:85:ba:7f:46:73:97:60:67:a9:60:fe:e2:79:0a:b8:4a:20:
a8:e4:b0:6e:f9:06:6b:41:41:48:91:f3:b1:0c:43:2c:d1:4c:
de:12:be:da:2c:9d:43:c5:5f:0f:21:40:fb:c8:35:0c:44:7c:
34:1f:81:2c:22:64:c9:a6:c7:73:d2:31:41:93:91:f0:0d:6a:
4f:b4:12:18:07:64:cb:76:58:55:fc:dd:bc:63:87:1a:50:b0:
f4:33:0b:69:a9:e0:d8:97:68:ae:bf:2d:a2:9e:e7:b3:83:07:
9f:23:69:3c:1b:f2:ba:a9:f2:e6:c4:51:26:f2:67:db:02:2c:
e1:41:0c:97:ec:dd:f2:fd:1c:78:2c:b5:83:5e:dd:a0:a1:2e:
28:56:17:37:57:22:24:4a:23:95:f9:95:22:8e:b5:5d:95:06:
29:f7:b3:a5:e8:fd:c0:af:26:b6:f4:14:1a:63:b4:4a:c2:ea:
7a:98:2b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:20:20 2025 by rpki-client