Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: I9HXRqzJ8/NxSGAh1s825vQui+Q86ZsdJbDoO6is6m0=
Subject key identifier: 29:18:07:72:5B:B2:27:BE:8C:18:A2:99:C8:69:2E:4B:D4:7F:86:3A
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 0197B6D7B917D398D2757A4386850967AC75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:01:20 +0000
Manifest this update: Sat 28 Jun 2025 14:01:20 +0000
Manifest next update: Sun 29 Jun 2025 14:01:20 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: zFlDiCHX3eMrQXqGU34eBdHmln6FDVcS0zw8vWhbLrw=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b9:17:d3:98:d2:75:7a:43:86:85:09:67:ac:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Jun 28 14:01:20 2025 GMT
Not After : Jun 29 14:01:20 2025 GMT
Subject: CN=291807725bb227be8c18a299c8692e4bd47f863a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:64:ac:d3:f4:da:d7:62:56:ac:24:43:fb:e1:
72:d2:ba:cf:85:95:98:b7:03:70:0a:a9:22:89:3c:
a7:4b:00:d0:b5:29:94:31:2a:ab:eb:1d:4a:33:1d:
8f:19:fa:b9:61:07:29:30:02:bd:05:e5:5c:42:9c:
23:37:df:67:7c:36:46:2f:09:08:6d:8b:2b:9d:6a:
fb:09:fd:70:3d:11:57:1f:23:b2:7d:c2:6e:b0:02:
01:22:2b:a9:4d:74:82:2c:07:24:69:4d:b7:e2:7a:
66:2f:fa:9d:55:39:94:b0:20:68:c3:ff:5c:6e:87:
f2:5d:fe:a1:55:e3:ef:f8:7c:49:a9:58:77:c9:36:
ed:c0:de:b8:ab:c9:df:e6:4d:45:d5:c8:29:29:51:
58:2c:1c:02:ed:ee:57:45:5c:3b:f4:61:af:02:30:
6b:71:3f:e6:a9:db:06:fa:6a:90:ef:48:ff:a5:8b:
33:f0:38:f5:b8:f9:0e:3f:de:30:4c:0f:c7:d7:c6:
34:ac:b5:c7:74:86:08:a5:ae:73:1b:3e:3d:1f:33:
1e:3f:7a:07:ae:34:70:10:ff:67:3a:5d:2a:f0:3d:
df:7a:c5:92:de:95:c5:99:ff:b5:fb:72:e4:90:b6:
0f:95:b7:cc:4d:ef:8f:7c:1f:ee:48:dc:1b:aa:0f:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:18:07:72:5B:B2:27:BE:8C:18:A2:99:C8:69:2E:4B:D4:7F:86:3A
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:ce:f2:50:9b:ae:42:61:f9:ec:29:64:71:86:c5:bc:c4:4b:
1d:d7:84:d3:64:73:b3:4c:7b:51:0d:f5:db:c0:93:fb:21:83:
e0:25:b6:d4:19:0a:0e:0b:d7:2f:57:84:62:86:63:20:c3:8b:
35:0f:ed:97:cd:cb:26:a1:87:07:13:5d:f6:80:42:cc:24:8a:
b3:a7:d2:d9:4d:29:36:54:43:14:80:21:50:60:53:a8:3f:ea:
f1:e6:94:7e:1a:ad:7f:bf:56:7a:3a:b1:0c:38:e3:69:74:e6:
4d:ef:55:e6:4f:eb:38:60:06:30:ca:62:3b:01:3f:87:bc:67:
1c:ce:31:dd:98:d9:40:b0:7e:d4:47:eb:ab:34:72:da:dd:86:
30:35:6b:de:44:f1:a3:d0:28:12:cb:4a:93:d5:69:8d:3c:d8:
f9:67:56:7c:3c:65:99:51:5c:eb:9b:4f:bb:08:47:1e:45:b5:
0a:45:8d:0b:c3:fe:98:b7:e4:3b:fc:8d:fe:0b:d6:b9:42:d0:
27:5c:e0:5e:42:07:48:a3:8e:15:1c:44:38:f1:95:81:d3:56:
4c:3d:30:fe:f2:d1:b2:f3:3f:3d:19:0a:d5:5a:8d:93:a9:04:
d8:9e:0f:2d:86:79:e1:e7:12:cf:23:a1:65:d1:01:41:b2:86:
c2:79:eb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:34:55 2025 by rpki-client