Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: h4VAlhYSVhgsEY+fLtWg7nlSrhyEubn6Lg93DCtzLBE=
Subject key identifier: 34:EE:DF:69:FB:99:17:BD:E3:F3:49:C2:89:12:FB:48:FA:C9:D4:B3
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 0197B70EA9F9F19ED747E509FE70DF719029
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0C30
Signing time: Sat 28 Jun 2025 15:01:20 +0000
Manifest this update: Sat 28 Jun 2025 15:01:20 +0000
Manifest next update: Sun 29 Jun 2025 15:01:20 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: b7rH+TFNa5yxOSx8I+F2i/EOVClBK1HhPGaJ8+sVnmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:a9:f9:f1:9e:d7:47:e5:09:fe:70:df:71:90:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Jun 28 15:01:20 2025 GMT
Not After : Jun 29 15:01:20 2025 GMT
Subject: CN=34eedf69fb9917bde3f349c28912fb48fac9d4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e0:fd:83:7c:ec:7b:2a:7b:2a:4f:ad:f9:cc:
42:a1:6f:bf:d3:7b:f6:3c:ca:46:6c:71:09:50:35:
90:fc:b5:44:ae:bb:43:63:d6:79:92:ee:b4:36:70:
d5:aa:32:27:2a:e9:f2:34:a1:d3:96:a6:85:01:b3:
56:09:c2:b4:fb:fb:92:02:52:98:fd:a7:f1:2f:55:
08:a7:8d:0a:e6:4a:80:4c:4b:3f:f3:7a:55:99:41:
fb:72:8c:b6:3c:14:fa:96:49:77:f8:e6:d9:73:ce:
6f:0e:fb:df:c0:e8:a9:42:e4:12:4d:bb:89:a8:e0:
53:9c:5d:31:55:37:b7:e2:d6:e1:dc:80:b7:4c:c2:
c7:d4:a5:98:38:cc:d6:64:5e:b8:5d:ef:0b:26:79:
17:07:f2:70:03:8f:18:9c:fd:af:d4:65:59:97:f7:
95:77:83:e2:e6:dd:75:e5:b0:c7:a2:d8:71:58:5c:
a1:61:74:69:fa:cb:70:0c:1c:1b:78:f8:fc:34:75:
d0:d2:ee:42:df:e6:f0:63:6e:b7:74:c2:b9:2a:c0:
0c:f4:63:d8:a2:af:d4:5b:87:f6:57:6c:eb:55:b6:
d9:b6:81:54:af:ec:e9:83:09:c7:40:93:6b:1c:86:
fd:c7:25:ea:09:ad:46:e5:b5:53:7a:59:b6:27:02:
79:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EE:DF:69:FB:99:17:BD:E3:F3:49:C2:89:12:FB:48:FA:C9:D4:B3
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:49:dd:49:e5:b9:7b:f1:26:ee:6d:22:f0:10:69:9d:89:8b:
c4:22:dd:38:0b:16:6e:47:fe:0e:09:40:96:60:bf:77:d5:77:
03:20:03:dc:6e:2e:0b:12:ca:a3:99:61:6a:11:44:c8:37:7f:
38:45:9a:7a:86:ed:3a:e7:5d:86:ef:3c:03:82:da:a5:72:11:
df:82:61:25:97:5f:98:de:60:77:9e:5f:41:81:26:a7:01:c9:
7e:7d:a2:f8:d1:de:5b:0f:d6:fd:ea:20:25:ef:df:c5:61:ff:
2b:29:74:ee:44:3b:29:6f:5c:a1:03:f4:88:0b:91:37:02:8c:
fe:c7:9d:1a:52:4a:b7:d3:9c:14:dd:cc:e7:4e:27:37:4c:aa:
de:99:c6:65:12:bb:6d:6a:12:66:c1:c1:ac:2c:3d:98:fd:6a:
1c:1c:97:2c:6e:2a:e5:cf:e9:25:9b:19:27:7f:9c:52:cd:be:
0d:47:62:55:db:59:e5:23:fb:b0:63:01:be:67:2f:97:48:5f:
12:08:50:3a:8b:36:ef:63:03:22:23:6c:ba:29:8b:5e:4e:25:
5e:f5:01:1a:3d:62:12:4e:a3:c7:8b:72:f3:39:f1:53:a4:56:
79:15:92:62:6c:ca:77:86:79:4e:bf:fb:71:79:db:02:db:9f:
2f:74:63:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:32:56 2025 by rpki-client