Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json)
Hash identifier: a2GTg9hcACxPuShMjZngz1Eq/aWVZUeOG2/O5svb7fI=
Subject key identifier: 82:69:1F:2F:01:37:98:54:C6:A0:8B:68:96:31:F8:52:1D:4F:27:FF
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 0197B70E6F771102DD3A2BDBEEF87DC9857E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 15:01:05 +0000
Manifest this update: Sat 28 Jun 2025 15:01:05 +0000
Manifest next update: Sun 29 Jun 2025 15:01:05 +0000
Files and hashes: 1: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: hcksYMI56JcqEnIZE7rkn1wAwvvdXXLttrU/oT2N3Ko=)
2: l8INnv3QTRexkISN97lg6HuKeCY.roa (hash: pDEsYARUuEJK1pYQPfyythtLkxkCfRaxj9c1qzwCEIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6f:77:11:02:dd:3a:2b:db:ee:f8:7d:c9:85:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: Jun 28 15:01:05 2025 GMT
Not After : Jun 29 15:01:05 2025 GMT
Subject: CN=82691f2f01379854c6a08b689631f8521d4f27ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fe:b3:d4:d2:8b:1b:ca:1a:aa:b1:f8:14:85:
f7:54:19:c5:9c:d9:80:0a:a8:98:32:5d:3c:d9:63:
68:4d:95:07:0a:e8:65:68:12:02:67:3c:2c:96:82:
dd:ae:12:fe:3b:ee:8b:1c:ec:ce:51:6c:19:d9:5e:
c4:51:e0:bb:67:82:73:79:47:ae:b4:80:59:dd:7f:
52:c0:f5:64:de:a8:5d:a3:f0:10:97:07:23:aa:67:
0c:93:3c:1c:78:50:fa:1e:9b:65:b6:cb:21:ae:58:
ed:bb:fe:3b:63:a6:fe:8a:bd:12:4d:5a:21:c4:c5:
f7:34:38:d7:89:7f:d1:2e:83:cc:3c:78:0d:dd:24:
50:c8:1d:44:42:52:fe:a7:8f:f2:13:82:60:62:5f:
fb:74:8f:03:c4:61:8d:d7:9f:ef:0e:d4:0f:ab:10:
e9:61:5c:06:8a:1c:8d:a9:7d:ba:9a:e9:e0:92:a6:
d7:44:c6:15:88:80:79:3c:12:5c:91:77:09:b0:63:
ae:16:70:37:1e:2f:f0:4a:d6:18:b0:43:67:6c:d8:
6c:96:45:07:21:f2:07:7a:2c:68:94:82:f6:6f:c4:
62:f9:7e:87:b0:73:97:91:1f:7a:e9:5f:80:15:5a:
a0:15:68:f6:75:3d:71:10:70:8c:64:40:b1:41:4b:
b2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:69:1F:2F:01:37:98:54:C6:A0:8B:68:96:31:F8:52:1D:4F:27:FF
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:f6:ef:ed:30:11:5b:d2:7d:07:89:fc:2b:b0:a0:45:cd:ae:
12:cc:21:a4:89:87:64:a4:88:d9:16:b6:11:c7:04:27:ec:af:
5b:62:7a:8b:45:29:11:f0:98:e3:da:bd:bc:96:4d:47:18:1a:
d1:6e:f8:f2:d5:a2:7c:b8:51:3c:13:26:f8:af:34:a9:60:05:
61:b3:45:39:b6:c3:d4:60:1c:71:3d:c3:31:62:8c:fa:15:82:
07:5c:19:e7:c3:b7:b6:4b:78:2a:05:eb:2a:7e:4b:24:b8:f7:
2f:6f:31:fa:ea:45:b4:f5:36:62:23:50:82:9d:2c:a7:b8:06:
64:f6:87:4f:46:d0:49:e2:52:c4:70:46:76:14:06:4d:38:e6:
f7:f5:ca:36:ba:28:43:b2:99:47:cd:75:05:38:9d:be:69:ec:
c6:56:9f:53:4c:d9:bd:9a:c7:1d:de:b7:b6:ba:24:b4:8c:6e:
da:d0:7a:72:59:6d:2b:6a:97:71:e0:0a:8a:6c:62:72:20:77:
68:a9:28:84:b7:7a:33:fd:66:42:cf:1a:c4:18:c7:e3:ff:cd:
b2:51:84:81:9c:40:91:84:79:e0:78:49:3f:65:c2:31:52:d0:
0b:1b:c2:c1:14:26:df:c4:c2:ed:27:9e:8c:42:6e:d2:75:60:
34:be:88:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:42:24 2025 by rpki-client