Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json)
Hash identifier: GHDsvempnsysjqR1cz7pp/FVCpF2cQgY6/kfkGNPjoM=
Subject key identifier: 7E:5D:E7:F5:37:49:C8:50:0C:E7:26:BF:88:40:F3:6F:96:17:E4:D1
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 0197B6A196DE7657AC5DA192F6F926CAE453
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
Manifest number: 1303
Signing time: Sat 28 Jun 2025 13:02:12 +0000
Manifest this update: Sat 28 Jun 2025 13:02:12 +0000
Manifest next update: Sun 29 Jun 2025 13:02:12 +0000
Files and hashes: 1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: vkGug0I18JT67Y28uvo3EzHeamJePKTAqYxZ8rUWItM=)
2: LWXmlZUU3ecfqvwZHXpe4N13PwE.roa (hash: 4NYVwWGAs7YF0X626zcPKU0/2BhITxR5hdojEVCb7vQ=)
3: Sb-J4R6jgDy1hu0trOifGY0aUIY.roa (hash: BnRnuIbBZBHwGOy/+XFTLzwpti+5vGhUFRVEfpqfups=)
4: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (hash: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=)
5: cEBx7aoqU0ILwpLn4WovM_f845U.roa (hash: J2opbMpTZpUpvX4wcx9CCjjTjdIRz3Wc8zKaGaF1BXs=)
6: caXYCCXqjYg5FcmsNZB3ePKReDk.roa (hash: XSzupsyXsQ8GmhQZJGGSHfiNeG8fCN+9mFDFmlJ4Bu4=)
7: gnOWx6TZJqqJDVFgIEMBOXAqJm4.roa (hash: fy9tgSe6kfwMDX9Ibp9s7/6EtOy/O5uDNSQU1PskuXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:96:de:76:57:ac:5d:a1:92:f6:f9:26:ca:e4:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jun 28 13:02:12 2025 GMT
Not After : Jun 29 13:02:12 2025 GMT
Subject: CN=7e5de7f53749c8500ce726bf8840f36f9617e4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e7:11:84:bb:73:72:f1:e9:f2:ae:9b:3b:f5:
38:cd:dd:24:f6:a0:a9:3a:b7:91:d2:c7:d8:2f:da:
49:b8:b1:d4:92:e5:9d:24:00:7b:ae:5f:01:54:5a:
cb:fd:83:85:e7:0c:5b:31:d3:e5:d9:7c:d6:09:b5:
58:d5:54:a9:e1:39:9e:5c:d0:8d:29:3f:fd:b9:f0:
5c:7b:91:8f:b7:6f:56:8a:e8:50:fb:5c:40:c0:ff:
14:a4:d6:f2:95:06:ae:9d:d2:e6:4f:36:c9:1e:ec:
8a:b9:b3:b2:aa:13:9e:ce:92:90:f4:c4:3d:77:fe:
47:43:58:8a:5c:3c:ce:b2:15:29:50:5a:37:a5:d1:
03:40:e6:68:d3:85:b8:1a:bb:77:43:bd:f6:87:fe:
2d:e7:e6:96:10:6c:b4:23:25:8e:5f:33:64:76:dd:
ee:8a:3c:07:86:22:af:29:65:5e:76:63:f0:6a:24:
1f:9a:c9:8f:b2:49:50:f2:b9:65:ab:5a:07:d5:0c:
70:c6:7d:a5:73:3e:8c:81:42:88:71:c1:d2:59:af:
17:6d:33:ca:0c:c8:43:6b:d1:ac:1b:fa:36:19:ed:
00:70:15:3f:0a:43:35:c8:5e:80:e6:28:e8:f4:8d:
9e:1f:51:79:c7:5d:c9:3c:47:ee:19:b4:12:f3:fc:
6d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5D:E7:F5:37:49:C8:50:0C:E7:26:BF:88:40:F3:6F:96:17:E4:D1
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:2b:b3:f1:2d:4c:f0:99:52:6e:d3:a4:51:1e:ef:e4:73:9c:
0a:b9:5c:75:a0:2f:6a:b3:d2:6b:c0:c8:57:fd:69:59:ae:13:
2c:13:d9:a7:82:17:3d:59:55:29:d6:5e:f9:4f:a1:93:2e:9e:
90:ec:06:fe:5a:6c:4b:6b:28:90:25:c4:c2:3e:ef:08:e7:cb:
7f:55:b8:d9:17:25:2f:81:c4:4d:f0:41:61:4d:f6:3c:41:95:
79:50:e1:44:f7:3f:6e:05:7b:22:a0:16:10:28:2f:e9:9b:73:
b7:d1:6e:7e:ab:6e:03:fe:a4:bc:7b:5c:69:db:58:3b:68:1c:
df:d5:4b:51:96:58:56:87:94:37:33:14:6c:d4:f5:57:8e:40:
32:4f:a6:a3:89:21:c0:e9:60:3f:b2:c2:48:f5:b0:62:e5:2d:
c5:29:54:a9:21:1f:97:f1:4f:21:fe:17:4f:c0:3a:74:e9:25:
fa:c0:09:0b:bc:de:1a:75:51:4a:c7:8b:e9:f7:bb:62:52:18:
d3:ea:22:d0:70:34:21:8b:23:51:95:63:8b:e1:44:30:30:d9:
27:08:9d:9c:80:f7:66:ab:f7:72:42:a9:4d:38:c9:b8:3b:a1:
c2:47:68:1e:e5:2d:40:40:e2:75:4f:28:d6:a2:e2:50:47:fd:
25:3c:33:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:57 2025 by rpki-client