Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: culht3qB6TjHtS9PLFaOC0xmCd1JZVshdhqoal7Z/i0=
Subject key identifier: 72:A2:F3:C7:0D:7D:45:04:75:C3:C1:88:9C:1C:78:D6:FB:32:ED:4E
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0197B6A059B8977FAD90F8D7E02BE30AFA9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0C6F
Signing time: Sat 28 Jun 2025 13:00:51 +0000
Manifest this update: Sat 28 Jun 2025 13:00:51 +0000
Manifest next update: Sun 29 Jun 2025 13:00:51 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: XMHcwkDT/RB+RLPEoADc21Yb3xQ/xWdsA7agblitGzY=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:59:b8:97:7f:ad:90:f8:d7:e0:2b:e3:0a:fa:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Jun 28 13:00:51 2025 GMT
Not After : Jun 29 13:00:51 2025 GMT
Subject: CN=72a2f3c70d7d450475c3c1889c1c78d6fb32ed4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d5:b5:30:2b:d3:1e:f2:aa:57:3c:6f:34:0e:
d9:6c:43:d1:4d:82:9e:e3:4b:a1:1d:2e:3f:49:c9:
e4:a3:38:02:27:74:7c:15:4d:fd:6f:e5:58:2e:8f:
6b:56:f7:99:84:1a:af:79:8f:39:31:9d:e2:64:72:
5f:37:a6:41:34:a6:b1:18:77:fb:bf:50:0b:86:0e:
5d:99:0f:9e:9a:8b:42:71:0f:57:db:0c:1c:85:ea:
b5:f7:83:99:e3:08:e5:7f:49:68:a5:6c:ac:1d:18:
9d:5a:87:27:78:94:b8:4b:b4:b3:66:28:2f:20:9c:
38:e9:dd:ad:88:1b:55:c3:ab:52:72:3b:37:45:4c:
1c:fd:df:92:f7:8a:55:cf:a2:9c:f1:98:f4:82:fc:
45:8d:88:a5:14:f0:33:c5:f1:af:90:8b:66:0a:e1:
65:7e:37:5f:d8:bc:6c:28:15:48:d5:04:cb:41:c5:
1e:4a:94:f3:ce:26:50:0c:4c:df:d1:d6:c6:8e:ac:
0f:83:2f:b7:0c:50:da:cb:f0:35:48:27:57:08:36:
56:e7:10:32:63:5f:2f:af:67:d3:dd:c2:75:f7:86:
b3:89:69:c6:d8:53:57:be:0c:b2:69:5a:f4:7f:16:
6f:b4:e8:5b:15:91:be:c1:0a:3b:00:e4:37:5b:f7:
44:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A2:F3:C7:0D:7D:45:04:75:C3:C1:88:9C:1C:78:D6:FB:32:ED:4E
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d0:ec:b2:f6:19:96:ff:38:b1:d6:44:05:f3:a1:eb:f9:5f:
03:17:ab:61:51:08:c5:77:a9:81:2c:eb:f0:f3:b1:6d:ce:af:
0d:ff:82:80:b3:1f:ed:a2:6e:f7:0e:5b:23:92:4e:99:df:fe:
df:e7:c2:8b:fe:fb:06:1b:93:8a:fd:00:eb:61:64:a6:b7:aa:
95:44:cd:04:54:1a:76:f4:eb:75:9b:9a:e7:5b:e4:7e:65:b0:
a6:49:52:e6:7a:c5:49:3b:95:2c:ce:1f:c8:eb:bd:e2:0a:0b:
20:d6:71:da:3d:08:10:50:c1:df:71:e1:1b:9f:6e:45:99:d9:
72:06:2a:16:b3:80:7c:47:5d:e7:a6:8a:86:b9:2f:0b:84:ec:
00:ce:21:78:0c:44:10:9f:d9:db:c6:34:27:0b:ce:2c:94:67:
3a:79:42:92:40:df:f7:86:2b:3d:81:b2:c6:eb:e0:ed:9f:31:
8b:b9:51:71:03:f5:83:52:2b:2f:57:4b:5c:c8:a3:55:56:79:
34:8a:c6:d3:2a:72:5d:81:fc:17:b4:3a:f9:e5:f5:8f:fd:21:
4b:69:78:be:2a:f4:54:87:87:32:30:52:25:75:57:88:0c:65:
0e:5b:1d:7c:e6:78:cc:b0:4d:4b:e5:f7:fe:0a:3b:b9:03:5d:
61:75:b3:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:57:25 2025 by rpki-client