Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: NnQL296NbQZ7CWzrGf0nDwujc+iY0kUK0Ia0CUkph7o=
Subject key identifier: 9A:AF:3F:C3:E3:6E:08:B7:07:6A:43:9B:FC:1F:C6:F2:05:39:BC:43
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 0197B7457C619938E5F5852624AB235D1FFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 0FB0
Signing time: Sat 28 Jun 2025 16:01:13 +0000
Manifest this update: Sat 28 Jun 2025 16:01:13 +0000
Manifest next update: Sun 29 Jun 2025 16:01:13 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: N+xl3+8ykQONJ7ImwfM00JbbYS/JJMjLTgif5Qef70Y=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:7c:61:99:38:e5:f5:85:26:24:ab:23:5d:1f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Jun 28 16:01:13 2025 GMT
Not After : Jun 29 16:01:13 2025 GMT
Subject: CN=9aaf3fc3e36e08b7076a439bfc1fc6f20539bc43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:90:ae:94:e2:40:b5:75:90:52:8e:fc:9f:
bd:b1:2c:28:22:87:35:5b:6f:46:5d:ad:6e:e4:52:
da:77:01:26:9c:5c:7e:b8:1d:06:05:85:bc:e3:a5:
95:99:d3:7d:75:eb:4e:a8:96:05:4f:fb:36:2e:7b:
b2:8a:7d:ae:f2:19:04:0c:8a:f8:af:fe:ad:b7:be:
1a:ea:c5:96:60:fc:64:a1:5d:12:3e:7b:ae:99:4c:
fe:f4:0a:7b:44:95:c2:40:5c:a0:67:0f:85:a1:f6:
63:6b:fa:c9:2d:92:23:e5:7f:b8:90:96:b3:11:be:
5c:79:6b:a6:da:79:f5:7a:51:56:ff:be:63:49:2b:
3c:ed:45:89:f0:fa:d2:0b:9c:3e:23:e6:85:a5:18:
4a:bb:c2:bc:46:d7:dd:49:b6:ee:54:90:2f:21:1f:
91:00:e7:b7:ae:70:a4:11:c9:68:23:af:b0:02:c6:
03:19:61:56:6a:e7:22:d1:96:d1:aa:e2:cd:90:3b:
fb:80:54:68:14:ce:f0:ef:0a:46:23:a6:d0:66:6e:
1b:a2:4c:d6:c8:c7:17:fc:f2:d3:85:e5:49:fd:45:
e8:fb:c5:ef:b3:80:06:31:9c:d2:fb:a0:7b:da:a4:
35:d5:79:f5:34:37:2f:2b:b9:39:15:42:bb:c1:09:
83:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:AF:3F:C3:E3:6E:08:B7:07:6A:43:9B:FC:1F:C6:F2:05:39:BC:43
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:d3:4a:72:0e:4b:85:26:cd:4a:88:fc:44:f7:fc:e1:3d:ce:
a7:d6:37:59:c8:44:05:65:eb:9f:fc:46:66:4e:4b:e5:05:de:
30:3d:1d:2e:a4:08:c1:fd:2d:fe:e1:49:59:20:83:2a:16:8c:
9b:19:bb:22:f3:6c:2e:62:e6:80:3f:39:87:47:58:77:bf:f7:
f1:c7:62:61:3e:6e:a3:71:69:b5:0a:b1:54:cd:00:d1:6b:aa:
f5:d4:57:e0:26:42:74:88:f9:42:6c:d5:cb:2d:61:62:d6:63:
8a:90:dd:71:d4:0b:1c:f7:e7:16:48:b8:3d:2d:61:36:ad:9b:
29:ba:38:0b:01:4b:8f:90:8c:48:6e:f6:1e:30:c1:88:da:23:
09:3c:e6:e3:de:31:ec:8f:83:1f:8a:f5:13:15:67:ae:a9:9b:
c4:77:87:ed:83:dc:17:ff:32:75:35:ea:2d:5c:24:d6:c0:e5:
1f:27:1c:af:27:15:fe:bf:9d:0d:a6:81:20:44:b2:99:9e:3f:
0d:4c:fc:40:b4:8f:eb:bb:7c:d4:53:99:02:83:e0:14:88:9e:
4a:11:78:f5:7c:68:e2:b0:d8:52:c5:42:1b:c2:51:0f:92:64:
9a:fe:c2:5f:b4:36:a1:16:b7:c7:45:cb:9c:d9:c9:47:f4:ce:
b6:c8:d8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:25:03 2025 by rpki-client