Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: bg3fsszMZW+lcL9uJU6Z16R/FHhalQujsIHxiV7YANE=
Subject key identifier: A9:87:9B:3F:66:89:53:4C:0C:4C:52:67:E6:0E:63:62:D6:E0:A8:39
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 0197C2DC00C98B5AB062D38A7D205799A091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 15BB
Signing time: Mon 30 Jun 2025 22:01:27 +0000
Manifest this update: Mon 30 Jun 2025 22:01:27 +0000
Manifest next update: Tue 01 Jul 2025 22:01:27 +0000
Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: KfAjHsejAY1vyjbb2k9sQ9ldHQ0Idx5CIJPRts8Gk/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:dc:00:c9:8b:5a:b0:62:d3:8a:7d:20:57:99:a0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Jun 30 22:01:27 2025 GMT
Not After : Jul 1 22:01:27 2025 GMT
Subject: CN=a9879b3f6689534c0c4c5267e60e6362d6e0a839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:20:53:7d:9a:03:68:88:21:0e:9a:5b:49:f5:
a9:22:b2:df:74:29:02:ad:4b:03:76:a1:79:21:59:
49:1b:be:ea:7a:de:cb:76:c1:13:8b:b9:26:81:c1:
53:ac:0c:ed:f9:7d:7e:52:f7:c2:73:9f:87:af:90:
02:24:f7:5a:99:c4:3f:bf:b5:6c:dc:03:0b:04:71:
29:13:ef:c0:d9:f1:cb:e4:1f:a1:57:67:bd:fa:66:
52:2c:23:3d:b3:40:bc:34:b9:91:e3:d7:40:ea:69:
23:bb:a2:5b:ac:79:ac:ca:af:0b:78:09:d0:ce:91:
07:3e:00:29:35:bc:a9:d8:bf:03:35:98:8a:79:31:
54:e7:23:a9:3f:20:8e:68:d3:53:72:5c:a7:09:b9:
f0:dd:e5:3f:f7:a2:8a:2e:de:54:45:5d:db:25:8c:
d0:b6:0d:93:1b:7e:74:89:4e:11:a8:6e:6d:0e:be:
5f:90:38:c7:60:01:24:c4:80:82:ed:d2:13:96:a3:
23:0d:7b:fc:36:72:09:bc:cf:7e:e5:87:7a:8d:16:
8b:49:f2:19:a9:3d:20:16:93:a8:a1:88:fa:78:84:
ed:17:c8:bd:93:15:2d:38:ab:3e:4a:f8:2a:0a:7b:
f8:51:fe:d4:f4:69:59:9b:36:be:e5:78:7b:2c:a7:
7e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:87:9B:3F:66:89:53:4C:0C:4C:52:67:E6:0E:63:62:D6:E0:A8:39
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:5b:87:53:3b:c2:b6:17:b3:b7:3d:83:f9:9d:be:e8:63:36:
4e:5f:8a:f3:4b:1f:66:38:0a:0d:83:fa:fa:2a:fb:c5:96:69:
61:ae:50:b8:23:8d:15:3b:30:8b:d6:03:10:c5:ef:0e:f4:e4:
b6:3c:32:6b:55:d5:9f:63:b4:eb:57:e6:32:0e:c0:9b:de:d7:
49:22:88:8e:f1:0f:70:f8:03:93:a3:51:9f:ab:79:f9:29:71:
c5:ca:18:e5:14:d1:4b:ff:50:6a:0f:73:a9:1e:a2:7a:70:4e:
91:0b:cf:8f:6e:19:1b:15:ba:55:f7:c7:fb:9a:2e:cd:27:72:
4c:4c:6c:41:57:3d:2a:2a:76:aa:5d:3e:87:2b:b6:bf:2a:6b:
b1:ed:a5:22:ac:5c:46:ff:79:e0:17:c5:49:d7:b7:97:bb:6e:
e6:a8:b7:bf:96:1a:48:24:07:59:1a:3c:a3:33:60:14:56:25:
d8:ba:78:2a:a0:22:59:95:81:2a:0f:db:c7:7f:06:3e:93:a2:
59:3f:64:f3:cd:b0:bd:a3:6f:da:2d:26:51:98:c8:ca:9b:71:
6c:9a:4f:4a:93:4c:dd:61:d0:3e:db:f8:15:d0:e2:8a:1b:58:
d6:a2:6b:fc:71:9a:2a:be:a1:53:09:b6:06:f7:6c:aa:84:e4:
73:26:33:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 23:46:13 2025 by rpki-client