Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: 4mBG+DYWWoi7QT1+fVJWi4kUZJ2Xn4aEp59h975tGJ0=
Subject key identifier: A4:1E:2B:F1:A7:AC:EC:BF:48:CB:C4:E1:A9:7C:CB:A4:84:27:7A:EB
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 0197BAEB5B3761585CAA610B799F8E29078B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 0443
Signing time: Sun 29 Jun 2025 09:01:15 +0000
Manifest this update: Sun 29 Jun 2025 09:01:15 +0000
Manifest next update: Mon 30 Jun 2025 09:01:15 +0000
Files and hashes: 1: AgvVH_Z5ZikBFIUyEGB_f4ftLfg.roa (hash: Ii6l1o1UjR6zsFk/Ik5xPFxEIQrzvV/YcOC6UeUTh7g=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: pwEKig7r/Q3V6KqQbb1fgtYabi5xYMqO5BU1NyFf9MM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:eb:5b:37:61:58:5c:aa:61:0b:79:9f:8e:29:07:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Jun 29 09:01:15 2025 GMT
Not After : Jun 30 09:01:15 2025 GMT
Subject: CN=a41e2bf1a7acecbf48cbc4e1a97ccba484277aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:3c:7b:30:dc:ef:c7:31:ef:0a:37:e1:56:
27:e5:83:38:c2:bb:7f:d2:d1:87:75:d0:ae:10:0a:
17:e8:69:b3:48:a6:47:4e:98:31:35:1b:f5:11:b5:
1d:8b:bf:0b:95:e2:52:04:ed:ae:85:f4:aa:19:e2:
52:2f:7e:25:74:44:3f:be:3c:e7:93:74:4d:8f:91:
27:38:b4:a7:82:1a:35:1b:12:3b:83:be:30:a6:49:
0f:6a:a2:d1:40:9c:7f:6d:b5:22:e0:21:13:cb:bc:
75:84:bf:73:4c:35:8a:d6:a8:92:89:48:6f:2c:85:
a2:65:80:03:2b:50:4f:31:39:3c:66:f7:0d:45:a3:
e1:3c:91:3a:8b:02:bd:50:5d:87:23:69:e2:26:57:
a9:a3:41:c2:74:52:33:63:f4:bc:71:76:91:13:81:
75:fe:bb:e1:5b:a9:d1:08:14:67:0d:37:d9:04:39:
49:af:67:0f:53:0b:44:12:71:f3:a0:3f:9b:b2:5b:
e1:c1:27:5f:32:a3:53:80:ff:59:93:bd:3e:ef:58:
3c:0a:eb:e3:5d:6e:8a:34:e1:9e:ad:8f:95:20:45:
0b:f5:9e:78:ba:ff:00:1e:c5:74:ff:7b:92:77:34:
04:51:a1:d9:71:e8:68:36:19:00:4e:a1:a2:ea:cd:
f0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1E:2B:F1:A7:AC:EC:BF:48:CB:C4:E1:A9:7C:CB:A4:84:27:7A:EB
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:a9:92:7b:28:ec:fc:b0:3d:8e:d0:54:63:10:b7:4e:2b:b6:
25:ce:c2:93:10:38:65:4d:2b:63:33:02:3d:1c:9c:80:42:cb:
7e:79:d8:32:12:68:3d:42:f6:4b:f6:51:6e:7c:ea:09:1f:90:
04:ae:6b:31:db:4b:5c:ec:eb:08:62:52:b6:50:c9:ba:28:3b:
d8:82:53:f9:52:ab:77:3e:01:2d:ea:f5:38:6e:ea:55:68:49:
c0:d1:28:8e:4c:95:f1:be:4f:16:df:46:3e:99:24:a8:6d:b0:
74:02:0a:b6:a3:d3:6e:40:fc:c6:a3:4b:5b:05:31:7f:0f:26:
a9:35:a9:9c:05:e7:d0:ee:49:2b:8a:74:3d:2d:a9:4b:f1:76:
4b:90:4e:a3:21:54:63:28:10:61:a4:36:91:d0:0a:0b:2a:96:
80:d3:5c:1b:06:d5:55:29:e8:24:d7:da:bd:c7:a3:cd:5d:58:
0d:43:5f:85:48:05:2f:57:5a:7c:35:e8:ba:e2:47:0d:d5:1f:
b1:a4:a0:da:fd:08:91:a1:c7:f8:43:27:9b:79:0d:4c:4e:a9:
e1:cd:e0:96:0f:0c:d2:20:e1:a4:28:aa:cf:bd:31:ca:13:44:
af:0c:9b:57:21:be:0a:e2:d5:c0:83:d7:d9:50:16:21:2e:6a:
c6:5a:88:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:49:51 2025 by rpki-client