Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: fkQG4DWclm2Pq3iUQiqQLD8vjEpTGBrb0VnlReKz2+Y=
Subject key identifier: 0B:7F:68:CC:77:52:60:FE:BA:CE:36:82:B3:68:36:3A:E9:28:EF:D6
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 0197C07FA043B4469DD01AE00916B44875F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 0192
Signing time: Mon 30 Jun 2025 11:01:18 +0000
Manifest this update: Mon 30 Jun 2025 11:01:18 +0000
Manifest next update: Tue 01 Jul 2025 11:01:18 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: Z4N993YBUrQjdY1Oacmfv1d4xwAbSHxzq40n8WAq1aw=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 11:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:7f:a0:43:b4:46:9d:d0:1a:e0:09:16:b4:48:75:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Jun 30 11:01:18 2025 GMT
Not After : Jul 1 11:01:18 2025 GMT
Subject: CN=0b7f68cc775260febace3682b368363ae928efd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:6f:8b:f5:a1:f7:c9:b0:f8:97:40:0e:cf:
fe:0b:26:32:71:01:da:22:d7:e8:d6:a0:93:67:e7:
c7:9e:78:cc:53:ce:2e:bd:0b:dd:17:bf:f0:0c:ef:
71:15:9b:8c:5c:43:a3:c1:7b:1c:20:d0:a2:96:22:
c9:a0:4f:95:8a:19:97:14:69:f6:f5:c5:50:eb:78:
3a:98:ed:15:22:91:bf:32:3c:74:64:d6:b1:dd:dc:
1a:62:63:d7:30:6f:ee:fd:85:ca:6c:90:7a:de:3c:
89:e9:2d:e5:03:52:52:ba:53:e1:78:e3:bf:e7:00:
94:43:9e:e6:b0:d0:ff:a6:9c:3e:0d:26:c6:7e:b9:
05:44:1e:a4:ae:78:fe:08:a7:4a:49:ef:94:93:bf:
bc:8b:35:96:dd:5b:52:43:63:6b:67:42:55:96:52:
33:c3:47:da:b9:42:93:a4:2d:81:b6:8c:71:81:4f:
8c:90:e4:68:fe:69:87:61:0b:cb:bd:a6:d2:c9:b6:
9f:58:18:f9:e7:b8:49:8b:25:18:5f:49:b8:ed:38:
32:94:87:23:62:bc:ed:2e:5e:63:2d:0b:c8:8c:1a:
5a:07:10:08:19:b8:70:22:07:18:ab:d0:16:fb:22:
46:32:d2:0c:41:03:39:e9:ec:11:45:9a:cc:a7:83:
d2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7F:68:CC:77:52:60:FE:BA:CE:36:82:B3:68:36:3A:E9:28:EF:D6
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:61:e9:74:2e:a6:49:4b:51:d7:d0:90:d6:ed:2c:d5:4e:1c:
75:47:1c:da:08:34:61:8c:e6:b0:32:79:44:d6:d5:74:8d:b7:
ed:8a:47:bc:60:e2:03:80:b8:6e:78:84:74:52:c5:34:b8:7d:
d7:5c:5d:b7:60:c8:11:ed:bf:f0:42:f6:59:19:8f:17:d9:52:
a3:fe:5f:ae:64:fb:cb:d0:bb:d9:af:9c:4b:9b:d2:0f:c7:e1:
b2:b8:81:a5:7a:c5:32:dc:2d:8d:0e:7e:f6:7f:2e:c1:f2:8a:
e6:58:4f:0a:cf:20:5b:83:9f:1c:31:95:e0:1d:d7:55:e2:c4:
a5:67:19:6c:1b:45:ca:2e:be:9a:d0:40:e5:4a:26:b0:27:4e:
f6:0a:cd:ec:1f:6b:96:8d:98:13:73:78:a9:ef:94:23:8f:13:
1a:00:b5:5a:3a:7b:76:25:f1:4f:aa:30:a5:0b:5a:ba:cc:cd:
7d:cd:05:3a:3d:ac:4d:86:0b:1c:fb:ee:5d:61:2d:10:8d:cd:
52:c8:28:1a:c4:6a:fc:19:be:aa:18:b9:a6:d3:86:8a:03:02:
7a:7a:54:ea:29:e9:34:d3:1d:93:97:2d:67:5e:64:78:94:2e:
df:0a:25:7a:b6:9e:af:22:04:06:fa:e2:b0:17:4d:71:ac:58:
74:61:e3:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 19:46:57 2025 by rpki-client