Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
File: IxMMmax6pAhscXVxFKQWP4AJAUI.mft (raw, json)
Hash identifier: wbCz43vuowjbevBq3kS5YLz6FmXw0lNsjSn0spCuSEI=
Subject key identifier: 24:F7:A3:22:DF:CB:05:FB:14:4C:F9:08:6E:B2:B8:9E:8C:22:02:B9
Authority key identifier: 23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
Certificate issuer: /CN=23130c99ac7aa4086c71757114a4163f80090142
Certificate serial: 0197B77C7E2FD9E7CD2071C93FE459318AE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
Manifest number: 08FE
Signing time: Sat 28 Jun 2025 17:01:18 +0000
Manifest this update: Sat 28 Jun 2025 17:01:18 +0000
Manifest next update: Sun 29 Jun 2025 17:01:18 +0000
Files and hashes: 1: 7LeNtT1Py-375udT6tgnEczdaA4.roa (hash: KcUWkl6MBuk85woap7zLa0rzE+sobb9Vo8npqesilrw=)
2: IxMMmax6pAhscXVxFKQWP4AJAUI.crl (hash: b1l8YcczH+AsLOuc8x8Z+csAJ6IbqZFFjX1iSzHvb4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 17:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:7e:2f:d9:e7:cd:20:71:c9:3f:e4:59:31:8a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23130c99ac7aa4086c71757114a4163f80090142
Validity
Not Before: Jun 28 17:01:18 2025 GMT
Not After : Jun 29 17:01:18 2025 GMT
Subject: CN=24f7a322dfcb05fb144cf9086eb2b89e8c2202b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:8c:98:da:a2:c1:a6:c2:23:32:51:10:9d:
4c:34:34:c9:93:c4:95:19:77:b2:6d:75:93:22:b6:
95:8e:63:58:9c:d4:50:2c:2c:c8:3a:a4:22:e2:33:
7a:60:15:3d:e7:12:2a:a7:16:e6:a5:23:72:69:d1:
3b:43:dc:72:23:b9:a7:02:d8:e2:69:54:77:7e:cf:
33:dd:04:12:99:16:56:04:d2:9a:db:09:8b:20:6c:
f6:8f:5d:12:0e:aa:f3:b4:42:23:f7:cb:5c:c4:99:
4c:c4:11:21:ea:9e:cc:99:f4:0d:dc:9d:eb:49:4c:
01:f7:b1:d5:79:f2:01:9a:78:a7:6c:ea:7e:c8:87:
d1:33:31:a3:f6:9c:e5:ec:d0:dd:6c:56:73:55:11:
6c:2e:2b:37:42:22:da:29:29:8c:f6:b2:fe:09:f7:
97:76:35:aa:d9:49:af:ed:40:6e:4b:24:1a:67:85:
99:4d:48:6c:23:e4:21:10:1c:16:7a:3c:a6:86:71:
f3:80:36:cc:03:c1:7c:04:70:3d:47:41:52:f4:6e:
98:c9:63:cf:26:75:9d:1b:73:7f:07:09:c5:18:28:
3f:73:a7:ce:07:24:6f:f6:10:de:8b:c7:36:d8:53:
c9:e1:b0:fb:62:5d:70:78:8c:a9:aa:7d:d2:c6:9d:
00:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F7:A3:22:DF:CB:05:FB:14:4C:F9:08:6E:B2:B8:9E:8C:22:02:B9
X509v3 Authority Key Identifier:
keyid:23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:f0:cc:2e:d0:b8:0c:1f:61:c3:16:7d:ae:ba:36:2d:93:41:
be:d1:99:6a:03:37:df:50:d7:82:1d:10:66:8f:ee:58:b6:4e:
84:a0:36:f1:2d:00:00:4d:85:40:fa:88:b9:88:03:60:ad:77:
7e:68:bc:ff:44:97:8b:95:93:9b:93:52:f3:80:aa:c5:fe:a6:
a9:43:d4:e7:5c:0e:ce:93:5e:b0:e0:a8:25:e9:61:5b:0c:f3:
aa:27:b0:55:66:c7:d7:d6:1b:6a:7d:77:65:a5:23:71:10:b7:
2b:c2:a7:cb:dd:b4:21:a1:bb:b0:73:19:79:61:00:2f:a2:b9:
2f:58:77:bd:bc:0c:f0:f3:3c:47:69:66:d5:e6:81:19:ef:1c:
e0:f3:72:f9:64:45:54:e2:3c:d6:b4:cb:02:90:1e:b9:01:ba:
30:65:f6:60:a5:a9:df:ee:4f:fc:f5:33:cf:81:e4:7b:94:4b:
f8:fe:e1:6b:6e:9a:3b:64:67:05:dc:a9:14:d9:bf:9d:7c:f8:
3c:77:13:ea:78:2e:82:b9:94:15:7e:df:04:26:b4:12:30:7b:
c5:c1:29:9a:2b:2d:58:b5:5e:4a:9d:37:84:67:82:46:d7:2b:
19:c0:09:32:3f:50:9b:02:57:e1:34:aa:ba:85:c1:bb:03:66:
df:cf:2f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:17:35 2025 by rpki-client