Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
File: CiINqbbilYVbYn_qYQ4cthZGiUs.mft (raw, json)
Hash identifier: Ed/TLyu1I6omodmNAVbFy+a6Ki6u4Mz4eLXKy210T34=
Subject key identifier: 91:01:C9:6B:29:F2:45:50:82:33:26:F7:F8:5E:57:EC:79:CC:D3:DA
Authority key identifier: 0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
Certificate issuer: /CN=0a220da9b6e295855b627fea610e1cb61646894b
Certificate serial: 019747E797246598A644312F9FE6C8EA38B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
Manifest number: 10FB
Signing time: Sat 07 Jun 2025 01:00:49 +0000
Manifest this update: Sat 07 Jun 2025 01:00:49 +0000
Manifest next update: Sun 08 Jun 2025 01:00:49 +0000
Files and hashes: 1: CiINqbbilYVbYn_qYQ4cthZGiUs.crl (hash: gcANXGRG1rKdce7oIjBLHzinTnkp1krjAr5c33J38dU=)
2: wkXSNgmrYa8rCdcuzp6T9kjqo9c.roa (hash: PKA5n5GL19/MWS8CZc9zMrpSRD9clDPEtJzbH91PkU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:97:24:65:98:a6:44:31:2f:9f:e6:c8:ea:38:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a220da9b6e295855b627fea610e1cb61646894b
Validity
Not Before: Jun 7 01:00:49 2025 GMT
Not After : Jun 8 01:00:49 2025 GMT
Subject: CN=9101c96b29f24550823326f7f85e57ec79ccd3da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:43:5e:5d:96:b0:8d:60:f1:ca:43:17:35:
32:b8:88:a4:ee:1f:8b:67:14:32:42:b5:46:21:6c:
85:14:f8:0d:3d:42:f7:2c:8f:95:7c:af:f0:a0:c9:
87:9e:c2:57:ec:ab:bd:1e:f9:c9:e7:9c:be:15:6c:
c4:c6:79:8e:0c:6d:1e:aa:22:90:a1:e2:41:44:ad:
18:45:6b:6f:26:d0:df:f6:ae:72:18:5c:ec:7b:e4:
15:56:93:3e:a5:39:66:be:85:a1:bd:99:9c:c5:99:
6f:bc:a4:68:fe:61:da:67:4f:38:a0:a6:87:d0:cd:
1c:d6:c0:69:19:ff:7d:a7:ef:cf:f0:f5:25:06:62:
80:66:5c:28:28:b3:cc:54:8c:cb:e0:45:82:e0:9f:
33:b6:71:7f:e2:aa:a8:d3:31:26:e1:40:b5:96:03:
0d:90:b7:a8:4f:6f:d6:65:e6:b2:49:e4:3b:dd:08:
97:ca:4e:4f:d7:a6:72:9b:9b:c1:37:7d:ee:57:6f:
79:3d:29:4c:88:11:d3:36:76:f1:9d:69:e6:33:6c:
9f:b4:a5:10:05:ea:5f:6e:74:d4:58:c5:0f:43:04:
05:2a:68:7b:73:4a:b5:67:7a:68:d5:02:11:66:2c:
b1:ad:0b:ee:e7:8e:01:b6:2a:c3:2f:6d:89:35:b7:
c1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:01:C9:6B:29:F2:45:50:82:33:26:F7:F8:5E:57:EC:79:CC:D3:DA
X509v3 Authority Key Identifier:
keyid:0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:fe:83:7a:19:ef:41:70:3a:93:12:ee:90:63:6b:14:c5:79:
a6:14:a4:ee:2a:ce:18:e5:92:dc:82:71:a5:f8:52:2e:0c:37:
42:33:d0:3e:8a:6f:45:c9:87:68:ae:52:46:e1:10:d3:3c:2f:
ec:d3:16:95:ba:1d:40:17:e9:3f:b3:b4:5e:2d:5a:cb:b0:e5:
51:18:b7:8c:7e:d7:92:66:ea:2d:93:be:7e:8c:f6:4f:7d:b7:
12:e9:17:6d:62:f8:9b:42:0d:9e:06:cc:85:d9:07:34:7b:3a:
b1:db:3d:43:81:a9:66:fa:d7:3e:07:84:c6:69:8c:24:24:1e:
e8:2a:ab:c6:05:50:5b:aa:74:1a:5a:70:b1:75:26:ce:57:7f:
6a:01:36:48:68:12:5b:91:69:8d:1e:f4:98:d4:71:fb:09:5b:
c2:a8:78:1c:cf:81:bc:59:2c:1a:f6:fd:76:9c:64:3a:ea:f6:
e8:22:20:db:b4:17:ed:8e:6e:d4:7f:29:89:2e:37:12:b6:aa:
34:2f:08:d8:b3:38:e0:02:00:1a:77:68:b0:d6:11:52:92:fa:
0f:f7:6b:16:17:70:55:7d:fe:d3:89:d6:93:70:e3:fa:11:70:
09:59:91:e4:92:e8:2a:16:2e:bb:9b:ee:9a:3f:6d:7a:84:f0:
63:8e:8a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:38:44 2025 by rpki-client