Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
File: v60IrIYttq4LsLiArsBV7by7gvw.mft (raw, json)
Hash identifier: EQWN/BtBY88VGy8p9YkyoJcj8gbwIjCcGdKxTJn5cvc=
Subject key identifier: 70:6B:58:2C:C9:AD:9C:1D:A4:C4:BC:0A:16:BF:C1:7C:22:0D:CC:A4
Authority key identifier: BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC
Certificate issuer: /CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc
Certificate serial: 0197469E4AD99B8694020256CA8927DF23B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
Manifest number: 0D55
Signing time: Fri 06 Jun 2025 19:01:08 +0000
Manifest this update: Fri 06 Jun 2025 19:01:08 +0000
Manifest next update: Sat 07 Jun 2025 19:01:08 +0000
Files and hashes: 1: CZZ5ipuaAOE-Yr5zJDMCRrkyVSA.roa (hash: iFc83ywiMJmrxS1NXOM6QWOY3OsVmvxahP4mNSEaMZM=)
2: v60IrIYttq4LsLiArsBV7by7gvw.crl (hash: 8JPoxNCVcjtCpz7r2PSLBUW8HO6iPvvnyUGs1cNMbyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:4a:d9:9b:86:94:02:02:56:ca:89:27:df:23:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfad08ac862db6ae0bb0b880aec055edbcbb82fc
Validity
Not Before: Jun 6 19:01:08 2025 GMT
Not After : Jun 7 19:01:08 2025 GMT
Subject: CN=706b582cc9ad9c1da4c4bc0a16bfc17c220dcca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:92:98:0d:f3:55:ab:93:3a:f3:74:36:4c:ef:
50:95:9f:28:7b:bc:0f:1f:f0:11:2d:60:6a:ce:8c:
3e:ce:89:bb:c7:f4:e9:84:92:fd:6f:a5:5b:38:75:
39:46:31:ed:c0:fc:94:45:4d:4e:33:de:51:4c:9c:
ce:1a:c9:34:fb:09:0b:73:2d:11:a8:db:4a:77:ea:
cb:0f:e3:ec:78:36:1b:fd:12:bf:1f:51:53:af:b3:
6c:84:86:25:5e:e5:9e:74:e7:40:5f:8c:2d:ee:04:
49:fb:16:c5:c6:84:47:0e:0c:9c:8e:d0:ae:ff:6d:
fd:22:e4:7a:b1:15:46:3a:6f:12:6b:9f:77:f6:5e:
41:a3:c9:12:3b:2a:76:43:4e:8c:72:ae:17:d7:07:
ef:87:3a:78:b3:38:15:95:74:f4:ce:d0:df:d3:90:
e5:c9:5e:64:cb:9c:6e:c1:a2:71:e2:3b:97:13:dd:
bc:02:a9:4d:dd:86:2b:be:8e:9d:e1:ac:20:8c:0d:
0e:f1:11:35:69:85:b8:f1:1a:9d:3e:41:c6:a7:37:
ed:be:c0:f1:62:a2:18:1a:3b:12:35:aa:cb:77:fd:
54:5b:30:27:40:3a:aa:54:4c:9e:27:3e:ce:4d:3b:
ca:ec:ff:db:3b:c9:9c:84:e6:5e:73:ed:38:5d:43:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6B:58:2C:C9:AD:9C:1D:A4:C4:BC:0A:16:BF:C1:7C:22:0D:CC:A4
X509v3 Authority Key Identifier:
keyid:BF:AD:08:AC:86:2D:B6:AE:0B:B0:B8:80:AE:C0:55:ED:BC:BB:82:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v60IrIYttq4LsLiArsBV7by7gvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d5dc61-882b-4636-aff1-1fb3f817608f/1/v60IrIYttq4LsLiArsBV7by7gvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e5:5f:60:6c:26:7c:be:44:4a:70:31:9e:d0:76:3b:b8:9e:07:
83:a7:00:d9:29:63:4e:71:f7:77:69:e3:40:d3:bd:5e:4c:5c:
47:93:85:f8:dc:65:2b:a5:7a:40:03:62:ec:8c:bb:b5:d3:cb:
e8:5d:c8:03:5f:10:61:55:8b:ab:45:d1:d6:ed:30:e5:a4:77:
01:47:93:79:9d:76:f9:75:d4:bb:e0:12:c0:1e:3c:33:6f:b5:
08:01:e3:f7:40:f3:44:82:56:f1:e4:65:65:7f:b2:30:9c:51:
3f:d2:92:8e:39:ee:6b:4e:69:d5:31:73:5c:79:15:58:4f:b2:
74:e2:06:ac:89:a4:30:25:0d:10:93:67:c4:58:ec:85:f3:44:
ac:75:0f:57:58:bb:81:c4:b2:c7:15:86:eb:91:b0:95:29:e3:
e7:2f:81:c6:83:1f:f2:76:7a:b6:45:8e:6e:c3:ca:ec:3a:55:
4c:d2:fe:8d:a8:69:59:6b:68:af:d7:6f:7b:75:e8:b8:cf:da:
02:9e:5a:27:55:df:a0:d6:33:bb:f9:40:98:ba:23:25:47:10:
25:0f:90:f5:fa:a5:cd:2d:ff:35:59:a7:3a:f2:56:98:f1:b9:
c6:b9:c3:c3:57:f4:84:25:32:df:4d:96:19:02:73:98:a5:1e:
c0:62:2c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:29:37 2025 by rpki-client