Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: HcgbUpAT9RBUQC0jiUoSn32iLvnbp9DDgEgZOrD9otU=
Subject key identifier: EC:9A:B6:D2:03:60:82:B0:A0:11:90:26:F0:B9:A5:A4:5D:94:30:5D
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 0197493145F427AF75DB9EE60C963131CAB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 053F
Signing time: Sat 07 Jun 2025 07:00:55 +0000
Manifest this update: Sat 07 Jun 2025 07:00:55 +0000
Manifest next update: Sun 08 Jun 2025 07:00:55 +0000
Files and hashes: 1: BkDrM4-atcp10Br--qbvg_yK1zg.roa (hash: OQTXLqdYWvwdj8zXSXiFu8x5dJlCSPxgy4/Qhi1Yohc=)
2: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: jJaJGO5bdg2oUfWSicoDg/Ap7qspoMQmgMMSEJ4svAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:45:f4:27:af:75:db:9e:e6:0c:96:31:31:ca:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Jun 7 07:00:55 2025 GMT
Not After : Jun 8 07:00:55 2025 GMT
Subject: CN=ec9ab6d2036082b0a0119026f0b9a5a45d94305d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a4:ba:0d:a7:94:85:44:74:9a:82:7d:8b:db:
af:0a:52:1c:fd:20:c4:a3:07:34:73:78:4c:69:61:
3a:28:17:0a:6e:a2:04:ad:3f:32:53:bd:8c:c9:c5:
d7:83:1e:d7:0d:f8:76:9d:66:5d:97:9b:61:6f:3f:
2b:4e:6c:58:40:14:b9:5d:9d:7b:16:40:b2:47:f4:
47:8b:e7:cd:fb:4b:b7:60:55:e8:ba:66:eb:c6:4e:
6e:84:1c:58:1d:b3:a7:11:0f:e7:1f:d0:3d:af:1b:
d9:08:22:3f:c5:1e:85:8e:57:47:b3:9e:f3:6d:1b:
e0:4f:56:db:00:f9:a1:1b:ab:a8:7b:4b:41:d9:15:
90:2f:3a:ff:1c:cd:69:2a:1c:74:53:9a:54:b8:7e:
1d:73:7d:e7:5c:9c:5a:f7:dd:fd:38:55:9d:29:6e:
df:91:04:4d:4a:b8:27:bd:82:82:14:1d:7d:1b:00:
ab:08:41:bf:3e:45:08:37:9f:c6:51:1a:2d:11:bc:
62:e5:84:34:e7:90:99:73:5a:7d:43:06:93:5f:0e:
f9:c3:93:14:0c:58:7f:c5:f6:4a:48:cd:55:53:2d:
a5:31:c6:7e:03:4c:d0:b2:9c:40:88:9c:66:12:c0:
01:9c:11:80:1e:e2:2a:8e:b8:df:01:fc:36:2a:22:
10:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:9A:B6:D2:03:60:82:B0:A0:11:90:26:F0:B9:A5:A4:5D:94:30:5D
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:81:72:d2:98:81:eb:f8:50:0d:2a:15:53:c9:69:68:7d:c9:
4f:37:dc:6f:49:9b:e4:e4:b3:a6:74:07:46:f9:07:e2:d2:53:
2a:5b:e0:dc:5c:ca:3b:bb:3b:7a:57:b9:0b:69:e2:d7:99:d9:
23:8a:5c:f3:ee:69:98:fb:0c:ec:1c:76:77:1f:62:a8:cd:2d:
d7:26:a0:21:c7:5c:90:43:dc:29:82:46:ea:16:5f:e0:b9:67:
f8:8b:90:48:62:eb:e2:3b:e6:cc:3b:00:ae:35:3c:15:05:6a:
7a:f8:3c:7e:51:72:69:f3:9d:74:16:9e:4f:d7:97:2e:59:cb:
da:d0:f3:c0:db:55:c4:69:7c:6e:bd:6d:9e:09:9a:d5:a2:27:
71:26:8d:97:2d:2e:53:99:69:f8:ee:8c:97:01:2f:9a:f6:30:
1f:53:9c:97:48:37:87:25:6f:8f:5c:e2:87:83:4b:a2:60:50:
49:cf:67:63:53:53:ad:59:86:c4:f6:b4:b1:b5:49:38:e1:69:
ea:e9:39:62:a1:a4:2c:85:7d:fd:e1:17:bc:3f:bb:2a:cb:8a:
3c:1f:0d:7e:48:d5:58:f8:e3:94:e2:93:6a:eb:3c:19:eb:14:
02:9d:73:d5:4c:36:f1:c5:30:0d:0f:cc:21:d7:21:86:1f:03:
c5:70:6d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:21:35 2025 by rpki-client