Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: BQepnBQC8bDyzMxlnk35oV/zb9Y5A7gtzcjQCxL1Jhs=
Subject key identifier: B8:B9:13:4E:EB:D4:41:FB:3B:2B:58:9D:76:36:B5:94:F5:F6:DE:6A
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 01974E57795D2B3614697AB3F8BA33B2B10E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 07:00:44 +0000
Manifest this update: Sun 08 Jun 2025 07:00:44 +0000
Manifest next update: Mon 09 Jun 2025 07:00:44 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: JDifZqpzSTE7XIQgfaCGywI8/Q7r7oNktt2NCPoiuZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:79:5d:2b:36:14:69:7a:b3:f8:ba:33:b2:b1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Jun 8 07:00:44 2025 GMT
Not After : Jun 9 07:00:44 2025 GMT
Subject: CN=b8b9134eebd441fb3b2b589d7636b594f5f6de6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0a:6c:89:8a:55:54:5e:a8:ff:49:9e:82:f4:
f9:4c:83:3d:e7:d8:7f:c0:9d:c9:97:d1:59:5d:8e:
e8:28:0c:7d:6a:8f:02:3a:2b:4d:4f:fb:3a:c6:9c:
f9:0f:44:40:fc:f5:74:e8:a2:ba:a3:1c:9e:5a:c1:
65:8e:3a:35:76:f0:2d:d2:fe:0c:35:df:46:c8:08:
dd:46:d5:3e:93:d5:42:7e:96:0a:15:e4:1c:5a:e1:
dc:3f:3a:cf:bb:80:f9:2e:0b:40:ea:18:7e:a4:74:
5c:11:e4:1b:37:03:41:4a:fd:f5:ba:5d:e0:8c:0f:
58:94:82:3d:8e:94:d9:0d:6e:31:a8:97:4f:7d:51:
44:53:75:68:57:f6:90:ea:d3:97:c0:40:f5:83:28:
da:03:8d:4c:12:08:1f:ba:ca:12:bd:ab:8d:c8:89:
c7:7f:d9:ba:1d:f1:cb:5a:ee:b1:43:6a:8f:ee:ba:
cd:64:29:04:16:ec:89:74:eb:50:3f:be:1f:4e:1e:
9f:4f:41:15:85:89:43:02:ff:8b:ab:8e:d9:19:22:
4b:a3:30:9e:6f:75:fc:72:57:01:cd:9f:96:71:86:
51:0b:9d:53:09:8a:0b:c3:e8:ad:8c:19:39:07:9a:
40:90:07:21:54:69:a4:60:bc:46:ce:df:76:99:41:
f5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B9:13:4E:EB:D4:41:FB:3B:2B:58:9D:76:36:B5:94:F5:F6:DE:6A
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:8b:5d:af:5c:85:1f:6c:b3:cb:3e:d9:42:11:5a:37:c0:1e:
82:49:ad:94:33:11:47:6d:26:cf:b0:fe:dc:f1:e8:09:55:be:
3a:71:ac:50:b0:30:21:d9:d4:70:4d:b9:a3:1e:8e:7f:e7:88:
58:f0:ec:42:ee:e5:1c:1c:dc:28:18:4d:d9:18:4f:7c:5a:e0:
c8:53:e6:9e:15:e2:1b:be:ff:ae:5a:57:c7:5f:ca:6d:ca:81:
a6:22:b4:9d:87:21:e5:ba:53:cf:cb:6a:fd:c5:d7:7d:34:5b:
61:80:1f:ce:b0:ae:72:a6:a5:d9:93:6f:90:19:a1:cd:ed:95:
0a:d4:8d:be:a1:21:45:4e:19:91:5d:b1:c8:d0:3b:fa:1e:90:
fd:1a:7e:3e:56:a9:83:c7:ec:3a:e3:af:36:af:84:3d:2d:d1:
eb:da:d4:bb:6b:64:1c:8d:59:a6:38:df:74:80:b6:04:14:fc:
29:e4:9c:16:2b:a9:aa:e2:d7:77:a4:5a:07:12:4a:b4:2f:97:
e1:3b:dd:86:8a:d2:47:f5:e9:5d:8a:be:82:b6:b1:35:e2:96:
a0:3a:5d:67:48:06:77:3d:9f:39:b8:15:8b:73:1f:b1:21:ff:
5c:e6:91:3a:3f:72:3b:aa:93:71:9c:94:60:a1:63:4e:a5:20:
bb:db:8b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:27:14 2025 by rpki-client