Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: MGQ8TCuAGZUF9Dv0uvJE6FJBV9kRT0Mh65ff4Kcv3hM=
Subject key identifier: 36:A7:1D:FA:8D:7B:F2:75:D3:B2:D3:FC:85:98:B8:93:D7:A8:27:1B
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 0197586D4D31BD21FF9D158A63A628A65500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0BFF
Signing time: Tue 10 Jun 2025 06:00:47 +0000
Manifest this update: Tue 10 Jun 2025 06:00:47 +0000
Manifest next update: Wed 11 Jun 2025 06:00:47 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: Tbe03qnO/oGuvVB8PM3Ce4elP/j5sQ3YWQki9cqmn8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:6d:4d:31:bd:21:ff:9d:15:8a:63:a6:28:a6:55:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Jun 10 06:00:47 2025 GMT
Not After : Jun 11 06:00:47 2025 GMT
Subject: CN=36a71dfa8d7bf275d3b2d3fc8598b893d7a8271b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7b:9d:60:10:a5:7a:4a:e5:91:b8:9c:f7:c9:
96:48:6a:bd:f0:c0:30:4e:24:a2:3b:82:f2:ab:3a:
77:72:14:9b:e8:9c:d1:56:48:aa:7b:f3:5c:0b:0f:
7e:ad:76:aa:22:21:68:3d:8c:db:b8:80:e1:16:05:
8e:08:e3:20:8f:a6:ce:08:b7:de:f7:da:6b:70:67:
f0:df:77:6c:92:31:85:b9:f9:6f:f7:58:6d:3b:83:
f7:a4:b7:80:0d:92:80:26:c3:e1:aa:c6:ec:23:33:
e4:e9:84:c3:64:11:02:01:2b:b4:e5:19:0a:50:15:
a0:4a:55:52:de:f2:7a:47:a4:5e:35:36:7e:96:3b:
a1:dc:ab:93:0d:e8:67:71:42:cb:03:48:a8:5f:11:
5b:d7:ea:f0:0a:6f:35:9d:55:88:bb:29:2d:d4:68:
b6:e8:7e:6a:d4:6a:bb:91:a3:74:c8:69:8f:6c:70:
a5:62:06:ac:20:06:bf:11:c4:f3:4e:e3:51:51:cb:
36:db:74:11:47:e0:4f:b2:7c:67:98:5c:57:7d:27:
da:47:a1:b4:5a:09:86:c2:57:26:18:06:e1:d0:5c:
42:94:20:04:00:ee:f1:9c:7a:03:da:71:8f:b2:00:
e9:8b:4d:cf:09:3f:62:85:2f:d0:1f:79:4d:e7:35:
4a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A7:1D:FA:8D:7B:F2:75:D3:B2:D3:FC:85:98:B8:93:D7:A8:27:1B
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:b9:16:55:4a:0b:ba:e0:7e:cc:75:dc:1b:5f:bc:2b:c0:db:
b9:91:dd:95:eb:e5:b3:fc:7d:1d:d0:19:83:5c:ef:6f:a0:57:
36:9e:41:61:d1:94:ec:03:d0:1e:d7:cf:e5:94:a8:4d:5a:f9:
08:3d:00:df:1c:44:76:84:78:38:70:db:15:62:fb:10:e5:b2:
d5:36:a4:3b:6a:04:67:63:9a:9f:b9:6d:58:92:d1:ad:21:35:
98:6f:9a:63:35:5f:06:a1:d5:d1:e2:87:6c:ce:03:0a:31:f0:
46:cd:d4:c2:84:b1:ef:83:16:fd:20:27:d6:48:ea:98:23:23:
4f:ba:e1:1b:f9:3f:1a:50:27:f0:bc:3c:c1:b4:1e:15:15:e0:
c0:b0:ec:f1:f4:f7:3b:f7:c4:98:6d:cb:af:f5:fe:e2:01:3f:
ab:b3:d6:d5:b4:32:3f:b7:6d:c7:93:e5:7d:20:1e:b9:35:b6:
41:3c:47:69:74:65:7c:bb:85:1f:3c:48:13:7f:a0:62:45:98:
1c:df:6e:c6:57:41:27:fd:f6:4d:07:92:0f:9b:32:bd:39:fa:
ee:42:d6:b0:a2:41:62:7f:3f:77:ce:11:0a:8c:af:74:7f:00:
d1:14:c0:8a:d5:46:b4:dd:b9:ba:7e:b7:11:91:93:9a:07:00:
85:ac:f5:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 13:12:44 2025 by rpki-client