Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
File: ib1U59acFH1rVvjGognT3q6id90.mft (raw, json)
Hash identifier: 4J3LkIQRrkYggrk1gNPooM62FoARAGSA0SEr5jPnuZ8=
Subject key identifier: 87:93:B9:9F:7B:4C:D6:89:2D:9A:5F:1B:3E:84:ED:FE:C6:4F:EC:E1
Authority key identifier: 89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
Certificate issuer: /CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Certificate serial: 0197463013C6979823276E2312CEDD23FF66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
Manifest number: 1028
Signing time: Fri 06 Jun 2025 17:00:45 +0000
Manifest this update: Fri 06 Jun 2025 17:00:45 +0000
Manifest next update: Sat 07 Jun 2025 17:00:45 +0000
Files and hashes: 1: 3TtQeJqIixTVaSWBRgJKRyJiMtM.roa (hash: +aaxMIBwckBc+5Nn6sLOaOsjDThvNfT/bDobAmTCJB8=)
2: 8GtdV5vXVwAD_7uzLpWTP9X8Eis.roa (hash: va61wvJzxODdeX2y1RUDtdwQklO+DI+rxflcf0q3NHg=)
3: ib1U59acFH1rVvjGognT3q6id90.crl (hash: vSAr7Lm7fhXmAI1VXSufJah9r4tqsNkbF0ws2Ky1mb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:13:c6:97:98:23:27:6e:23:12:ce:dd:23:ff:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Validity
Not Before: Jun 6 17:00:45 2025 GMT
Not After : Jun 7 17:00:45 2025 GMT
Subject: CN=8793b99f7b4cd6892d9a5f1b3e84edfec64fece1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a7:bc:19:6e:f9:6c:fc:f7:9e:01:af:5e:1d:
32:bb:e6:0c:79:6e:42:3d:1c:0e:d0:47:95:d2:67:
5c:4f:5a:0f:07:76:58:27:16:70:b6:7b:3c:7a:38:
f8:69:1e:b0:db:5e:11:56:30:39:73:92:8d:88:bc:
3c:88:f5:89:b0:13:40:42:db:fe:df:e3:10:f6:7a:
c6:52:61:14:b3:64:29:c1:04:2a:86:2b:bb:7a:06:
27:9f:18:cc:18:c9:4b:32:10:77:8c:0a:d5:c2:95:
2a:89:8e:4a:3a:77:26:8d:4e:03:43:de:8c:4b:59:
36:24:77:55:10:08:9b:df:13:24:f5:15:10:4c:2e:
79:ba:cb:fe:28:e4:70:d8:0c:53:34:fe:f7:5d:03:
d1:78:fc:86:5b:9d:4d:d1:08:60:f2:83:d7:b0:61:
0d:66:e9:8d:c6:38:5f:f5:03:66:72:cf:01:0a:ac:
c0:cb:26:d1:5a:a3:45:c8:00:7d:23:58:33:d0:e5:
ee:02:64:7e:6a:84:57:af:83:68:11:95:2e:bd:68:
07:bc:48:2b:98:8b:32:3a:cc:ec:c8:0f:86:61:2d:
58:7f:7b:ca:5c:7d:ba:b5:15:60:cb:ee:61:18:e0:
01:e2:9c:f8:fa:3d:a8:85:32:00:6b:1b:1c:b0:1f:
f8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:93:B9:9F:7B:4C:D6:89:2D:9A:5F:1B:3E:84:ED:FE:C6:4F:EC:E1
X509v3 Authority Key Identifier:
keyid:89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:6a:76:fa:41:f8:f4:d9:ec:ce:0d:e9:92:ae:23:eb:ee:aa:
46:fc:df:aa:b2:d5:57:c1:a0:e7:b4:40:4c:7c:ba:3c:fb:9d:
88:f3:12:6e:ff:4b:97:01:2d:6f:50:da:65:9b:0a:72:1f:1f:
1f:08:a1:8f:88:0b:9c:4e:af:4b:f2:96:90:8f:8c:05:94:75:
85:76:c8:e9:1e:40:0d:d5:2a:ef:9e:f3:4c:63:ad:14:23:ad:
aa:97:78:77:4b:90:6a:e8:3d:5a:3a:d7:28:2b:4b:72:d0:2b:
c3:69:23:a6:c1:5f:d5:37:21:72:a4:ea:cd:39:35:00:ac:13:
ac:4d:d9:de:f5:75:6d:d3:bf:a6:65:b5:d1:50:cc:60:03:56:
87:57:26:d3:2c:00:a7:98:3b:8f:13:e2:58:19:9a:dc:b9:aa:
ad:f2:19:08:d8:29:9d:25:87:5a:15:52:58:45:33:f3:5c:37:
ff:a3:5a:4d:71:98:bd:f1:25:f5:f5:24:8d:06:0d:7c:f0:c3:
74:c1:2c:13:e4:98:8f:df:e9:69:d3:55:82:90:b7:81:e1:bb:
1d:f5:75:e6:c1:3b:13:4e:b6:17:f1:fd:41:f6:35:25:12:06:
06:09:a9:2d:36:7a:a2:aa:20:5f:70:a2:8a:f8:98:f5:8d:ad:
c6:7b:af:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 19:41:45 2025 by rpki-client