Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
File: ICNzDgbEv7_6ypBeUxJldCwXirQ.mft (raw, json)
Hash identifier: 0nYvgtVxnQgy3DpvaDAXUGebyOXywCklZJtZRZ7b72c=
Subject key identifier: 22:C9:EC:D8:FB:64:F2:29:DE:29:56:03:57:9F:46:2D:B2:95:C6:9D
Authority key identifier: 20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
Certificate issuer: /CN=2023730e06c4bfbffaca905e531265742c178ab4
Certificate serial: 019921B22BA3E9B2ADB22C71B3C09DB1E358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
Manifest number: 1045
Signing time: Sun 07 Sep 2025 01:02:28 +0000
Manifest this update: Sun 07 Sep 2025 01:02:28 +0000
Manifest next update: Mon 08 Sep 2025 01:02:28 +0000
Files and hashes: 1: ICNzDgbEv7_6ypBeUxJldCwXirQ.crl (hash: bliYbOTD72Qn7+IQD0LSW69DNqzFRVnJtiIWRfmViK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:2b:a3:e9:b2:ad:b2:2c:71:b3:c0:9d:b1:e3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2023730e06c4bfbffaca905e531265742c178ab4
Validity
Not Before: Sep 7 01:02:28 2025 GMT
Not After : Sep 8 01:02:28 2025 GMT
Subject: CN=22c9ecd8fb64f229de295603579f462db295c69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e6:ad:60:d3:5a:c4:c1:74:d2:2f:0b:9f:5e:
34:77:d8:da:29:c0:8e:68:e6:c4:dd:03:8c:ac:f8:
7e:0f:7c:dc:83:e9:f1:ec:ea:ab:11:70:76:77:d6:
a2:8e:26:cc:d3:7e:69:c0:cc:30:86:9b:d8:18:9f:
5c:94:fd:34:5e:db:cf:50:60:c3:8f:85:6d:98:f1:
0b:e8:c1:27:34:84:73:f1:b4:e2:f8:08:3e:0c:2c:
1b:b2:ea:88:00:c7:a0:fb:f3:96:03:c6:2e:02:d2:
b4:b5:d8:09:f6:45:90:26:76:34:9d:29:94:fe:25:
71:66:9c:a1:d5:e4:5a:5a:c6:8c:65:85:45:c0:90:
b1:8e:c4:80:9c:07:54:4a:b1:a0:64:b3:16:7a:fc:
27:f3:e5:17:df:d3:c5:ea:3e:7e:cc:03:31:2d:e8:
63:9e:35:3a:51:bf:e7:1a:02:d9:7b:df:f8:32:0d:
a5:90:b2:0a:e7:4d:1d:e5:8a:60:df:e2:6a:ae:30:
6d:29:7d:fa:da:45:99:f4:cc:ff:fb:18:95:12:d0:
4b:a9:1a:3c:9c:52:0c:c5:00:dc:da:3c:db:03:4f:
8e:bb:36:a3:b3:a1:f7:c0:9e:15:47:a4:50:df:df:
90:50:ce:33:b8:c0:9b:9a:5b:9e:76:d9:ea:cb:53:
4f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C9:EC:D8:FB:64:F2:29:DE:29:56:03:57:9F:46:2D:B2:95:C6:9D
X509v3 Authority Key Identifier:
keyid:20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:27:34:a2:e6:2d:70:7f:47:3d:c6:cb:5e:97:c9:8c:b3:0a:
a8:42:f3:56:04:d6:f4:c3:a4:30:56:3c:32:e5:b3:53:e5:b7:
51:d5:80:f8:82:00:f3:5e:cb:83:27:4a:a4:b8:5d:f2:c4:21:
f8:ad:d2:64:1c:82:fd:29:01:43:e9:5f:b7:67:dc:ce:f4:34:
38:8c:b5:06:1f:49:32:03:0a:8e:67:c3:26:8d:24:04:0f:71:
ed:71:78:9f:71:99:07:0e:34:32:f4:75:6a:1f:01:a3:b6:03:
0f:6e:4a:aa:5e:37:08:fa:cd:00:d9:4e:bf:99:1c:b4:39:87:
0c:c2:2b:37:e3:87:cf:3c:0d:f6:21:ee:26:9e:71:af:9c:b3:
82:fb:1b:f8:ed:01:51:96:31:89:01:f1:b5:94:4a:c3:2d:54:
33:c2:5e:32:73:fb:4c:18:92:de:58:0f:90:cb:76:97:c8:13:
f9:bc:24:ef:69:cb:43:c7:5b:19:be:a3:81:73:be:6f:d9:6f:
c7:49:99:4b:b8:59:40:88:84:56:6f:8e:eb:9b:db:37:9f:16:
e4:8f:d7:47:6d:1c:58:70:fe:c3:fa:94:c2:ca:d0:c1:0a:6a:
79:41:b0:e8:06:58:d4:ae:7d:59:ed:92:bf:62:cd:02:9b:65:
76:5d:08:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:55:26 2025 by rpki-client