Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
File: I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft (raw, json)
Hash identifier: vZCVUt6P1qzsSa43NK56/LqKfm1jr/ekP/OLJI8SbBI=
Subject key identifier: 4F:6B:A3:7D:2D:C0:7D:A4:24:2B:E3:E0:BD:66:CD:EB:F6:F8:69:C9
Authority key identifier: 23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
Certificate issuer: /CN=235163d39db88816cddc597a5db5eae707d3de39
Certificate serial: 01974AB17CE602A8782E46B879D9C4A7C63A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
Manifest number: 1583
Signing time: Sat 07 Jun 2025 14:00:35 +0000
Manifest this update: Sat 07 Jun 2025 14:00:35 +0000
Manifest next update: Sun 08 Jun 2025 14:00:35 +0000
Files and hashes: 1: 0w9FBc0vTYSPsjAWKJJCnffXw-k.roa (hash: jLDk0IcPs8Pb9A807RQu6H+l6FnV9GFyw8DjOzzYbaA=)
2: I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl (hash: wU9qW0LKHOUitbAzZuBJdSRBJksEsYtMxY4IjWYzCJk=)
3: gKeAQqo6LHoqnf4Vl-8HYj5MieI.roa (hash: SOGNQLrBgWGkjZGYc/wKjLGsnvGnOrdebSHsTRsYQCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:7c:e6:02:a8:78:2e:46:b8:79:d9:c4:a7:c6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=235163d39db88816cddc597a5db5eae707d3de39
Validity
Not Before: Jun 7 14:00:35 2025 GMT
Not After : Jun 8 14:00:35 2025 GMT
Subject: CN=4f6ba37d2dc07da4242be3e0bd66cdebf6f869c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:08:d1:3b:03:c7:1b:1e:d6:a5:d9:f1:24:52:
33:79:75:93:6e:16:1e:10:bd:55:51:7f:94:11:2d:
3d:9a:3d:cc:b9:a0:3a:f8:33:ab:9a:2a:f8:68:21:
59:05:bb:5e:8c:8e:ab:f1:dc:ce:22:1a:86:fb:7f:
87:b1:74:17:05:df:85:f8:bd:b3:58:a9:cb:d2:e7:
b1:16:55:12:ff:0c:e6:1a:1f:2f:fa:df:fd:98:d8:
70:e3:2c:57:34:98:85:0a:90:0a:77:27:10:c6:58:
d4:cb:5d:6d:d5:17:8d:62:36:ff:47:10:8c:12:3f:
2f:dd:33:a6:4e:f6:36:da:30:37:28:77:47:0c:f3:
d5:a4:a7:67:0a:56:d8:a2:82:3b:a7:29:89:6a:01:
02:47:8b:3f:89:a4:8a:8d:dd:5e:f9:06:9d:74:71:
85:54:51:40:c9:3f:6d:5c:25:87:42:36:53:f2:1f:
e5:ed:c5:d8:6e:9f:cf:93:4f:c1:7a:12:9d:5d:8f:
33:c5:78:cf:97:2d:e7:82:0a:0d:d3:ee:30:d9:2d:
c1:c5:0d:8c:c6:35:2e:d8:6a:80:97:db:c4:3b:ee:
f3:7d:8e:05:f6:fa:fe:0c:90:ff:f0:d6:2f:f5:34:
52:08:b6:83:8c:99:2f:39:0f:d4:6b:ed:5c:07:1e:
0a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6B:A3:7D:2D:C0:7D:A4:24:2B:E3:E0:BD:66:CD:EB:F6:F8:69:C9
X509v3 Authority Key Identifier:
keyid:23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:7f:53:7a:78:05:ef:4b:96:33:14:92:91:3e:6d:31:a3:98:
1d:9d:ed:df:fb:15:27:03:d1:63:99:f1:47:65:6b:09:af:c3:
c8:05:86:5a:2d:d5:74:f3:ee:51:f6:24:35:ca:3e:9f:a1:3e:
74:a9:e5:b1:aa:64:27:35:d2:04:97:42:88:8a:db:df:8f:49:
0e:36:35:eb:1a:84:17:92:c3:da:4a:26:d0:b6:6d:53:8e:de:
73:9a:2b:b4:20:38:48:48:ef:80:b6:e7:01:b9:d7:47:28:84:
5e:83:38:d0:96:43:60:e7:82:a0:ec:b3:7c:8c:30:77:d5:c2:
cc:c4:3b:93:d6:e2:16:d4:f1:b0:47:22:d6:72:7a:55:73:71:
80:0d:d2:71:71:7b:76:07:ae:cc:01:22:cd:2d:ee:92:f9:b9:
06:ef:1a:8e:1b:51:77:55:79:79:d3:8a:7f:24:21:88:a6:93:
c7:22:55:14:7e:0e:0b:4c:69:bb:a1:95:7c:71:fa:1c:a8:66:
23:40:bf:fe:d7:e5:46:6e:05:ba:ac:d5:7c:1a:5f:88:1a:a8:
19:a1:e5:49:ed:0e:6f:82:c1:e6:70:21:55:58:d6:a3:00:73:
b8:9c:bc:10:47:2e:5e:39:63:c3:ae:95:b6:61:87:87:d6:30:
af:7c:81:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:43 2025 by rpki-client