Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: RcLX9M/OEyIWHk3ESmMsb0xAn1tBUUMuxAcWiSj5djs=
Subject key identifier: 28:73:F4:EC:7C:2D:DB:C8:AF:35:B5:FE:05:E1:B4:F3:54:FE:64:90
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 01974C323899F2C4D0316C1F853C0B518814
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 21:00:49 +0000
Manifest this update: Sat 07 Jun 2025 21:00:49 +0000
Manifest next update: Sun 08 Jun 2025 21:00:49 +0000
Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: SjmBoTGjWAY8s9B0R2VFKR2m79ePROdeKRL7KVKtztI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:38:99:f2:c4:d0:31:6c:1f:85:3c:0b:51:88:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Jun 7 21:00:49 2025 GMT
Not After : Jun 8 21:00:49 2025 GMT
Subject: CN=2873f4ec7c2ddbc8af35b5fe05e1b4f354fe6490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a8:e2:ff:ec:47:b0:a6:a1:71:b4:95:5f:b9:
14:d1:e6:8a:fb:ed:f5:d6:c6:b9:ec:05:82:00:1a:
a9:ee:8e:fd:f6:7f:21:9c:61:6d:08:46:39:1d:0e:
f4:b8:81:2f:ae:4a:71:3f:44:68:0c:0f:55:89:99:
7f:91:c7:0b:98:cb:7f:c0:6e:9e:a1:ee:e8:75:69:
68:f3:6b:73:61:5e:58:7b:87:3f:3c:1a:df:9d:bb:
3e:38:1b:7d:00:0a:32:2e:97:25:8d:a3:4d:06:04:
e3:57:35:75:b2:e9:85:20:32:5d:78:a0:6b:70:cc:
ac:a5:fa:93:66:06:4f:b8:e7:d1:dc:3d:56:9b:4f:
bd:83:04:c9:69:69:77:3f:e6:92:00:8f:19:7f:c4:
9a:31:24:af:5b:88:59:7f:43:5f:7e:34:59:01:8d:
1d:88:1a:61:46:6f:1f:2a:78:91:8d:48:c1:ac:db:
54:35:8e:d7:4a:c7:94:33:e6:ae:6c:89:64:c9:d4:
91:40:92:26:35:74:24:6a:e0:95:f3:32:6e:94:9b:
53:9d:49:9e:aa:90:25:c7:46:ec:ff:ad:6d:df:84:
e8:d7:a4:98:2a:ee:12:ff:09:f2:8f:b9:96:b6:d9:
25:33:89:98:49:b2:ac:23:0d:52:ae:6e:90:7b:7f:
82:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:73:F4:EC:7C:2D:DB:C8:AF:35:B5:FE:05:E1:B4:F3:54:FE:64:90
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:dd:10:d1:d9:ac:e7:5f:d4:f5:d0:60:93:ba:ea:0f:23:4f:
53:21:19:b2:00:10:75:d3:76:ad:4a:c7:62:82:e2:55:e8:9f:
c4:6c:7e:8b:32:ad:d4:da:63:a5:e4:fe:a3:1d:39:7b:ea:a5:
ad:13:2c:57:cc:98:64:bf:9e:94:ca:ba:c3:7a:ee:26:17:a0:
9d:e8:42:1c:f2:e7:c1:a0:1c:69:1c:e1:cf:e1:6d:e6:06:83:
2f:14:12:e8:24:19:1a:b0:c5:e0:a4:fe:7c:42:5b:89:aa:8b:
15:4b:16:a2:a0:af:05:82:57:9f:5a:38:4c:f8:e5:f6:d7:65:
0a:c2:97:13:9d:58:1e:c1:fa:31:d5:16:88:2c:c4:d5:92:a0:
3a:55:bf:c1:2c:fa:63:4c:6f:64:43:df:c4:77:fe:32:60:92:
07:78:6a:62:09:db:38:71:05:2d:ac:4b:90:73:f9:b4:72:4e:
cf:06:86:ec:aa:d1:fb:35:9e:f0:9f:9c:7d:77:75:b2:82:af:
0f:1e:91:e0:ba:a5:ef:95:2d:de:09:78:18:d8:40:69:3b:22:
68:ca:bd:b7:42:5d:02:36:4d:09:49:36:58:04:fb:ec:7b:d6:
31:46:b5:18:cd:d3:7e:80:79:da:07:5b:8a:0d:8a:6b:d5:10:
a0:7f:e4:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:46:50 2025 by rpki-client