Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier: /+1BFLAJfQb9VjIN4vd1lMsiPE+yXwIfbE68IB28mJU=
Subject key identifier: E1:2C:51:52:8C:4D:07:53:88:C3:A0:36:62:63:23:0B:CB:56:E6:E1
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial: 01975B37107A27FEF04ACBE12B8E932350C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number: 021D
Signing time: Tue 10 Jun 2025 19:00:24 +0000
Manifest this update: Tue 10 Jun 2025 19:00:24 +0000
Manifest next update: Wed 11 Jun 2025 19:00:24 +0000
Files and hashes: 1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: scGjsi91q1jwUyuVrHD3ovzmpFD+PwwQN55qWXPtX9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 19:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:37:10:7a:27:fe:f0:4a:cb:e1:2b:8e:93:23:50:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
Validity
Not Before: Jun 10 19:00:24 2025 GMT
Not After : Jun 11 19:00:24 2025 GMT
Subject: CN=e12c51528c4d075388c3a0366263230bcb56e6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8c:4e:75:90:90:69:67:77:3c:b1:b3:38:7c:
a2:ba:aa:ea:4d:16:34:7c:2e:59:27:2a:be:f4:8a:
a0:46:ca:33:88:d9:68:a5:c2:07:3d:e4:d6:18:0d:
ef:e8:40:61:7d:fe:45:88:1a:46:3d:a5:cc:c4:71:
77:9a:b0:1c:fb:f5:97:cb:a2:83:9f:d3:76:08:7c:
8f:c7:63:cc:23:37:81:3a:ad:79:fd:36:cb:29:37:
30:70:9c:60:28:88:75:27:ff:fb:e9:5e:26:94:91:
b9:c3:fe:51:17:a9:71:ba:e7:7d:44:4a:30:f0:14:
64:77:f9:06:41:49:0e:27:64:ff:b3:b4:70:74:ef:
95:29:b9:b5:ac:db:74:d0:70:e9:60:06:b0:8f:d4:
5f:03:12:a0:b0:1a:10:f2:6d:01:66:ec:d6:be:b6:
e3:14:da:1b:05:9b:8a:db:0e:da:6e:da:f3:d8:4a:
3d:5e:34:f8:ac:30:f5:d6:ab:f4:87:f1:4a:c3:b8:
bc:5e:4e:4d:cd:f2:66:16:cb:ef:59:f9:55:7a:2a:
1c:a6:b0:81:60:dc:6c:e9:2b:26:1a:66:5b:fa:96:
b8:12:4f:91:dd:2d:98:28:83:4c:f5:ed:ae:25:6c:
86:12:cc:34:30:ad:b8:64:a9:00:da:1d:05:9d:16:
30:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2C:51:52:8C:4D:07:53:88:C3:A0:36:62:63:23:0B:CB:56:E6:E1
X509v3 Authority Key Identifier:
keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ef:78:74:74:c3:45:ec:3d:0f:e8:71:c0:ce:97:4c:9e:f7:
82:75:b8:af:e1:10:74:36:45:72:c2:44:8b:77:6b:f7:62:88:
67:f6:ad:f1:65:cd:ff:cf:3b:6a:7c:dc:60:01:8a:b0:ba:bf:
19:55:6f:f6:0d:ed:2e:ce:8e:65:0c:86:90:e7:52:75:92:d8:
02:aa:95:d2:fa:0b:f3:56:84:61:67:b3:dc:6f:92:de:70:93:
7d:ff:38:6b:8b:6b:a3:ec:3d:39:83:a3:7e:3d:f5:59:d0:8e:
d2:48:e3:8b:c8:5a:88:50:90:3e:da:6c:a3:5a:5a:16:a1:7c:
db:31:43:53:37:05:37:66:bc:62:ab:1c:57:a6:b8:d7:ee:15:
a8:85:f5:6f:a6:ab:dc:0d:8c:8f:4f:d6:46:34:89:1e:6c:2e:
16:c0:61:8c:26:12:28:f3:de:04:99:3b:74:b6:38:46:01:e4:
4e:68:32:7c:33:6d:40:67:80:97:9c:27:fa:07:87:a0:9b:9d:
00:bb:0b:61:6b:ab:97:5f:6f:20:01:4c:f1:44:c6:43:0a:43:
45:97:6f:30:f3:ad:5d:59:ce:fa:6c:63:bd:5b:10:d6:14:23:
f2:35:93:21:15:51:3a:74:1b:5b:a6:e4:f8:18:83:34:9a:49:
c3:e3:c1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 02:03:29 2025 by rpki-client