Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
File: i7i2EnIdTUwtB8v-LklemGoPAm0.mft (raw, json)
Hash identifier: oD27kzh820Q/GBnyk4PefgPV4+ySPktsOoxWr7OiADo=
Subject key identifier: 2D:8B:C2:90:D7:5E:DD:C8:01:91:2A:F4:3D:AA:FF:91:DB:44:EB:DE
Authority key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
Certificate issuer: /CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Certificate serial: 01974AE8AEDF27EBE4C82C31FA1760233C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
Manifest number: 055E
Signing time: Sat 07 Jun 2025 15:00:52 +0000
Manifest this update: Sat 07 Jun 2025 15:00:52 +0000
Manifest next update: Sun 08 Jun 2025 15:00:52 +0000
Files and hashes: 1: i2xjHboexoRTpg38Qi-okoPsUcQ.roa (hash: x9dOoFm67St5fPryA+wWNLVDwzCG4EBSO5jTeQtPIqE=)
2: i7i2EnIdTUwtB8v-LklemGoPAm0.crl (hash: ePcocJ1wtvFXkjXQQK3pumPFmRIJX04lsv0Vln/W70o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:ae:df:27:eb:e4:c8:2c:31:fa:17:60:23:3c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Validity
Not Before: Jun 7 15:00:52 2025 GMT
Not After : Jun 8 15:00:52 2025 GMT
Subject: CN=2d8bc290d75eddc801912af43daaff91db44ebde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:50:52:5d:a8:76:46:d5:66:a2:ef:5e:95:dc:
cd:a8:f5:15:48:e0:4c:f4:d1:f5:6f:97:a8:d1:c9:
a2:fd:01:02:2a:c6:91:bf:1c:c3:34:d7:16:64:12:
98:24:e6:53:6c:8d:a7:70:6c:54:c4:54:a3:11:0e:
e5:f8:27:e6:89:12:ae:fd:9e:40:a2:68:52:f2:a6:
30:fc:65:0b:58:14:d7:7c:9f:ab:10:a8:97:1c:97:
c5:2b:c2:33:2b:8f:93:09:ee:15:79:7c:5c:9b:1a:
c2:07:5b:d1:ee:d3:87:cc:18:e7:c5:41:34:c2:a5:
47:ac:62:d6:b2:0b:3f:cf:98:00:10:41:b0:22:cd:
16:44:8b:8c:b7:63:10:ed:a1:7e:12:20:af:b2:23:
ca:4a:e6:02:39:b3:d0:d0:c1:71:96:03:98:d8:d7:
14:2b:a5:89:df:01:4f:89:30:bc:21:7a:31:92:6d:
0a:3a:16:4d:8c:84:a3:e1:9b:dd:0d:3a:91:d3:c9:
f7:94:38:ee:58:b9:38:c8:c7:db:9b:68:94:d1:d3:
ab:b4:bb:38:4b:12:63:f7:ba:97:31:71:f6:35:f1:
05:5d:76:ea:4d:39:91:e7:f9:40:c1:f4:38:67:a7:
df:b5:93:14:10:86:65:fe:0b:7d:b8:a8:32:f4:64:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8B:C2:90:D7:5E:DD:C8:01:91:2A:F4:3D:AA:FF:91:DB:44:EB:DE
X509v3 Authority Key Identifier:
keyid:8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:00:59:1d:75:cf:45:36:7b:bc:33:a7:ed:0b:c6:b3:9b:03:
78:55:fa:4d:dc:20:e5:e9:ab:bb:17:b4:6b:82:7e:be:f1:67:
65:94:a5:61:f3:76:f4:14:1d:fd:a8:ac:4d:92:57:e3:dc:94:
3e:63:71:8c:84:68:f4:23:56:cb:b9:ca:6a:62:1e:f9:27:a6:
db:72:6c:a9:21:af:34:12:91:11:da:a6:6b:af:72:30:6b:be:
a1:b6:5e:fd:e0:ca:c1:eb:0c:4d:62:e1:3f:34:97:13:c2:e1:
7f:98:f3:ad:9f:52:bb:2a:9c:28:5e:06:5d:41:8f:42:9b:b9:
81:ab:07:69:83:37:29:09:8b:f1:ed:6c:66:05:ea:30:23:a8:
14:82:68:f5:11:0f:17:5d:e4:de:c6:8b:3e:fd:7d:35:82:1a:
0d:51:cc:be:2d:60:86:03:bf:fd:4a:d2:53:87:9f:be:2b:7b:
86:15:8a:17:fe:34:13:73:20:53:73:bd:a6:f4:91:ad:b5:32:
db:0b:bc:be:f6:87:e2:47:a1:12:9d:f2:1b:f3:bf:1a:77:90:
4a:76:10:35:0f:65:bb:66:f1:55:df:cf:9e:ff:34:3d:c1:24:
8a:84:90:87:fd:d8:6f:4b:b5:56:d6:e8:73:7f:bc:b1:0e:53:
9f:83:ae:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:42:59 2025 by rpki-client