Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: YaiKeNImHw67lpBYdT1PbUq0xidZrsWfqN7aWrzC6Ps=
Subject key identifier: A3:6F:94:C3:A8:6D:FB:2C:37:B9:35:67:99:BB:A8:2E:72:82:AB:53
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 01976BF46A04BA8EDD2A1524AAFC5B5EBBBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 02EE
Signing time: Sat 14 Jun 2025 01:01:09 +0000
Manifest this update: Sat 14 Jun 2025 01:01:09 +0000
Manifest next update: Sun 15 Jun 2025 01:01:09 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: oHqpxZHuN9leDP0MaLLwKPiE92B3NVC+405mhisJU9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:6a:04:ba:8e:dd:2a:15:24:aa:fc:5b:5e:bb:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Jun 14 01:01:09 2025 GMT
Not After : Jun 15 01:01:09 2025 GMT
Subject: CN=a36f94c3a86dfb2c37b9356799bba82e7282ab53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:61:39:0b:0d:2d:56:ec:07:a2:ec:57:0e:f6:
2f:35:17:31:e1:05:61:c8:84:08:2c:52:6b:ad:d3:
2e:64:ca:af:9f:6b:6f:d1:90:64:8c:56:69:20:30:
eb:c2:53:53:4b:8e:81:eb:ef:50:f4:37:ab:ab:f3:
c6:30:a6:ba:f7:85:0b:a1:f2:40:53:0c:ad:29:0e:
c8:aa:ef:d6:c1:78:26:e7:77:e9:b3:84:eb:06:5a:
e4:2c:a0:f5:e4:f4:47:aa:40:ff:d5:4c:0c:9a:53:
e1:a0:80:c8:6e:a6:22:fb:f7:3b:18:a7:e6:38:ba:
c9:f8:1a:3e:8e:e2:79:93:69:c7:00:af:28:9b:83:
d5:6b:4e:c2:ac:dc:21:b9:2b:40:38:5a:a7:e3:2d:
da:99:ab:d2:31:87:27:7e:c3:0c:3a:55:1b:80:b2:
e5:d3:f2:62:72:6e:94:f4:40:5a:7b:e2:f3:ea:13:
77:f2:b2:4f:11:28:7c:f9:3d:b0:78:5d:3f:c9:a3:
78:fc:c3:50:37:31:ab:3b:19:e1:af:12:55:85:db:
7d:ab:09:d5:5e:cc:e2:f2:b8:89:d2:6a:ff:57:e1:
03:09:b4:d7:4e:43:35:c0:75:3e:ea:c2:63:d6:f2:
bf:35:3a:6d:4e:f6:ea:f1:12:2e:55:a0:93:6b:03:
c3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6F:94:C3:A8:6D:FB:2C:37:B9:35:67:99:BB:A8:2E:72:82:AB:53
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:ab:b3:83:32:60:00:35:93:96:1a:25:95:e6:d9:4b:f4:0f:
e2:31:2a:b1:e6:cc:49:e0:d9:bf:13:ff:3e:52:12:ba:fb:d4:
c2:3b:f8:e2:c0:ee:d2:dd:63:7c:ff:3e:76:95:bc:91:8d:a0:
26:e9:6a:a6:9c:fc:e2:76:f9:35:1a:e3:0a:aa:ec:97:31:fc:
49:36:bb:43:dd:71:c7:17:c0:41:a3:8d:e6:e0:06:b3:15:04:
40:ac:a5:e1:b7:1a:00:29:c9:de:5d:ff:18:83:2a:a0:9b:62:
c4:5c:a1:c0:a6:e3:df:ca:82:87:49:65:a7:52:d9:7b:1c:70:
c9:9e:ce:6e:a6:f3:3b:b3:b3:8e:c2:55:00:a5:2a:8d:ec:4f:
51:2a:9e:d1:32:b4:0f:4b:b3:a6:9f:69:e3:c7:1b:45:dc:53:
0c:03:c2:28:39:85:95:1c:9b:40:f3:82:7d:66:9d:7b:14:3b:
e7:c3:17:9f:21:d6:2b:bb:a1:12:61:7c:11:c6:2c:4d:4c:3a:
f4:b5:a2:98:70:1a:91:51:27:3f:01:97:38:46:e5:97:e9:17:
07:1a:f0:3f:4c:dd:d7:26:99:5a:6a:16:7b:b1:93:77:f2:45:
be:02:01:4c:32:54:6e:1d:ce:ca:4c:92:ab:40:22:7c:9a:44:
81:cc:fb:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:39:06 2025 by rpki-client