Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: N5VG7LsG+cbS1jOE7eq2vok8TJi5288zwRN6L60fry4=
Subject key identifier: CA:41:99:06:27:6F:51:65:C8:71:11:EF:B6:E5:42:40:DD:69:17:32
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 01976F629566323BC2249B71F5511C600AF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 101D
Signing time: Sat 14 Jun 2025 17:00:21 +0000
Manifest this update: Sat 14 Jun 2025 17:00:21 +0000
Manifest next update: Sun 15 Jun 2025 17:00:21 +0000
Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: XwxSWFBR/cWuKAi5Z++yQubbgroDpXhqLBdhhlrzOPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:62:95:66:32:3b:c2:24:9b:71:f5:51:1c:60:0a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Jun 14 17:00:21 2025 GMT
Not After : Jun 15 17:00:21 2025 GMT
Subject: CN=ca419906276f5165c87111efb6e54240dd691732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8c:04:5c:c5:74:06:ef:26:a9:7c:a2:96:25:
4f:e7:70:3a:e0:07:9c:51:eb:23:a1:5a:e4:86:c5:
a0:1e:a1:2c:d3:64:e0:48:71:10:48:f3:2e:9a:d5:
4a:86:e7:69:c1:78:69:87:72:63:ad:c5:c6:a5:cd:
4a:4b:6c:01:ec:95:98:80:b9:ba:5c:ca:ba:29:84:
0c:53:8b:64:f4:4b:98:52:7e:75:d8:68:d1:2d:07:
43:05:38:5a:af:c1:36:45:e6:e7:97:d1:b3:68:33:
9b:a3:27:2c:2e:46:74:58:87:93:4e:1a:0e:37:ea:
f3:42:38:4b:70:53:c7:a6:31:1b:c2:9d:33:3a:1f:
82:47:c3:ac:29:16:7b:00:1c:4b:ea:81:45:22:ef:
e4:3a:ee:56:ba:15:44:44:9e:54:92:05:52:2c:fa:
5e:3a:72:78:d9:61:cd:e8:f8:5f:c9:56:ca:7f:99:
3c:13:14:84:26:cb:1f:78:c2:04:38:fe:f3:df:b9:
80:f0:2b:d5:e7:5c:ed:e6:25:b2:92:ec:1e:63:37:
4f:12:79:8f:95:5e:82:db:a8:93:dc:b3:85:27:b7:
15:d3:d1:3e:7a:d2:b1:ed:79:f2:b0:8b:0f:3d:51:
ac:8a:f7:14:0a:e3:63:8c:20:c0:ab:8e:30:bd:de:
c0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:41:99:06:27:6F:51:65:C8:71:11:EF:B6:E5:42:40:DD:69:17:32
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:da:5d:17:1e:41:36:80:ed:2c:00:b9:0c:2d:43:d6:28:53:
a8:dd:fd:58:c2:6f:af:c6:b3:f2:64:26:85:1f:5e:39:56:fe:
7e:d7:90:df:25:6f:bd:71:86:fa:44:36:f6:1e:10:20:6a:43:
25:85:b4:64:61:23:e1:b0:2b:eb:df:f5:ce:fe:2f:c9:30:8b:
83:fe:a6:10:32:cc:68:39:a3:a5:66:93:fb:4f:d9:20:00:ac:
10:cb:34:10:74:60:41:69:9c:47:21:5b:cc:88:3d:dd:1d:2f:
05:0f:22:b3:d2:a0:20:98:93:bf:2f:09:4f:9d:f1:dd:48:1c:
27:b7:92:fd:b5:8b:9a:e6:33:b4:0f:42:e1:ad:a9:7a:71:a0:
a9:aa:2a:a9:8a:3a:97:84:0b:60:8e:95:77:aa:3c:51:6a:2e:
41:0e:a7:51:48:fe:6a:ed:08:99:8c:4e:52:cf:2d:49:64:35:
02:a8:5d:2f:30:07:1a:6c:d5:58:ce:31:91:37:ce:26:df:69:
44:b0:ba:80:d6:85:c5:55:f1:f5:38:63:76:e4:ec:49:19:8d:
9e:c1:41:df:f5:a9:30:3f:cb:86:6b:f7:28:2a:e9:a2:cd:da:
f3:b9:9a:8a:83:42:92:cf:5d:c3:b4:76:90:8d:3e:54:b4:e3:
f0:54:49:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:40:58 2025 by rpki-client