Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
File: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft (raw, json)
Hash identifier: L6ERfPNF8IAhCjmeZPdZu6BRnOP468lZ5ViVip48Yfc=
Subject key identifier: 1D:B6:CC:E1:DF:22:B9:73:85:FD:44:86:29:73:0D:94:C0:B6:D7:02
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 019774528749603CE78138BCB1761388A104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
Manifest number: 1598
Signing time: Sun 15 Jun 2025 16:00:54 +0000
Manifest this update: Sun 15 Jun 2025 16:00:54 +0000
Manifest next update: Mon 16 Jun 2025 16:00:54 +0000
Files and hashes: 1: DE9IUhyQDVKAZFd3LetU9Q2xs6k.roa (hash: 4yKIJoSmqEpGXf1pIollJ7FnnZ1pkmaGTlVLtjz3pSc=)
2: H8-4BKw4Tio0v7fBDDkOvu0xYf0.roa (hash: KAd/cINuj3Zmkb8yZBl9rfV147mzpewaBmWKPtSwHrI=)
3: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl (hash: dBmsRYholFViMaTmLPU8/jrmXesJ58hK2fpo9cZMxY4=)
4: j_UhRom1_CjoZ8ktPpSsCzemlX0.roa (hash: p3RE9tXJ28D2EkcXNDeylKcBqqXVLJJQRP9qM16ttXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 16:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:52:87:49:60:3c:e7:81:38:bc:b1:76:13:88:a1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Jun 15 16:00:54 2025 GMT
Not After : Jun 16 16:00:54 2025 GMT
Subject: CN=1db6cce1df22b97385fd448629730d94c0b6d702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:14:de:4a:3a:70:21:5f:9a:5e:75:66:ea:57:
9f:89:d2:72:f3:44:88:09:12:10:70:4b:f0:21:1f:
d9:bd:5a:92:9a:ff:4d:fa:3b:a9:a0:1d:0a:97:7a:
d3:e7:b6:6a:e4:61:e7:71:ee:1e:c3:ff:40:11:7c:
f6:41:f0:c0:02:7a:09:c3:38:29:3b:a8:c0:5d:8f:
71:e6:aa:03:24:cc:a1:76:76:d2:06:dd:ab:2f:f6:
4f:10:d3:b7:b0:46:d0:4f:a9:28:6d:d9:44:6d:10:
24:3d:0a:b9:36:ef:8e:dd:75:c1:a6:65:4e:9e:c7:
98:8b:c5:d6:fc:fc:a5:48:ab:7e:7e:d7:ea:e8:d7:
65:15:fc:54:74:2e:d4:18:69:26:3f:9e:61:71:81:
d9:1c:c9:6d:53:ec:b2:e0:de:53:ca:2a:f7:e0:97:
1b:11:8f:4e:d6:95:ef:bf:41:27:49:dc:e0:f2:74:
c9:b7:d0:a8:20:f5:13:c3:1c:b0:ff:f3:36:6f:07:
93:de:3e:76:8c:8d:c7:e5:d6:0e:13:fa:db:ec:ef:
b7:ad:d8:d4:eb:1d:4a:15:bf:c0:d0:d3:63:10:00:
4f:1f:11:34:4d:91:ed:08:42:c1:75:6c:62:23:98:
b8:f7:cc:d0:31:40:22:8a:26:12:d3:9d:2d:f3:40:
4b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B6:CC:E1:DF:22:B9:73:85:FD:44:86:29:73:0D:94:C0:B6:D7:02
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:21:f9:b6:91:c5:8c:9e:64:46:a4:27:5b:18:3d:f6:43:f2:
a6:6e:7c:0f:5a:ed:3c:b5:5c:53:c4:ab:c2:dd:f2:c4:6c:cf:
45:9d:cb:a7:b2:5b:03:16:3b:5c:a3:d1:3a:3c:af:19:5b:26:
9f:08:d5:0c:f0:28:1a:b9:88:de:7c:dd:05:7f:f0:ec:61:74:
bd:7b:bc:20:d9:7f:83:00:3d:ed:f2:a7:dd:b0:19:99:97:20:
48:3c:51:c0:71:30:56:b6:9c:49:d1:5c:fb:15:84:08:3f:26:
84:8a:c9:9b:d2:98:b8:80:58:66:eb:e9:4b:35:fa:72:ea:70:
13:31:5b:06:78:cb:a5:91:c5:65:59:72:1c:2d:d9:ed:57:16:
e3:9f:ca:cd:af:37:9b:4d:18:b2:f7:8b:55:55:c9:d0:90:d6:
16:2f:d1:fc:c2:dc:80:d2:72:da:aa:c9:a7:ed:5c:dc:16:88:
5e:0e:e6:70:cf:54:b5:69:29:34:45:95:b3:f2:d7:ea:c7:58:
77:de:59:4e:00:e3:14:42:2c:5e:34:1b:86:16:ff:23:29:67:
93:2f:41:f1:25:ab:cc:b2:47:20:48:97:da:93:96:22:58:50:
1b:b7:66:ab:d6:d9:5b:c3:db:2f:44:3a:ff:c2:81:1e:bf:eb:
7c:bb:20:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 02:26:36 2025 by rpki-client