Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
File: isfq5knZVHsK0KsAerTopI3tTV0.mft (raw, json)
Hash identifier: BNkhWCx6hqeWs6ICYcPYKKIQASLPLLU65ATDs1HtTms=
Subject key identifier: EA:12:1C:97:AB:C8:AB:01:E2:E8:06:D4:81:9D:E8:8F:17:81:43:AA
Authority key identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
Certificate issuer: /CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Certificate serial: 01976C61D7C67AE20DEF30DFFA86993C42AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
Manifest number: 1594
Signing time: Sat 14 Jun 2025 03:00:40 +0000
Manifest this update: Sat 14 Jun 2025 03:00:40 +0000
Manifest next update: Sun 15 Jun 2025 03:00:40 +0000
Files and hashes: 1: isfq5knZVHsK0KsAerTopI3tTV0.crl (hash: HaiS/ngywWbmgK6bAyNkEDa1kwkBk6ejtpSOqJYkIsw=)
2: vASHsaghbXrziZGVrZp3z_dQ0hY.roa (hash: +D8Rri+Xk/SVSUJL6LzaxDMlSw5qtTcPP6AjI3TjSIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:d7:c6:7a:e2:0d:ef:30:df:fa:86:99:3c:42:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Validity
Not Before: Jun 14 03:00:40 2025 GMT
Not After : Jun 15 03:00:40 2025 GMT
Subject: CN=ea121c97abc8ab01e2e806d4819de88f178143aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d9:2e:27:57:14:1b:2b:63:c4:6e:cf:24:62:
d4:6e:0e:5b:fd:83:99:06:39:90:70:bf:1c:49:08:
93:6d:36:12:bb:8d:5f:a0:fd:12:41:55:93:e3:28:
89:6a:f3:3a:64:00:44:19:47:c0:cd:0e:b3:81:4e:
ac:f5:a7:a6:f4:38:d5:2f:9a:05:27:4f:65:2c:4c:
fa:5a:85:75:03:73:ca:3d:27:11:3c:73:fd:dc:4c:
43:b6:70:58:a1:56:f2:46:6d:26:57:53:97:fa:fa:
8c:1d:6e:b3:ce:f0:16:0d:67:b7:bf:13:4a:7e:25:
56:f5:ef:40:ea:54:33:d9:db:c0:c9:66:58:73:b5:
93:ba:60:85:49:98:2d:a3:f2:a4:9e:7b:e2:a0:f3:
b1:5c:23:be:9a:6f:a1:5b:8b:d1:e4:e3:1f:ac:55:
f9:38:2e:7b:9e:c7:bb:6b:37:21:65:70:0f:0d:7b:
f3:26:d9:8d:16:94:de:b5:4c:ca:ad:a2:d4:f0:0c:
f2:36:74:80:5e:be:da:c3:02:5a:2e:90:42:bb:2d:
cb:08:dd:92:3b:7c:6e:91:00:98:a5:82:5e:ff:85:
bd:e8:fa:04:75:e1:4a:95:0e:fe:2b:d3:9d:ff:ae:
4b:c8:63:84:13:81:89:50:8f:b7:ed:41:6f:b1:f8:
6e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:12:1C:97:AB:C8:AB:01:E2:E8:06:D4:81:9D:E8:8F:17:81:43:AA
X509v3 Authority Key Identifier:
keyid:8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:98:65:f1:dd:83:54:b8:a2:4f:82:e3:ba:ae:66:bc:1e:55:
a4:cf:53:a9:6b:d2:1a:0e:dd:a1:8c:22:12:ac:08:b4:8d:7d:
c9:67:27:30:d0:bc:ef:51:66:3a:af:c8:76:9a:a0:08:8b:7a:
88:ed:dd:2b:66:c8:e1:bc:4f:a1:03:95:d5:d7:d9:c6:66:17:
6c:01:fe:b9:31:49:34:df:8b:4d:5c:40:2b:d2:c4:c7:75:3d:
18:2f:96:82:78:4d:59:37:ea:14:25:1a:1c:6f:85:f2:88:06:
70:90:e1:0b:11:43:3d:88:3c:50:ad:41:48:9c:c6:74:1e:04:
ac:b2:72:d9:0a:6e:57:f8:d7:b1:e3:40:8a:6b:c9:1a:a2:79:
b7:a9:e3:64:63:5b:d4:ff:59:46:fe:0c:a9:4e:cb:fd:cd:19:
67:55:97:f2:13:b7:25:53:83:da:c4:05:b5:29:f2:02:51:af:
c4:65:a3:b4:eb:65:cd:48:5c:0d:ab:8c:1e:7d:8a:16:37:26:
eb:55:57:00:95:e2:5c:f8:c0:fc:ab:43:6a:e5:81:7f:c7:8c:
6d:ac:23:7c:c2:fa:fe:e8:83:25:ec:8a:a2:56:75:5f:c2:e6:
eb:6f:0c:4f:e9:1d:3b:0e:f3:45:cd:f2:ac:ec:f3:7d:35:fc:
30:6c:54:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:17:17 2025 by rpki-client