Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
File: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft (raw, json)
Hash identifier: 8OTC5vWEEq/gc2AeCATNnQsLBf6OA52b+LRxql4Ene0=
Subject key identifier: AB:CF:22:32:0A:94:E8:AB:24:0F:48:29:9C:8A:84:DC:BF:F2:03:50
Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Certificate serial: 01977565BE617A0E1F68F932D402C31FA06D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
Manifest number: 0C7D
Signing time: Sun 15 Jun 2025 21:01:31 +0000
Manifest this update: Sun 15 Jun 2025 21:01:31 +0000
Manifest next update: Mon 16 Jun 2025 21:01:31 +0000
Files and hashes: 1: 5h9N95WR6G3ZttKnfAaRL_2XfKs.roa (hash: Wu3zPxSXCsayNSHW7YvNoHAYtN3gQjTl9ho9qfJB69k=)
2: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl (hash: KODo2NIHv5NS1QQkX8gx5a4VIRN7rRtZq1N5Q25sTh4=)
3: mWDbGVVpCQ84rC7Zv5fGnlAS0IM.roa (hash: p+WC5acLc9Vp8ZBrdZrqWpaCEJthWpQv4NHUQY+p8+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:65:be:61:7a:0e:1f:68:f9:32:d4:02:c3:1f:a0:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Validity
Not Before: Jun 15 21:01:31 2025 GMT
Not After : Jun 16 21:01:31 2025 GMT
Subject: CN=abcf22320a94e8ab240f48299c8a84dcbff20350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:59:48:1c:38:5a:1c:b5:5e:93:03:78:a9:56:
54:ec:8f:31:b3:51:82:93:2b:0c:0d:d0:47:e2:dc:
ee:18:65:2c:77:25:f9:60:db:6c:78:50:af:b3:01:
54:dd:15:4b:57:df:b6:66:f0:2d:d0:7d:b6:f2:b8:
fb:86:71:95:9b:00:3f:dc:a1:74:6c:d2:d3:e4:40:
03:f4:f8:a3:82:64:69:8d:83:8f:6c:fd:e1:f2:b6:
6a:74:27:45:b0:a6:49:1b:db:09:79:b9:47:31:42:
c1:a0:07:6d:53:4b:73:30:f4:32:0c:22:7d:96:31:
d3:9b:d0:5d:d8:01:3c:66:f5:0b:1f:81:f5:9b:c0:
df:b7:44:14:57:de:78:83:8c:02:e7:cf:3b:32:6d:
9b:07:9e:89:a5:7e:97:59:6d:81:52:b5:bd:c5:66:
c9:8f:5b:58:f0:18:e5:bc:cb:3e:d4:d5:27:f5:0a:
df:a8:3b:4e:4b:f0:f4:0a:57:07:05:15:fc:68:bd:
e3:0c:37:69:2c:73:9b:45:e6:ed:19:25:78:ca:e9:
ea:1a:3b:cc:e3:56:6b:12:71:93:a6:7a:d5:46:29:
b8:55:03:d5:91:15:a5:4e:3e:4c:56:6a:42:73:a0:
76:16:66:1d:d4:c3:56:cf:d0:75:71:4e:49:38:7d:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CF:22:32:0A:94:E8:AB:24:0F:48:29:9C:8A:84:DC:BF:F2:03:50
X509v3 Authority Key Identifier:
keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:03:f3:40:67:a8:6b:88:09:b2:a9:56:14:99:14:f9:d9:fc:
d7:6b:de:47:a9:06:1a:1e:09:5e:5d:ef:a6:44:b6:fc:61:da:
22:15:13:c3:41:b7:0a:76:32:e3:cf:5d:7c:f2:e7:59:b0:67:
c3:b1:dc:ce:4f:28:ab:7b:7a:be:ed:b5:3b:54:6c:cf:cc:0c:
ca:c6:f4:f0:18:24:df:81:eb:32:db:eb:7c:b9:83:63:61:b9:
68:72:14:6e:4d:c7:1b:bc:78:9c:db:64:4c:65:e1:bb:7c:b9:
da:43:f6:e9:7d:b3:c9:4d:64:d9:9a:b3:cc:a5:f4:a5:e7:e4:
58:7a:f1:fc:3b:9c:d0:b8:64:f8:d1:06:d4:4a:1e:1c:6d:27:
b2:66:3b:02:52:da:a5:66:bb:d8:a0:de:14:80:de:ef:dd:3d:
24:d8:d0:cc:da:96:51:ce:c0:4f:e1:8c:99:1d:34:e7:b4:8a:
06:7f:42:70:9f:91:cc:25:e3:51:df:72:e0:dd:47:6c:9d:68:
98:30:bd:d3:5e:f8:83:15:d1:20:55:28:5c:18:f7:00:1a:4c:
38:e0:83:ad:1c:b2:85:27:9b:a0:95:49:0e:9e:2a:9d:74:1b:
3c:34:f2:5c:ec:5e:c3:64:fd:d7:69:78:22:ca:f1:8a:f0:de:
ab:34:70:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 01:29:22 2025 by rpki-client