Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
File: IqyN_06Z0-IomvY7FdVdJFDIQsM.mft (raw, json)
Hash identifier: xYGMM3Vqs/5tgT4KDrEIn6T84L+oNC8u2clM5pQQmCQ=
Subject key identifier: 3D:14:63:09:E0:F6:DA:08:8B:6F:8F:CB:19:F4:0E:31:BA:83:A7:30
Authority key identifier: 22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
Certificate issuer: /CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Certificate serial: 0197778A318FF2FBE8BF4BB5C7967F1F80C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
Manifest number: 04B5
Signing time: Mon 16 Jun 2025 07:00:34 +0000
Manifest this update: Mon 16 Jun 2025 07:00:34 +0000
Manifest next update: Tue 17 Jun 2025 07:00:34 +0000
Files and hashes: 1: 1YFZUWeFsFFhNH6pH-z6oTf7e1M.roa (hash: N3xo7g5jGJQoS/qFHbtXSlXVpbFrX6/YoQPrJBEqRCc=)
2: IqyN_06Z0-IomvY7FdVdJFDIQsM.crl (hash: h8uycZTf18Pgna1NaQHjTsVHcLcXVep5Ntd3qd1LSj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:31:8f:f2:fb:e8:bf:4b:b5:c7:96:7f:1f:80:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Validity
Not Before: Jun 16 07:00:34 2025 GMT
Not After : Jun 17 07:00:34 2025 GMT
Subject: CN=3d146309e0f6da088b6f8fcb19f40e31ba83a730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9c:a1:f3:d6:50:40:48:8f:c3:8d:72:d9:b3:
9f:6d:20:43:f2:ae:73:fc:be:20:c1:83:45:23:05:
b1:23:69:5d:04:a5:1b:93:c4:08:4b:e4:c0:29:b4:
54:f7:1e:28:ae:f2:c3:2d:fa:ea:59:aa:ac:58:a7:
09:dc:8b:1c:22:47:08:fb:85:82:4d:34:09:4f:a8:
76:be:78:84:a5:2f:ea:f2:14:c5:b7:30:ea:6e:7f:
d7:76:df:1d:f1:6a:51:d9:32:fa:e3:98:32:11:9e:
06:af:62:91:3f:5e:6e:e6:9f:ab:c8:4b:7b:7a:db:
20:c0:70:e7:89:d6:51:c0:57:ae:a3:9a:b4:21:f3:
b5:9c:e5:b4:79:95:93:4c:c9:e8:79:70:fb:bd:ca:
b8:62:c7:c5:52:04:61:bb:ad:3b:31:1d:13:af:20:
89:63:f5:35:6e:80:0a:bc:c6:ee:c2:5b:5d:8f:4d:
80:70:e0:5a:61:ac:e4:d8:ee:46:3c:31:f0:a8:9f:
58:41:eb:50:aa:f8:c7:2e:17:b0:99:be:67:db:cf:
48:51:45:a2:a9:86:ec:94:f7:06:2a:23:e5:b3:5a:
46:bc:6a:e3:67:79:76:ff:93:de:1f:72:fb:e9:4b:
e9:6b:0e:f2:ae:ad:f6:1a:cf:8e:f2:d6:a4:9c:a3:
dd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:14:63:09:E0:F6:DA:08:8B:6F:8F:CB:19:F4:0E:31:BA:83:A7:30
X509v3 Authority Key Identifier:
keyid:22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:bb:d0:53:e9:dd:cf:5f:f9:a4:7e:61:d6:88:70:2f:0d:7d:
18:3d:36:57:fd:1c:02:25:15:be:5d:d4:96:96:ab:54:47:96:
cf:ac:99:1b:7d:eb:93:33:65:b8:55:29:ec:db:ab:45:c4:ce:
fc:ff:8e:ce:81:50:d2:46:2f:8b:f5:75:2b:a3:d1:3e:d4:e1:
c2:2b:29:54:c1:8c:e7:51:e7:67:5e:35:71:19:d6:39:f7:f3:
49:d5:4d:b6:01:88:a7:64:fe:f7:a4:f7:9b:50:59:a0:ee:63:
98:7d:fe:f3:7d:9f:18:87:47:8a:b1:16:ea:7d:51:5f:be:19:
a0:24:79:98:cc:06:5f:11:fc:92:17:33:a9:e0:e3:d6:3e:e2:
e2:54:14:f7:9f:3b:a2:46:33:54:79:2b:27:86:ef:6a:47:12:
e4:91:79:99:3c:94:2d:f1:43:23:af:25:b3:00:32:30:52:6d:
55:ee:55:48:bb:5b:bf:aa:c8:46:bd:ad:05:1a:a4:7f:e9:1c:
a0:c6:9f:0a:2b:72:07:6d:22:ac:6f:c5:e7:0e:63:59:df:b8:
56:71:69:bd:5a:cf:bb:be:17:72:a5:08:d9:8a:b0:41:a8:d6:
7b:dd:d8:fb:da:d0:7f:b1:cc:7b:00:fd:01:dd:be:30:1e:1c:
87:7d:ba:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:09:23 2025 by rpki-client