Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json)
Hash identifier: aK/n/YC95db1ndCRo4THvY5vXZLvoBk7qnUY2Ivur8E=
Subject key identifier: 8B:8D:FA:06:B3:41:93:E5:E8:BC:10:60:AE:5B:58:54:CB:A9:E0:42
Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3
Certificate serial: 01976D3E2158A3EB5AB79662D2CB0D2B5947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
Manifest number: 1411
Signing time: Sat 14 Jun 2025 07:01:17 +0000
Manifest this update: Sat 14 Jun 2025 07:01:17 +0000
Manifest next update: Sun 15 Jun 2025 07:01:17 +0000
Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: oPQhETsEVZRwCZw5JGDXizpcALX76VOQ8Oe1zoJ8FSQ=)
2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:21:58:a3:eb:5a:b7:96:62:d2:cb:0d:2b:59:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3
Validity
Not Before: Jun 14 07:01:17 2025 GMT
Not After : Jun 15 07:01:17 2025 GMT
Subject: CN=8b8dfa06b34193e5e8bc1060ae5b5854cba9e042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:89:c8:f8:8c:72:df:b5:0d:9b:91:eb:84:0f:
70:cc:86:ee:b8:67:d6:c0:d6:38:62:64:fd:48:01:
85:55:4c:37:c7:fd:16:ee:b3:bd:61:6e:8d:b2:9e:
9e:c4:d6:1e:f6:03:6b:c7:b7:8e:ba:27:f6:84:0c:
13:f3:b9:dc:11:d1:51:89:ab:af:de:34:73:0c:6f:
9e:6e:21:96:c4:62:5f:fd:39:ad:c0:ce:3c:f4:c4:
b9:01:f1:f6:55:35:dc:2f:a9:b5:93:fd:90:d5:1f:
23:0f:79:b7:56:f6:f8:67:d6:bc:ff:16:b7:d7:c3:
0b:88:06:6c:90:c9:f4:ad:2b:60:be:40:50:44:61:
ed:10:4a:dc:84:68:d0:93:6f:18:55:d8:2e:73:56:
bf:27:45:07:73:8d:fa:56:57:da:a0:87:a1:be:61:
9f:95:7e:39:ee:cb:1c:e3:3d:4f:bb:31:ab:e3:0f:
ef:5b:10:a0:60:45:0a:67:3d:c6:e5:78:53:c6:49:
6d:ff:82:82:b2:b2:48:b8:08:bf:52:1a:75:53:e6:
a4:24:0b:cd:02:e2:29:1b:3a:5d:98:68:e0:d6:ef:
b2:eb:39:a7:51:e7:91:e8:f5:0f:aa:3a:f4:98:51:
d7:84:2c:cb:4d:6c:89:e4:fa:a8:54:b2:16:4b:15:
b2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8D:FA:06:B3:41:93:E5:E8:BC:10:60:AE:5B:58:54:CB:A9:E0:42
X509v3 Authority Key Identifier:
keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:c2:6e:80:52:a5:f0:a3:de:cf:f7:0d:25:50:0c:fc:45:51:
69:5e:0d:36:a9:09:c1:92:76:ea:e5:44:3e:7c:74:bf:75:b4:
7d:c5:de:81:8a:22:9f:ab:d3:41:fd:98:fe:98:9b:59:6a:49:
95:7a:17:29:2f:f6:4b:e8:f7:c7:10:ea:12:9c:23:c9:d8:48:
88:fd:58:8e:77:61:16:7a:ba:ee:b3:39:da:a3:bd:3a:99:c0:
b3:b9:1b:28:9e:45:2d:e9:2d:af:c3:76:48:d7:e0:fa:7a:23:
88:83:7a:bb:de:3a:5f:2d:b6:6e:7c:88:9d:74:63:b5:ea:b3:
6b:c9:ce:9f:72:c8:2c:bc:19:39:94:d5:6f:40:3d:ac:eb:1f:
6b:6f:3c:5a:f1:98:b4:a2:b6:78:28:6f:09:67:74:e7:2b:98:
e6:79:2f:22:8b:6f:6b:a2:c7:7f:8b:ff:2f:0e:8e:b1:5b:71:
d1:f1:ba:aa:a6:62:94:cd:d4:2a:d9:04:24:08:84:c6:34:e5:
4a:b0:1b:f1:f6:95:36:23:10:b0:60:1f:db:0a:e4:2d:96:b2:
12:a6:f0:4f:dc:74:ab:e2:da:56:6d:b6:dd:59:4a:23:44:39:
b1:12:af:86:e0:3a:3e:7a:bd:a1:e4:40:61:d7:6d:91:12:b6:
0b:25:30:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:10:08 2025 by rpki-client