Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: a3mtEyEiNMchPb0gwcR5kENPYFzYfD91igyqnb4mDl0=
Subject key identifier: 4F:09:36:37:E5:38:D6:24:B9:A4:B2:7D:8E:AD:97:11:8B:80:41:2D
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 01978662446A7E884EB94C52C199276387C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 159D
Signing time: Thu 19 Jun 2025 04:11:16 +0000
Manifest this update: Thu 19 Jun 2025 04:11:16 +0000
Manifest next update: Fri 20 Jun 2025 04:11:16 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: Vofy8o5M3+Uct9CP82U03WBqbs0HoJc7wcawqielx08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 04:11:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:62:44:6a:7e:88:4e:b9:4c:52:c1:99:27:63:87:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Jun 19 04:11:16 2025 GMT
Not After : Jun 20 04:11:16 2025 GMT
Subject: CN=4f093637e538d624b9a4b27d8ead97118b80412d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c5:4e:34:96:4d:a2:49:97:14:e6:c6:bc:73:
4c:b0:bd:22:f9:ff:ca:46:a0:ba:5d:8b:d6:28:12:
77:84:80:00:39:98:23:d3:27:18:30:22:b2:05:99:
bc:10:0d:d3:db:aa:fa:75:04:77:54:22:f6:53:eb:
45:b2:d7:89:5e:91:24:73:12:d7:69:eb:77:83:45:
d6:4a:7e:4f:ff:91:7b:67:6d:13:85:8f:38:67:47:
b0:8d:78:ab:20:73:51:96:a1:6e:e3:f6:28:ea:c4:
b6:9d:53:8d:ea:12:1a:7d:17:ee:43:5b:af:39:e5:
a6:8d:12:ed:6d:11:80:b0:64:24:e5:b4:4b:af:5f:
e3:28:ae:75:0c:2a:b9:f5:41:54:41:2c:69:5c:8e:
2e:3b:88:ce:3c:0b:61:a7:52:4d:a4:dc:87:ae:de:
a7:08:81:52:3e:51:41:65:eb:77:73:c1:2b:ed:f5:
46:ae:01:dc:bf:ad:d5:17:f1:f8:00:1b:ef:5d:a9:
5a:7f:45:a9:a3:81:c9:e2:d9:e9:8b:36:30:6f:e7:
cb:5f:38:64:59:a3:8e:dc:3f:f8:bf:3f:1c:38:09:
8b:68:2c:fb:03:0e:a2:e6:d2:1d:b3:bb:99:57:cc:
39:e2:31:25:4b:67:51:69:8a:9f:e8:b5:43:bb:ba:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:09:36:37:E5:38:D6:24:B9:A4:B2:7D:8E:AD:97:11:8B:80:41:2D
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:e0:8f:bb:0c:77:1e:7a:d2:f1:30:0e:4e:a6:c8:46:4f:04:
a2:45:21:b2:01:05:80:93:a6:37:2d:16:d6:51:02:93:a0:90:
89:df:e5:4d:a2:7e:8d:fa:db:b0:b3:4a:b0:ae:e9:bc:16:03:
49:99:0a:85:26:c5:f2:b0:64:7c:5e:09:eb:fa:70:89:5f:93:
25:12:22:52:1f:e5:eb:21:88:f2:96:e3:d4:45:88:1d:19:7c:
f8:b3:b9:c1:76:62:7d:00:f7:b7:ee:b9:ef:28:f2:c7:76:d8:
b5:c0:1e:74:84:a3:ce:32:64:b8:b8:61:c0:0c:71:62:6a:92:
3d:0f:a3:c4:e3:64:2e:08:c4:75:4b:09:4c:6f:c1:d5:fe:66:
de:06:65:a4:16:de:79:d6:cb:a9:ba:99:77:84:8c:3a:b0:03:
e6:5f:90:1c:64:1b:5e:a4:84:78:dd:c1:b8:87:6d:27:70:eb:
40:da:1b:69:67:8d:e8:f5:52:76:82:f4:d8:e1:eb:a4:63:e5:
53:a4:3c:ed:74:53:63:46:8d:52:41:38:90:f6:83:3e:7b:a8:
4e:2c:1f:37:e3:fe:92:34:1f:de:bf:8b:a8:06:ea:16:a6:f3:
06:8d:d4:a3:c7:f7:f5:d9:0f:87:c5:53:89:ae:1d:76:1d:6c:
a2:ad:10:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 13:39:13 2025 by rpki-client