Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: ZI2dVHl6TmKD4DICQkrXo6CuPWi9hQXQC7bZT5lX/UE=
Subject key identifier: A5:23:D0:46:ED:8B:3C:B3:00:B9:13:E3:19:0A:9C:9C:CC:D9:A8:0E
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 019769611D3A54DD9358D0A05BAD85F4983A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 13:01:01 +0000
Manifest this update: Fri 13 Jun 2025 13:01:01 +0000
Manifest next update: Sat 14 Jun 2025 13:01:01 +0000
Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=)
2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: EFFMGtWzMndXNIpDz75EJY5K4eMKBtLBVsdIgCmkOr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:1d:3a:54:dd:93:58:d0:a0:5b:ad:85:f4:98:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Jun 13 13:01:01 2025 GMT
Not After : Jun 14 13:01:01 2025 GMT
Subject: CN=a523d046ed8b3cb300b913e3190a9c9cccd9a80e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0e:e9:df:a7:c7:94:2e:16:2c:13:b4:84:c2:
fb:1f:06:ac:c1:f2:6d:40:04:f6:3b:de:6c:e2:5d:
c2:60:2c:a9:0e:3b:43:10:0f:34:16:95:98:ae:6e:
db:94:ab:fb:d0:97:a0:e9:06:bd:92:e4:58:69:ea:
e1:e6:92:20:b7:00:80:23:b6:99:de:e2:04:c9:fc:
cd:f5:ff:c9:9f:f6:f0:c6:e8:59:98:8c:39:ea:7c:
d2:98:c8:fe:c6:ff:43:7a:91:f2:d2:7f:b4:67:2f:
53:71:89:00:aa:3f:df:f1:6a:86:4d:2d:e9:de:1c:
a5:4b:86:25:d3:a3:aa:26:30:31:17:e3:53:90:0e:
69:7e:55:4b:8d:1f:13:0e:1e:50:bb:ff:50:68:dd:
e3:79:d3:df:5e:d5:30:f7:51:41:51:2c:8b:7d:f9:
c7:90:22:04:52:db:b8:d4:1f:e8:60:ec:aa:7b:69:
ab:3c:01:d7:d1:43:81:d8:e8:05:b6:88:e9:d6:c5:
2a:a0:1a:3c:af:cc:3d:32:8b:51:99:ea:9f:48:76:
7f:74:88:c3:9b:79:2e:dc:74:2c:d2:8f:eb:78:2d:
b8:62:65:fe:0f:1d:be:e5:61:02:73:06:08:e6:d5:
c7:1f:ca:f4:ea:5d:3f:6d:f7:ab:7b:ab:24:25:b8:
e6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:23:D0:46:ED:8B:3C:B3:00:B9:13:E3:19:0A:9C:9C:CC:D9:A8:0E
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:7e:5c:a9:18:73:07:4b:b1:fe:56:0a:da:42:d3:b4:80:f7:
99:b9:69:3f:d2:1c:23:d8:11:22:cf:f7:4a:07:8e:76:d6:28:
53:90:ab:df:ec:c6:22:70:50:ef:79:c8:e4:63:2e:94:8b:6d:
5f:2c:53:de:60:3f:00:e9:e2:79:ea:a9:4f:ee:ba:eb:13:7b:
01:21:13:22:8b:b8:2d:b1:8e:64:a3:2c:b6:10:62:b6:98:0d:
84:ec:65:42:9f:e1:34:e4:af:e8:77:0e:81:85:5f:de:05:99:
ea:8c:62:c6:69:88:9c:97:ee:02:e1:ad:6d:fe:48:9e:b7:b2:
3e:8c:80:c3:29:56:1a:31:c0:32:81:a4:2a:4e:6a:68:9c:fd:
7a:4c:22:5d:ac:fe:b3:c1:6f:9f:8f:ab:25:7d:ee:d2:08:97:
d6:17:26:96:2e:5b:fa:22:07:a7:da:2a:95:25:3d:2a:74:d7:
27:92:c7:01:70:13:e7:3b:41:3c:78:83:a4:73:b6:31:ed:63:
8f:34:7b:a9:b4:db:2d:15:38:c5:7c:dc:c9:60:d4:d5:6d:01:
0b:a0:5b:a2:3e:13:38:27:ec:5f:0c:63:c7:73:bd:32:77:42:
9d:9f:42:76:72:e8:c2:97:43:8e:8c:ba:d4:68:ea:aa:f7:42:
b3:a0:d2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:04:28 2025 by rpki-client