Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: qSrOc1VRqlcZ+XRMJ6yHBgIHtOG8Vop4Od6BR/5cP8A=
Subject key identifier: F2:C2:7A:0B:58:D8:CB:88:F5:D1:DF:12:D9:2D:10:B3:D5:3E:03:95
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019770E3628B03A7D22B4CC607586A737233
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 0E90
Signing time: Sun 15 Jun 2025 00:00:39 +0000
Manifest this update: Sun 15 Jun 2025 00:00:39 +0000
Manifest next update: Mon 16 Jun 2025 00:00:39 +0000
Files and hashes: 1: 8EaewYTyFly5jEaj4gZEqMNcVMk.roa (hash: gqxj+841N8d9uy4L59oEcZudU4ge+IzVBr1jzF4wgjc=)
2: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: DoEN16WTn0Fj7h3Qgbo6AOYvJnV1awpySXXG/ousIBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 00:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:e3:62:8b:03:a7:d2:2b:4c:c6:07:58:6a:73:72:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Jun 15 00:00:39 2025 GMT
Not After : Jun 16 00:00:39 2025 GMT
Subject: CN=f2c27a0b58d8cb88f5d1df12d92d10b3d53e0395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fd:9a:f2:e9:0a:9b:65:3c:56:b2:ac:60:00:
92:fe:cc:81:58:61:8a:e6:38:5a:c2:99:f0:27:e5:
16:73:89:47:9f:e1:76:8b:71:f3:1f:52:30:e1:48:
3d:b6:89:6b:0e:46:9f:49:53:45:a0:db:fb:b4:f2:
1b:66:76:d9:82:43:aa:be:cb:fe:49:b7:0d:03:12:
9a:52:79:62:e0:00:50:36:19:e8:b9:6f:67:38:12:
ff:a8:a3:27:fd:06:4a:c4:65:d8:d4:f3:5d:e3:a3:
92:38:72:e3:84:f4:93:5c:8c:12:7b:58:5f:a6:e3:
b1:1c:f3:d5:51:d0:25:3b:3b:c8:b6:e3:32:e0:e6:
d2:fb:69:84:3d:f2:a1:94:ba:01:90:9a:2d:c8:77:
fd:02:b1:5e:ed:ca:54:bd:72:e4:fa:85:b7:a0:ff:
88:2d:eb:36:d2:0b:07:97:b1:a0:c6:14:04:4c:ee:
c8:f5:62:f6:55:60:b5:56:0e:c1:cf:e2:d0:61:ad:
aa:e3:4d:46:bf:e4:7f:b5:2f:9b:b9:9e:96:30:68:
85:ed:43:47:e9:47:a1:cf:30:12:eb:a9:22:44:98:
3e:5e:b4:c7:56:ae:00:6b:6a:8a:9c:bf:f5:3d:9f:
0c:ef:9c:3f:62:cd:4f:b6:cb:33:76:ca:87:31:94:
fe:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C2:7A:0B:58:D8:CB:88:F5:D1:DF:12:D9:2D:10:B3:D5:3E:03:95
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:23:2b:07:51:f8:f0:40:5f:8e:20:8d:53:58:23:34:cc:d2:
81:94:55:1f:20:21:0d:43:0b:0f:e7:8d:97:ce:53:74:a5:0a:
2f:ea:3c:a1:1d:ff:3f:a7:99:b3:6d:b6:6b:28:e6:de:eb:9f:
33:7d:40:72:07:db:0e:95:ad:79:73:1c:97:d7:40:68:24:91:
9e:fb:ae:4d:37:1c:d6:a4:e1:1b:c9:cb:14:3f:bf:38:85:6a:
f7:26:89:fe:0d:c1:d4:5c:e0:50:f2:d3:e3:9b:62:49:7e:80:
ba:6b:c3:3b:f2:74:8a:ec:c5:56:9b:00:0d:ae:91:09:d2:93:
20:1a:2f:30:6f:00:94:69:47:d4:75:28:41:64:4d:5d:bc:4f:
35:7d:12:fc:b4:07:8d:aa:05:ce:1e:71:82:80:7a:34:3f:b8:
93:e3:bf:09:c8:df:62:53:6e:cb:3c:41:c4:6f:99:55:07:4c:
e9:a6:25:f4:05:60:4c:f1:6d:63:37:c1:31:1e:60:a2:8d:28:
32:06:69:5c:cc:29:7a:b5:ae:9b:73:ef:42:9d:ea:4e:01:00:
88:1f:b6:aa:c2:f9:f3:60:11:b8:b5:12:56:73:2e:51:8f:2d:
96:2a:a2:98:8f:c3:c7:51:54:42:96:98:aa:6d:1b:73:b5:83:
be:fc:fc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:14:37 2025 by rpki-client