Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: M+cppRoxSjpzduFGs7TrX9j+9OyLrLt0T3bhRO17RxU=
Subject key identifier: 4D:E1:B7:0D:CA:DF:C0:31:FC:12:5D:11:60:1F:96:2D:C4:6A:E4:B4
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 01976EF4D3BD4421EED1ED031F7BE9CBBEF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: 0133
Signing time: Sat 14 Jun 2025 15:00:28 +0000
Manifest this update: Sat 14 Jun 2025 15:00:28 +0000
Manifest next update: Sun 15 Jun 2025 15:00:28 +0000
Files and hashes: 1: 9WCM-NfBtEzVC0bLgcXxGw_dKs0.roa (hash: +AotBLTXOYZ2qqQz68W39gfX7TdnqXgGz673AR3fS9c=)
2: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: BqEC/hFKbWv6QA456xnrCoNWYwPi6chN+SCYr/rg9AI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:d3:bd:44:21:ee:d1:ed:03:1f:7b:e9:cb:be:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Jun 14 15:00:28 2025 GMT
Not After : Jun 15 15:00:28 2025 GMT
Subject: CN=4de1b70dcadfc031fc125d11601f962dc46ae4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4e:1b:55:25:82:da:57:72:20:ab:cf:ff:a9:
f9:b1:e2:48:e9:08:b2:be:2b:c8:ca:66:8c:45:72:
c3:1c:a1:92:e3:87:ca:a9:73:2f:34:3a:14:db:03:
15:f8:09:a9:51:01:56:20:bb:11:0f:15:49:1b:32:
1a:14:c1:17:b6:41:8c:60:c3:4f:6f:45:df:47:9f:
ef:10:c4:48:3f:ff:8b:2a:d0:d4:50:b5:dd:80:f2:
db:eb:09:72:d0:0d:f8:47:85:de:7c:67:44:de:d9:
e3:c5:e2:f9:76:e2:20:a7:26:82:1e:bf:c5:a4:28:
27:2f:0b:e9:6c:e3:e2:e8:06:1a:1a:f4:03:0f:c0:
8a:f2:1c:0d:3d:53:95:7e:eb:6d:42:3e:bd:6f:12:
09:b0:b6:dd:02:e4:e9:bb:74:29:88:27:0f:9c:a6:
5a:02:c2:ff:ca:b4:6b:cf:10:f5:52:e8:0f:72:7b:
d6:61:8e:97:aa:7f:80:18:07:aa:12:84:88:f5:72:
d1:55:a5:d4:da:1e:fe:d9:f6:c3:66:9f:36:70:4f:
fe:5f:51:9d:34:aa:16:69:e7:63:c9:73:6d:fd:c1:
86:f6:ef:f3:e7:ad:f8:f6:53:f0:de:08:02:d2:da:
63:30:1c:93:fb:5d:b8:b6:39:ee:2b:5d:03:81:59:
81:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E1:B7:0D:CA:DF:C0:31:FC:12:5D:11:60:1F:96:2D:C4:6A:E4:B4
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:a4:28:18:54:c3:05:c2:0e:78:7b:d2:97:75:f3:0d:c6:f0:
b6:41:c2:e4:b5:7b:0d:8e:7d:46:ea:2d:a0:07:03:cb:79:fb:
be:ae:a0:e2:60:c6:a9:95:6b:cb:24:b4:73:a0:45:4b:7f:8d:
d6:4a:12:45:9b:8f:66:ba:aa:4a:cb:7b:10:cf:3e:e1:ca:4a:
98:d9:75:66:fe:98:ca:c2:95:f4:d9:70:c1:ee:54:61:1f:e1:
8a:84:14:0c:83:2a:83:54:05:52:c7:8e:51:14:00:4b:9f:40:
08:37:6c:59:bf:be:51:5a:83:1d:e6:a4:57:77:b3:cf:aa:02:
7a:10:67:a8:0c:f9:85:59:7a:60:81:e8:a3:28:59:e5:ce:86:
b0:59:b9:02:2b:7e:52:da:fb:e2:ff:29:e9:aa:ed:e0:12:5b:
9a:a2:45:ec:25:04:4f:ec:c6:9e:36:e5:fc:68:d3:da:69:93:
49:07:4f:8f:05:eb:88:54:0c:ae:11:0e:f1:af:00:9d:90:1f:
2d:99:33:16:8e:fd:fd:63:f8:0d:1e:e3:17:fb:a6:3b:5c:2b:
19:e5:af:b5:d5:3e:58:48:be:96:cd:06:f6:4c:ff:4d:64:8a:
1e:3e:70:c9:a1:32:fc:93:27:36:06:dd:a6:31:0a:87:09:49:
83:34:f9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:58:42 2025 by rpki-client