Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: KJq1C64KAnX9iwyuknozmgZTWbcs2Cod2PBRblBWcdA=
Subject key identifier: 40:70:29:EC:87:7C:06:5B:5B:63:01:5B:EB:AD:08:D7:EA:F6:D6:D0
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 01976C2B5FC8745E1EFE6ECF0A79AC374EAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1522
Signing time: Sat 14 Jun 2025 02:01:10 +0000
Manifest this update: Sat 14 Jun 2025 02:01:10 +0000
Manifest next update: Sun 15 Jun 2025 02:01:10 +0000
Files and hashes: 1: 2t0GWwoe7mmFS83bQQPX5JNcD34.roa (hash: hxRzouLeq4ys7uUoj+7mRAVC8MeKAFWBUYqAcz4n5d0=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: 6iffakX0BLfpiydsSJOO073E/L6RGxTzeMN1Ou2yRBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:5f:c8:74:5e:1e:fe:6e:cf:0a:79:ac:37:4e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Jun 14 02:01:10 2025 GMT
Not After : Jun 15 02:01:10 2025 GMT
Subject: CN=407029ec877c065b5b63015bebad08d7eaf6d6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a7:81:94:61:52:b0:36:ab:3c:0c:6d:1e:63:
d9:1c:60:93:ed:19:5e:ef:44:00:4f:2a:a2:db:ca:
eb:7a:6c:ff:53:28:96:49:ed:a9:95:6a:cd:36:97:
3e:41:c7:0e:3f:0e:5c:dc:8c:96:8b:68:a6:82:11:
f0:e2:71:af:05:e4:40:7f:cd:22:07:1c:4e:29:f4:
0a:39:4c:8e:9b:88:90:f1:f3:eb:8e:a9:1f:e2:3f:
49:6a:c6:10:92:aa:e8:e8:23:ff:35:c3:e4:5f:6c:
f1:97:58:30:c7:2f:83:06:01:f0:1c:dd:ae:2d:bc:
ae:9e:7b:14:21:09:99:7f:14:87:0e:72:d4:05:69:
cb:32:82:3e:12:97:23:95:62:cd:59:bb:de:9b:34:
61:8e:5c:fc:ed:4a:40:6a:c7:11:f2:10:18:25:a4:
e8:4f:71:ff:71:17:83:16:1b:22:7f:d9:7a:14:21:
34:e9:cb:36:d3:aa:b3:e6:7f:09:10:1a:cf:30:59:
fb:ed:bd:55:3e:46:b5:a3:e4:6e:2b:67:f6:b5:5d:
25:12:39:8a:d8:91:ab:45:08:ae:8a:6f:43:e2:50:
c9:ed:7f:7e:44:6c:27:91:49:0c:6e:e8:10:9e:91:
bb:a2:23:e1:55:b3:de:cd:27:16:d6:d3:00:16:c5:
a2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:70:29:EC:87:7C:06:5B:5B:63:01:5B:EB:AD:08:D7:EA:F6:D6:D0
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:85:57:a3:b1:3f:c3:4d:08:82:06:d7:aa:d2:5a:a8:c8:fd:
a0:05:b4:da:9e:48:90:45:7f:64:12:a4:a1:4d:b6:f6:24:53:
95:f1:95:2f:3d:12:5e:90:5f:d2:ad:3c:69:49:26:6c:c1:51:
43:f9:fb:ae:dd:6c:60:fd:0e:70:2e:20:b3:4d:ab:1c:f7:30:
5d:1e:ba:14:1d:64:07:47:d7:bf:1b:7c:72:61:ec:84:d1:04:
a5:f2:da:8d:89:96:e4:50:5b:51:0f:6b:df:3f:58:dd:92:ce:
a1:6e:58:12:9c:f0:4a:1e:0b:1f:e6:8e:1e:56:95:87:69:f8:
88:00:66:75:4b:74:d5:ea:26:a0:11:03:59:1d:6d:b9:6e:d0:
44:a5:8e:94:0e:40:c8:c2:be:2f:69:6f:91:03:ff:aa:1f:7e:
e6:9d:e8:70:27:8c:25:6c:f7:b3:ec:f6:cb:67:43:ac:b0:bd:
77:66:9f:f5:c3:03:52:f7:7a:90:0d:f5:1e:6d:03:1e:14:a7:
1b:70:ab:94:43:aa:ed:f0:32:8f:d1:c7:4b:30:07:5c:b3:e6:
cc:bc:66:aa:6e:5b:06:b1:44:73:c5:f4:4d:9c:1b:07:66:9c:
84:33:f2:9c:b3:1c:84:dd:2e:a5:a3:df:db:ab:50:3b:a9:73:
db:dc:dc:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:18:33 2025 by rpki-client