Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
File: iZJ3h0cqfL3Zff209Tt077O7vFs.mft (raw, json)
Hash identifier: DH11pv0KOBPSrgOhwk6O0nf8lF3XSaR6kxHEfPw98bE=
Subject key identifier: FF:9F:16:F0:79:66:52:20:02:C1:F2:A0:0C:53:64:BC:7F:CF:78:29
Authority key identifier: 89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
Certificate issuer: /CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Certificate serial: 01976E873FB80F9FBA8D2804C6C99A241F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
Manifest number: 10C0
Signing time: Sat 14 Jun 2025 13:00:46 +0000
Manifest this update: Sat 14 Jun 2025 13:00:46 +0000
Manifest next update: Sun 15 Jun 2025 13:00:46 +0000
Files and hashes: 1: iZJ3h0cqfL3Zff209Tt077O7vFs.crl (hash: gqTGnepxFKbpNB44nWYQxVWfnWavytotRk5ESMVJFYI=)
2: k_0z9yImMkkx7Q7hZaLKVoTRO74.roa (hash: bY1XGYbefYoSOVyj59OiTxL9N9Rlyyr/sbaOhEye3EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:3f:b8:0f:9f:ba:8d:28:04:c6:c9:9a:24:1f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Validity
Not Before: Jun 14 13:00:46 2025 GMT
Not After : Jun 15 13:00:46 2025 GMT
Subject: CN=ff9f16f07966522002c1f2a00c5364bc7fcf7829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7d:4e:fd:37:ca:ca:d1:d9:9b:96:45:d3:22:
d8:18:a9:2f:dc:32:34:52:be:2b:95:2e:73:26:4a:
36:ad:0b:7e:54:3c:fa:d0:35:24:c4:a1:15:ac:2c:
70:07:bd:b5:b2:86:71:1c:c5:ff:15:87:29:4e:21:
e2:80:cb:f3:d5:11:4b:55:a8:da:e4:ba:31:b3:a2:
09:a7:10:25:e9:d7:dc:42:2f:fc:9c:97:0f:9e:70:
39:1f:af:9b:c2:b7:23:fd:73:ae:6c:62:45:36:60:
cd:97:19:b6:37:d9:17:3d:e6:ac:95:17:15:0c:d4:
47:ef:63:73:41:43:6f:1b:e5:09:0c:fd:3e:ff:55:
d1:9a:cc:e1:8f:e7:a6:b3:58:98:92:87:48:e9:b6:
fb:ed:9b:28:90:4f:96:1f:33:aa:a0:e1:f5:57:48:
55:8e:38:05:4b:3e:bb:25:59:d6:92:69:e3:7c:8e:
e8:b3:0a:b6:2d:db:53:ba:24:37:e6:6f:d9:7d:0f:
a2:1f:33:3d:e4:ab:f3:31:0e:0f:8a:1c:5b:c6:c8:
8e:65:66:87:c9:1f:97:0c:27:bd:5b:32:56:b7:df:
93:29:0b:b4:7b:41:48:17:d7:0d:5e:82:ba:cf:b6:
90:de:c2:1b:22:5e:9f:5d:ca:4e:c7:49:6f:c2:10:
c6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9F:16:F0:79:66:52:20:02:C1:F2:A0:0C:53:64:BC:7F:CF:78:29
X509v3 Authority Key Identifier:
keyid:89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:f0:1f:d5:d4:30:36:40:cf:8f:79:3a:7d:02:25:7f:c1:5c:
7c:72:a1:08:09:95:ce:4c:48:5b:a6:20:57:53:95:06:70:9c:
48:3d:44:0e:0a:ee:5e:1f:64:64:67:3b:a3:bb:d9:96:26:e5:
d5:e2:1a:3a:27:50:f5:9f:24:40:2a:46:8d:e7:a8:e1:05:9a:
5d:b9:a5:61:f1:fd:17:5c:5f:3b:36:1d:b1:73:2f:84:07:0d:
59:55:6b:19:3a:fd:38:27:ea:1b:a7:7b:d0:da:e3:0f:1a:de:
99:ff:31:31:f3:0d:25:1d:78:2d:af:30:93:29:08:aa:21:12:
b9:60:c4:db:e1:ac:b9:51:52:8e:0b:22:fa:3f:ce:84:26:f1:
b0:13:cb:05:4d:86:10:af:42:f5:f9:37:39:2c:f1:e3:81:2a:
09:44:44:a7:b8:35:68:ff:3e:1d:62:52:76:b6:6f:86:be:0b:
db:07:7f:37:6a:79:8e:c1:68:8e:77:38:57:fe:f7:cb:ab:8d:
d7:1a:ed:fb:0b:68:83:41:41:e2:6a:20:a7:c0:eb:0d:99:d6:
da:8d:9e:cb:6e:9d:5f:05:64:be:e1:84:d9:aa:bd:96:3d:2c:
20:4d:b8:b4:92:75:21:45:45:04:3c:3d:e0:0f:a9:65:3d:3b:
cf:84:ee:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:57:01 2025 by rpki-client