Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: bDleTcn57BCCknDjhr+hZ7vubxj2+uqgpCkoEQ4YmNo=
Subject key identifier: 67:96:9C:0B:FA:1C:08:C8:D7:79:3B:AE:11:CB:F0:C1:AF:B1:3D:20
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 01977263CC82948A8D12531F61A45DE86868
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 1591
Signing time: Sun 15 Jun 2025 07:00:32 +0000
Manifest this update: Sun 15 Jun 2025 07:00:32 +0000
Manifest next update: Mon 16 Jun 2025 07:00:32 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: 8NPZFLnUrCK2tCdNwiUi4pKSd7HgRIM9a6Rmf1Tn0XY=)
2: cFbXH5gO6qs06Nq1Ek6wrTAvxB0.roa (hash: c0tlMuDM/vPMybXrB0sIatVwyL/aO7RZmUvD1wZIObw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:63:cc:82:94:8a:8d:12:53:1f:61:a4:5d:e8:68:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Jun 15 07:00:32 2025 GMT
Not After : Jun 16 07:00:32 2025 GMT
Subject: CN=67969c0bfa1c08c8d7793bae11cbf0c1afb13d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:45:5b:f5:26:50:ac:ae:78:63:3e:92:28:
cc:85:c9:e2:2f:cb:2e:aa:79:e6:b1:1c:54:6c:2c:
5b:5e:27:25:21:5a:e3:6a:a5:83:d6:27:8f:4c:9f:
54:d2:b5:a8:06:64:1c:e3:68:bd:b4:d9:fd:fd:68:
bf:c9:ed:bb:cd:f7:a4:56:60:fc:b3:16:9f:8d:fe:
e9:d3:8b:dc:4e:e0:b5:e7:52:49:31:20:34:64:3a:
42:e3:66:10:26:34:9d:6d:86:20:08:8b:6b:66:a4:
18:41:5c:a3:29:f3:fe:84:c7:5b:c9:18:13:e1:35:
9d:c1:80:62:5f:20:dd:eb:98:02:78:c4:1e:fd:89:
80:1a:af:da:84:90:d6:b1:2b:94:76:60:d7:03:e2:
12:bc:1d:91:ae:1d:2d:48:0a:82:68:89:83:7d:fd:
1d:f4:9a:55:89:56:04:fa:9e:32:1c:a0:5e:5a:45:
3f:f3:95:0e:98:74:e4:da:ac:b8:86:f4:f6:3f:1a:
43:bd:4d:14:96:fe:1f:16:b1:f3:3b:6b:05:36:c5:
5d:b5:b5:b0:ff:4a:53:d8:cb:a6:8d:2a:67:a8:c1:
5c:5d:62:5c:e2:d2:d1:2c:bd:04:38:38:22:23:01:
93:10:a1:dc:4d:ed:87:63:b2:8f:78:0d:67:92:8b:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:96:9C:0B:FA:1C:08:C8:D7:79:3B:AE:11:CB:F0:C1:AF:B1:3D:20
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:1b:29:51:b9:76:d6:fb:01:1f:10:4f:db:37:34:b6:c1:b4:
42:22:82:aa:b3:58:35:f5:b9:3b:08:f5:67:0a:88:b1:8e:38:
a7:e2:8c:38:ea:a9:88:ec:b7:60:71:0a:77:ba:63:d8:ea:a6:
6c:b6:0a:bf:a4:bb:18:39:b0:61:f3:36:c6:e2:c9:fa:7d:bf:
ba:e8:f7:6c:f5:cf:44:92:2b:86:e8:38:65:1e:07:63:c4:f5:
8e:dc:c7:cc:0e:97:32:87:62:5b:b5:9c:ab:f7:53:fd:22:42:
59:49:9e:c9:1f:ff:6f:6c:a0:6b:8c:c2:a4:de:3f:b9:26:cd:
e5:bb:2b:ed:2d:34:e7:0a:a7:d9:ba:36:3c:be:d0:cf:3f:de:
a3:57:b8:80:89:5b:a2:28:c1:56:28:d3:8c:11:fc:6c:71:f5:
7e:c6:e5:1c:6d:a0:18:29:cf:1e:0d:08:35:0c:fb:f2:17:1e:
9e:69:24:04:c6:81:c2:f0:ec:5a:fd:a4:fd:70:c7:b5:ce:af:
3f:ab:9a:6d:44:18:22:e1:3c:29:04:9b:93:1e:4f:1b:8d:70:
38:ff:50:16:21:67:f2:04:11:eb:b9:a4:97:51:51:fd:5b:50:
30:c4:6b:df:e7:46:44:b3:44:b8:a5:84:39:6e:10:3b:75:15:
b4:63:81:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:23:25 2025 by rpki-client