Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: eg5fYZe8FnFp4emTHI2D728JpgFqkKrZOnXJHuNNrF8=
Subject key identifier: 94:F8:60:E6:A3:7B:2C:62:76:DC:1A:4D:12:C6:B2:4A:DF:C0:88:03
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 01977677C598ECE00B67E975016E9B7E4B2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 0FB0
Signing time: Mon 16 Jun 2025 02:00:50 +0000
Manifest this update: Mon 16 Jun 2025 02:00:50 +0000
Manifest next update: Tue 17 Jun 2025 02:00:50 +0000
Files and hashes: 1: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: Ke/gNTd4Am2WAiR0A7GGdG3GdKWF/YqikZJfARHgF1U=)
2: qaZCGy8ImKVej6couAVTC--aSzI.roa (hash: dKUZq0YlDWheyPATDjfQQ4lypZzKgD8qgqRTkln0uKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:77:c5:98:ec:e0:0b:67:e9:75:01:6e:9b:7e:4b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Jun 16 02:00:50 2025 GMT
Not After : Jun 17 02:00:50 2025 GMT
Subject: CN=94f860e6a37b2c6276dc1a4d12c6b24adfc08803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:c3:a4:8c:e9:77:82:ef:90:4f:17:74:ac:
d6:e9:97:f1:34:54:07:4c:ba:86:06:5a:c1:65:75:
a6:ff:d4:99:63:43:8c:e5:8a:eb:06:79:2b:e7:f9:
08:c1:2c:8c:38:a8:da:cc:66:74:a1:53:ac:aa:d1:
ca:f6:54:e4:24:d0:5e:e9:f6:bc:8a:3a:3c:14:ef:
24:39:1b:48:00:02:b9:3f:80:99:af:76:17:b4:c4:
9e:6a:c5:fb:97:de:24:ef:99:35:68:ef:35:d8:ef:
5f:32:12:a4:65:5a:0c:42:aa:40:f2:22:80:ff:da:
06:a4:0a:a7:9d:f7:71:93:7f:df:4f:68:49:4e:23:
7b:09:ac:e4:98:7d:06:83:46:e7:e4:c6:94:52:b8:
94:c3:76:a5:eb:c3:76:4b:b2:91:5a:70:90:c7:47:
fc:0b:a2:16:db:59:9e:1a:ec:d8:cd:6d:48:07:0a:
69:96:31:4f:33:dd:27:d7:c7:1e:be:7a:6c:16:54:
76:b9:40:16:d7:5f:d8:dc:b8:3b:94:8f:69:ba:5c:
7b:fb:ed:f2:2f:62:36:fe:6c:15:15:a8:e5:57:79:
6a:a2:72:31:66:32:cf:66:74:f3:d8:92:e4:1d:75:
6d:bd:47:1a:ed:73:a2:b5:1a:4a:a1:90:68:14:65:
49:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F8:60:E6:A3:7B:2C:62:76:DC:1A:4D:12:C6:B2:4A:DF:C0:88:03
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:92:fd:aa:f6:d6:b9:19:8c:91:08:ef:d3:45:96:7e:84:96:
b7:07:ba:2d:04:2f:11:58:9b:20:f3:cf:00:fe:28:0c:fe:71:
1f:72:46:ba:2e:a2:a0:f8:cf:db:74:6e:f0:81:52:54:5f:87:
31:27:be:7c:fa:87:92:2c:49:ec:4f:a4:37:1d:7b:62:54:03:
0e:b5:22:f3:3d:27:cf:67:86:09:7d:7e:88:d4:f1:07:66:32:
a2:e3:e6:77:32:1b:d0:0e:3b:07:8e:8a:72:37:6a:8b:0e:db:
8c:f3:f1:8c:83:d7:22:b1:19:2e:83:69:ef:47:6c:27:d2:90:
2a:8f:93:97:1d:95:f9:e7:a5:6e:0c:b8:96:00:93:a8:e9:13:
11:25:d3:70:21:7a:fc:96:b8:fc:08:ca:85:18:c2:b2:64:32:
97:a9:84:17:85:17:88:c7:e1:c5:2e:13:73:5b:67:a4:03:b1:
a6:89:c1:c1:c0:37:9a:03:b8:9b:0e:d1:b6:52:9d:42:8e:38:
e6:21:1e:f6:02:d9:49:73:b1:18:50:f2:bf:26:90:7c:e7:a7:
6c:7e:f8:f6:fc:ea:2e:19:63:c9:1f:94:e7:df:1b:10:2b:87:
1a:3d:09:eb:c0:bc:16:2e:4d:48:c9:b4:ed:de:c7:3f:dc:b3:
0f:bf:c2:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 08:00:40 2025 by rpki-client