Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: VdywNPMHo300BlsSdqEpkfMyHV3UtE+JeIy7s2ymL3I=
Subject key identifier: D4:A8:9E:B5:4F:57:7D:45:61:38:F2:E2:A2:DF:CF:E4:4E:A2:B3:4F
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 01977978CBC12A7A17CD5114BCF249CB22BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 06A0
Signing time: Mon 16 Jun 2025 16:00:49 +0000
Manifest this update: Mon 16 Jun 2025 16:00:49 +0000
Manifest next update: Tue 17 Jun 2025 16:00:49 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: w9U/MnY/Y/AAZ1fqMHsrDief9ZSRMNVVU6Fn3GxGWik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:78:cb:c1:2a:7a:17:cd:51:14:bc:f2:49:cb:22:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jun 16 16:00:49 2025 GMT
Not After : Jun 17 16:00:49 2025 GMT
Subject: CN=d4a89eb54f577d456138f2e2a2dfcfe44ea2b34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:46:e6:7e:10:1f:ce:ec:ca:ec:17:40:a0:41:
69:a4:f8:c3:96:89:34:c0:56:e4:06:3c:67:76:cd:
2a:87:71:01:41:24:98:6d:31:a8:11:e2:11:b8:16:
59:c4:b5:b2:78:ef:e4:52:7e:ff:44:90:33:2c:8b:
0d:8a:8b:d3:de:7a:e4:82:c4:bb:a5:70:44:3a:aa:
12:aa:b2:07:66:bb:63:38:ac:5f:9f:19:22:df:30:
26:c8:04:40:3f:1d:4e:31:3a:20:e8:e2:a6:7e:d8:
4d:ab:4f:60:d7:9b:b9:10:22:2c:58:b7:f2:57:50:
df:2b:74:05:c8:5d:78:68:90:56:9a:bb:14:d3:0c:
36:22:64:ba:8e:5c:fb:fc:d8:a1:74:ad:80:ff:28:
f0:2f:ca:c7:db:fb:2b:3a:2f:fb:54:a0:fe:7e:16:
53:32:cb:53:f8:c1:8b:e2:46:ab:94:b3:60:80:b9:
14:44:e0:23:13:4a:4d:fd:b2:42:c5:05:4c:b9:76:
80:02:17:83:ad:1f:71:33:17:39:9f:f2:c2:fd:e5:
4d:a0:0c:39:37:75:7a:96:5a:6c:78:a3:b3:db:c1:
a3:1e:77:fd:3c:d7:67:73:92:1c:e0:fc:00:17:ff:
f3:0f:4c:4e:89:68:3a:c2:c7:fc:61:f8:b2:7f:5f:
cf:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A8:9E:B5:4F:57:7D:45:61:38:F2:E2:A2:DF:CF:E4:4E:A2:B3:4F
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5c:d9:c8:a0:62:d8:63:71:84:f0:3f:99:ef:c4:c8:a0:9b:
a4:25:e1:25:38:16:cb:92:3b:6f:98:cf:a0:7d:04:a7:17:0e:
d9:59:f2:4b:dc:0e:01:8f:f5:e4:c2:74:72:10:a5:fa:75:42:
65:84:f8:15:39:d1:16:33:8e:7a:03:c6:8c:20:28:85:2a:d8:
8a:f8:a3:23:98:dd:4b:23:49:cd:03:12:85:03:1a:3b:a1:7c:
65:6a:df:03:bd:ec:e2:fe:54:cf:66:c0:b3:8e:5c:d7:23:57:
26:d5:bb:91:cf:1c:29:77:de:29:61:a0:19:40:e8:18:36:57:
3f:ef:f8:d9:af:e2:9e:a7:21:61:56:67:a6:98:66:19:d2:53:
cf:52:91:24:76:ea:3a:f2:af:ae:20:d1:c9:ac:90:0a:b2:df:
fb:27:af:2f:fb:71:24:49:a5:1a:ee:6c:45:22:46:54:27:57:
35:b5:9e:01:12:aa:81:f6:a1:dc:97:ed:c5:69:01:17:6a:01:
51:54:2f:69:f2:d4:f6:da:78:e7:b1:f3:28:0d:24:34:83:28:
2f:31:70:40:0f:44:91:30:fe:17:ea:d1:7e:bd:d6:27:8c:89:
67:93:dc:1b:2e:53:5e:97:29:b1:9a:f4:4e:01:6f:6a:27:54:
cb:6a:2b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 23:04:26 2025 by rpki-client