Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: 4G2EHOiSDlcYnCoG8Y2ElBv/ASu6/xSgg7idJtsKzME=
Subject key identifier: 5D:5D:D3:71:BB:7B:A5:7D:9B:71:12:25:91:FD:0F:23:E3:77:E2:08
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019771BF9EEEB0D16FB4CFCCFE1EAAF88619
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0D72
Signing time: Sun 15 Jun 2025 04:01:12 +0000
Manifest this update: Sun 15 Jun 2025 04:01:12 +0000
Manifest next update: Mon 16 Jun 2025 04:01:12 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: Y2fgQ2Og30qGDKdFazW2Z74IAWAB6boBMtfFp52/HWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:9e:ee:b0:d1:6f:b4:cf:cc:fe:1e:aa:f8:86:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Jun 15 04:01:12 2025 GMT
Not After : Jun 16 04:01:12 2025 GMT
Subject: CN=5d5dd371bb7ba57d9b71122591fd0f23e377e208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:6f:9f:d0:a3:d7:c2:9c:c9:e8:1e:1b:82:
ef:88:ae:92:1b:45:d9:48:4f:28:6a:34:88:b4:f3:
99:43:af:ef:f9:f0:88:37:47:b3:c3:68:72:85:b9:
6b:86:54:c6:ff:81:52:82:4e:f6:e6:ec:ab:fc:7a:
db:c0:1b:aa:08:ca:e3:c2:b3:05:fa:16:6b:8e:3f:
3a:ec:86:ef:d9:a6:3c:b9:68:3b:c9:4a:27:8e:eb:
eb:66:91:b2:e8:7d:43:23:4c:25:3b:f8:2d:f9:d3:
d6:ca:4a:ae:85:83:e0:a8:27:17:36:a4:b1:13:26:
30:e1:69:68:cf:7a:8e:33:59:9d:bc:59:09:34:1c:
8c:c0:b7:6d:f4:7d:9a:0d:6a:56:b1:ac:8b:93:82:
27:12:70:9f:35:3c:6d:23:6a:3d:c2:81:e5:6b:9c:
8d:42:b5:cc:15:f7:d7:de:20:2a:50:1d:3f:07:0f:
75:ee:06:3d:75:7e:17:f8:ba:c7:9a:cb:96:ad:e4:
67:72:26:ae:8f:50:1b:d2:a3:3c:59:97:03:07:cd:
99:04:b0:2c:65:d0:0a:8c:68:b5:d8:43:73:1e:c3:
36:41:58:03:08:71:fa:51:2d:87:f8:5f:00:c0:05:
62:24:ae:9c:1c:2e:c4:96:9c:38:c0:3b:ad:d1:b5:
96:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:5D:D3:71:BB:7B:A5:7D:9B:71:12:25:91:FD:0F:23:E3:77:E2:08
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:83:d0:99:3f:24:9f:c1:bb:bf:6f:89:b8:f7:b3:8f:a3:26:
18:5c:a8:51:61:75:97:e7:d4:70:cf:72:fa:00:2f:3e:a4:e7:
4c:7b:78:9c:6a:b7:b3:76:42:2d:20:e1:e2:94:6e:54:83:cf:
03:0e:57:6c:f3:8e:20:b8:fa:bd:f9:84:32:c5:0f:27:10:9c:
3d:8c:3d:e0:5c:5f:ea:9e:3d:74:08:20:bc:93:f6:c4:ab:83:
47:15:09:ae:b6:be:7b:04:3e:17:62:11:ed:c5:cc:5a:c6:ac:
1e:51:b1:02:e3:fa:cf:c1:bd:16:36:2e:2d:ae:c1:96:6b:97:
c4:f1:15:ac:ff:52:51:91:3e:1d:aa:0f:99:3e:6e:3c:9b:47:
ba:d7:dc:ca:cf:c7:e1:22:66:84:e7:f0:cf:4b:51:06:89:d6:
4c:b7:a9:47:0a:16:e4:25:19:dd:ee:78:2f:7d:83:bc:c1:79:
bd:d8:2f:48:9c:18:e8:b8:92:4d:29:6f:4b:a1:d6:a7:ff:4d:
78:c2:54:95:f7:07:0e:e5:b5:95:de:53:a0:8f:b5:12:51:4f:
39:fd:c6:d0:2c:55:e0:41:60:61:86:a2:d2:2f:21:ea:80:cf:
df:c1:77:86:2d:01:1f:63:a2:3a:2f:fb:60:b4:8d:95:a7:ee:
6b:23:e9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:24:08 2025 by rpki-client