Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
File: iQH2c8aw_4g16gL67bpbSc8UIk4.mft (raw, json)
Hash identifier: VphO+lJ+I2d9zx0BTZ1FZqadLHRYhAPaX4l7mYc7ZMc=
Subject key identifier: 45:6D:57:96:CD:A3:5C:40:C6:95:AC:DC:E3:AA:5B:85:2F:AC:8C:E8
Authority key identifier: 89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
Certificate issuer: /CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Certificate serial: 01976884E28DE1C1DE5885025E1FAB2D1D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
Manifest number: 0C2B
Signing time: Fri 13 Jun 2025 09:00:28 +0000
Manifest this update: Fri 13 Jun 2025 09:00:28 +0000
Manifest next update: Sat 14 Jun 2025 09:00:28 +0000
Files and hashes: 1: LwODeFlTbNm331VlQw3cZjyD1Sg.roa (hash: 6xKklCkI+s1DbuNSCG9T6RXJeAeTq1fLNQfBDhNCOAU=)
2: iQH2c8aw_4g16gL67bpbSc8UIk4.crl (hash: hrgxpFSDPtDWh95/E+o8VoIFfm69XerIglGdo4d/BEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:84:e2:8d:e1:c1:de:58:85:02:5e:1f:ab:2d:1d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Validity
Not Before: Jun 13 09:00:28 2025 GMT
Not After : Jun 14 09:00:28 2025 GMT
Subject: CN=456d5796cda35c40c695acdce3aa5b852fac8ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c0:09:46:c2:b1:0e:bb:49:e5:7a:62:7e:f7:
ea:19:12:34:6d:d4:97:4e:bc:21:c3:a4:bf:2f:7f:
02:5a:0d:f0:ef:27:c6:44:fd:04:e8:98:00:fa:5a:
81:97:cd:f4:16:c7:c4:12:e9:e5:66:0b:35:46:2c:
b8:d4:04:78:b4:12:5d:e0:e2:20:eb:5a:8d:59:e2:
ad:27:24:67:c6:15:19:75:00:da:00:47:08:81:9f:
c0:cb:b4:34:94:8c:35:57:c0:eb:79:be:2a:59:56:
74:6a:90:ba:7e:4b:56:e4:d5:9a:0c:ad:38:62:32:
17:30:3b:5d:07:57:af:89:a2:92:f9:9f:a6:10:6f:
57:95:d8:79:7e:6d:74:16:86:e8:e7:1d:1e:5c:98:
1f:7d:45:2b:df:a0:6b:3f:2c:46:2f:18:d6:f5:cf:
0e:04:4a:bc:99:c7:3e:66:74:4f:34:06:f2:b6:ac:
ff:b7:55:52:44:dd:96:bf:fa:67:88:11:be:d3:ef:
f7:4d:49:a3:ec:b3:98:bf:cc:29:87:5c:f7:c9:9e:
67:c1:8b:d6:b1:90:df:32:a1:69:32:f9:19:3e:ae:
6d:d4:26:48:43:49:f3:42:b5:bb:af:20:56:b9:89:
3d:8c:cf:ae:41:75:91:57:09:29:2b:e2:7b:90:ed:
1f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6D:57:96:CD:A3:5C:40:C6:95:AC:DC:E3:AA:5B:85:2F:AC:8C:E8
X509v3 Authority Key Identifier:
keyid:89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:66:67:9b:76:18:d2:83:54:7f:00:16:62:6f:af:fe:a0:13:
21:03:ee:6e:6c:cb:a5:4a:6b:27:3f:f8:e3:ed:4a:86:73:28:
04:16:09:48:56:11:e0:1f:a0:64:f7:4a:75:c5:ea:b5:e8:2b:
00:7a:d0:4b:40:ae:23:29:4f:f6:82:1b:96:35:66:04:06:c2:
90:e5:cd:fc:64:29:1e:b4:2c:38:d9:fb:ee:87:5d:40:20:61:
70:5b:cb:46:a4:c1:d2:74:6b:90:0a:d4:f7:9c:a7:25:34:e4:
b7:11:01:56:54:f4:27:11:0a:4a:2e:51:d1:40:a5:d1:a8:7e:
dd:ca:48:55:5e:04:26:99:e2:93:f6:e0:d8:6b:16:27:8d:a9:
fc:88:fc:15:be:21:5b:58:b4:4b:f0:39:20:f2:ad:61:57:2a:
01:18:7f:ee:c5:14:da:51:f2:44:b1:85:ec:a8:87:83:43:b4:
71:7c:f5:3c:5b:9d:fe:3b:75:3d:08:5b:8a:2b:40:57:d9:f5:
fe:54:4f:3a:9e:29:f6:88:53:12:e0:3d:f2:1e:42:b9:58:0c:
43:c8:eb:50:93:bf:17:79:42:70:92:a5:4d:86:da:1d:d3:2c:
a5:73:ba:39:51:7f:c8:49:06:6c:bf:3f:6b:4b:eb:95:a2:f2:
3b:55:b2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:58:56 2025 by rpki-client