Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8901b4-a821-4fc6-943a-f769e5426d20/1/IyYoKFK1RzuXS_-ersILA6XyAQ4.mft
File: IyYoKFK1RzuXS_-ersILA6XyAQ4.mft (raw, json)
Hash identifier: h+CmXktv9sjHa1F7kgmKjCyVF0k/UTTlKJmzBS/jr+8=
Subject key identifier: 36:D4:30:29:D0:87:28:CC:FE:AE:ED:55:E1:C8:45:EC:E0:04:9E:6F
Authority key identifier: 23:26:28:28:52:B5:47:3B:97:4B:FF:9E:AE:C2:0B:03:A5:F2:01:0E
Certificate issuer: /CN=2326282852b5473b974bff9eaec20b03a5f2010e
Certificate serial: 01976C98E7C6730716D7AED81A10AEF24E4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyYoKFK1RzuXS_-ersILA6XyAQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8901b4-a821-4fc6-943a-f769e5426d20/1/IyYoKFK1RzuXS_-ersILA6XyAQ4.mft
Manifest number: 028D
Signing time: Sat 14 Jun 2025 04:00:49 +0000
Manifest this update: Sat 14 Jun 2025 04:00:49 +0000
Manifest next update: Sun 15 Jun 2025 04:00:49 +0000
Files and hashes: 1: IyYoKFK1RzuXS_-ersILA6XyAQ4.crl (hash: kvWD43o4g2URt8hIt4VL+fDDcjuR7Uuv/de/fB/Y51w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8901b4-a821-4fc6-943a-f769e5426d20/1/IyYoKFK1RzuXS_-ersILA6XyAQ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8901b4-a821-4fc6-943a-f769e5426d20/1/IyYoKFK1RzuXS_-ersILA6XyAQ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IyYoKFK1RzuXS_-ersILA6XyAQ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:e7:c6:73:07:16:d7:ae:d8:1a:10:ae:f2:4e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2326282852b5473b974bff9eaec20b03a5f2010e
Validity
Not Before: Jun 14 04:00:49 2025 GMT
Not After : Jun 15 04:00:49 2025 GMT
Subject: CN=36d43029d08728ccfeaeed55e1c845ece0049e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:66:28:59:f0:1c:80:b7:f3:50:2a:0a:f4:e7:
30:4d:72:4d:57:df:1d:c2:19:a2:43:be:3e:f4:6f:
7a:5d:73:2f:90:de:56:42:ee:d1:cd:a5:3e:63:6d:
f7:76:c3:c2:e8:a4:b3:4f:17:bc:ea:88:61:e6:c1:
a5:7b:a8:e8:b7:96:fb:80:d4:c9:47:0d:76:6d:3b:
da:c8:12:d6:da:8d:d4:cd:b0:fe:0e:89:6b:d0:fa:
52:3b:b8:02:dc:51:c0:bb:40:be:19:f2:2f:8c:78:
05:3c:0c:7d:2c:b6:74:4e:38:c8:8d:21:10:b0:be:
57:07:07:99:ac:61:bb:5a:77:7d:ae:7a:98:e8:d2:
80:87:66:7a:3a:2c:6e:9e:6c:bd:07:49:07:e7:29:
23:2a:49:af:46:87:4d:ee:ff:c5:41:25:09:a8:50:
94:b4:c6:62:92:ef:23:cd:3d:5f:be:9a:fb:ee:c8:
1a:38:a0:3e:9a:1d:49:0b:d7:02:76:72:30:07:21:
2c:26:1d:c6:27:e3:31:18:d8:d6:95:6c:8c:17:01:
f5:54:12:c9:22:ee:cb:45:4f:03:bf:a2:fd:86:6b:
44:a4:bc:2a:c4:e7:76:65:f0:95:aa:f8:e3:f2:1a:
8b:6d:84:b4:19:30:29:e0:9b:41:3a:36:cf:f8:32:
59:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D4:30:29:D0:87:28:CC:FE:AE:ED:55:E1:C8:45:EC:E0:04:9E:6F
X509v3 Authority Key Identifier:
keyid:23:26:28:28:52:B5:47:3B:97:4B:FF:9E:AE:C2:0B:03:A5:F2:01:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyYoKFK1RzuXS_-ersILA6XyAQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8901b4-a821-4fc6-943a-f769e5426d20/1/IyYoKFK1RzuXS_-ersILA6XyAQ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8901b4-a821-4fc6-943a-f769e5426d20/1/IyYoKFK1RzuXS_-ersILA6XyAQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:98:55:72:e5:6b:ff:8c:16:9f:51:3f:fb:ca:73:29:3c:b2:
56:dc:3b:4e:b7:51:12:cb:b9:cc:74:ea:8c:33:96:fe:a5:23:
27:6f:f1:39:33:23:42:9d:e3:5b:0d:1a:ec:4e:e6:bf:3b:59:
9d:75:74:dc:59:bf:4b:91:60:66:c2:55:15:75:15:da:4e:bf:
fb:03:f1:88:8f:11:3e:7c:63:6d:81:86:a3:44:5f:8b:6f:e7:
f9:ba:8b:81:8f:4e:19:1f:ce:ff:5d:82:9c:6d:b2:10:ad:15:
57:0c:b1:2d:70:fd:56:34:8c:de:8d:9d:b3:e4:7b:b0:72:fa:
f2:e7:e9:fa:55:5f:9d:76:35:4f:32:19:79:37:ab:70:39:99:
ef:a7:f8:4a:9e:91:32:cb:59:0e:52:ad:41:e0:5e:b7:79:de:
81:b5:0d:5c:ef:7a:94:9b:d3:e0:3a:f9:07:54:cd:f2:26:8f:
82:aa:92:21:e2:81:84:e5:20:d0:b2:97:3b:a6:d8:ed:8b:b4:
95:4b:91:3f:72:a8:b9:ec:9d:e3:b8:78:9f:9f:2a:bd:1c:fe:
97:ad:a6:05:74:17:05:22:7d:92:60:1d:51:46:c4:0e:a6:f4:
c9:99:ce:30:a2:d8:e6:4b:82:1e:1f:60:95:c8:90:6d:1f:04:
67:f0:d4:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:44:52 2025 by rpki-client