Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json)
Hash identifier: y8QMlKvcJtFDTOeMT9Ndaws1xEsrY6PfUMhGENYnIxg=
Subject key identifier: 25:21:D1:EC:00:04:0F:DD:AD:5A:B1:9F:C3:DE:6E:11:78:54:D1:50
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 01974A0C950D77C6548801E3762C99FC9525
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 11:00:27 +0000
Manifest this update: Sat 07 Jun 2025 11:00:27 +0000
Manifest next update: Sun 08 Jun 2025 11:00:27 +0000
Files and hashes: 1: EJO9ljE1s0Q84FuNpxDY98O5gUs.roa (hash: MidhZCUKLP8FjCtsor/fdefcfGoS6d1va0RAyvBU+x4=)
2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: ahNHYnqOTdlL+j9cAX5tU3/OR33KKe5kFW60uwk2aYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:95:0d:77:c6:54:88:01:e3:76:2c:99:fc:95:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Jun 7 11:00:27 2025 GMT
Not After : Jun 8 11:00:27 2025 GMT
Subject: CN=2521d1ec00040fddad5ab19fc3de6e117854d150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ca:fc:d5:a3:08:7b:d8:43:2e:81:30:e9:bd:
d0:36:93:e6:c5:75:97:5b:e6:96:01:27:8f:85:59:
78:c9:be:e7:d6:c4:02:11:89:04:16:44:5c:20:14:
44:72:c9:55:13:f5:3f:38:22:79:ec:6e:50:c4:d9:
d3:1d:4b:bb:6e:9d:e5:4e:56:a6:45:3d:d8:5e:ca:
08:e6:e6:64:13:b1:e8:9b:70:90:dd:9d:cf:d2:5c:
bc:2a:f5:22:8e:a6:2e:b4:83:49:b1:35:bd:d8:bc:
b7:89:e1:72:9b:6b:d7:98:ed:24:d9:19:d0:86:db:
d4:96:bc:46:a6:40:f7:68:3b:0d:ac:09:64:d8:e0:
93:24:a0:a4:5e:6a:ea:a3:3c:e7:0b:04:09:80:f4:
02:c2:e8:21:41:89:42:cd:14:b8:e3:6b:de:e3:6c:
31:7e:66:e8:34:d5:9f:c0:f8:ec:99:dc:e5:11:2b:
88:e7:04:f0:25:55:32:17:0a:bd:78:f5:d3:18:64:
10:09:d6:c9:5e:f1:1b:c9:29:91:4e:83:63:3d:0d:
4a:e6:c1:6b:48:20:7b:33:e9:4b:3d:8c:d4:48:4a:
f8:f1:f3:39:02:9e:41:d4:29:e8:e0:f0:08:02:20:
7b:e3:ed:a7:46:86:47:26:79:0e:29:57:9b:cd:2d:
5e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:21:D1:EC:00:04:0F:DD:AD:5A:B1:9F:C3:DE:6E:11:78:54:D1:50
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:7f:af:2f:46:c1:7f:13:8e:75:e7:be:8c:80:8e:9c:c6:03:
42:b7:e8:3b:7a:18:d9:29:2f:74:c7:0a:44:f8:25:95:d3:ef:
f2:bc:95:10:e9:78:92:19:0a:7d:27:f0:8f:a4:f2:99:9e:2a:
a1:51:91:13:ba:36:01:72:a8:0a:c5:ac:b6:ae:21:a5:04:0a:
97:92:e8:8f:64:22:11:ed:7e:55:a9:ed:14:91:d5:f7:7a:f1:
d3:f4:55:e2:a8:d6:80:eb:f5:08:62:05:32:d6:c2:1d:ec:b8:
f2:16:48:d5:27:7d:86:7c:30:57:d3:41:b6:93:d3:5d:dd:4e:
b1:64:70:66:84:1f:34:5f:63:2e:14:4f:73:f7:2f:9b:77:1c:
8f:4f:b8:ca:65:e3:c2:d6:05:15:cf:9f:51:d4:a7:4c:7a:f2:
55:e7:78:e8:01:7b:01:b1:54:1c:3a:0b:70:59:55:72:dc:ef:
79:66:87:43:0a:ca:69:55:c9:c9:27:59:ad:6c:6e:74:75:b6:
25:ec:13:9c:f8:68:c4:85:bc:64:8c:1f:71:22:be:7d:ce:d6:
6e:76:19:8e:be:80:6b:04:48:ff:d9:26:51:eb:9f:d5:d1:02:
8e:bb:8f:a5:35:f6:ac:e9:41:09:b0:a8:8c:e0:2c:34:eb:65:
7d:fa:ec:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:14:52 2025 by rpki-client