Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: 2ez+F7gzi6GUKfbGB8EU15umd1GNcobU3+KFHRXeHmM=
Subject key identifier: DD:40:EA:49:6B:90:03:AF:FE:87:8B:F5:AD:4F:FB:AD:52:FD:58:66
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 01974A43DD6FC287396B2FD8F9DF98A02B1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 12:00:50 +0000
Manifest this update: Sat 07 Jun 2025 12:00:50 +0000
Manifest next update: Sun 08 Jun 2025 12:00:50 +0000
Files and hashes: 1: FE1p8xqk22ZLL8TtVpBgIJ5HCYk.roa (hash: EEjSbBj9sFsFeIYvGJ66Mb2B5f9wjNh8P6NHIHv03o4=)
2: Nj_g5XagzgChnaGJmyAjIxliPxQ.roa (hash: 2T2yAo36kvnreO/zfmG7HDMPjTZHcC33NYqG6yteeqQ=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: kEMokwhr2hUhof/hK35SHS4znEnGFaTablaKoxj4VC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:dd:6f:c2:87:39:6b:2f:d8:f9:df:98:a0:2b:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Jun 7 12:00:50 2025 GMT
Not After : Jun 8 12:00:50 2025 GMT
Subject: CN=dd40ea496b9003affe878bf5ad4ffbad52fd5866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:94:5a:7f:bc:b1:ff:3a:b4:b0:63:c2:e4:
85:3c:46:38:4e:61:cd:38:9b:be:9b:e1:7f:4b:d0:
79:ea:a1:3d:49:91:93:8c:89:d9:9b:8f:3e:81:03:
42:06:c2:09:c2:39:57:a8:f7:70:79:91:88:ad:a8:
d7:00:ef:92:4c:17:89:23:d6:5f:0b:f3:c3:5a:25:
39:6b:28:d9:ba:b6:7c:aa:62:6b:d6:31:14:f2:2a:
62:de:71:16:f4:09:07:3a:24:3c:e2:7e:2e:55:98:
0c:05:58:b3:00:a8:20:f1:92:73:5c:e4:16:3f:34:
c0:20:ab:af:d1:4e:42:54:ad:1c:30:81:cd:fe:64:
52:ac:ef:9e:12:8d:eb:a4:4e:b0:b0:eb:7c:94:62:
27:09:5a:ae:e0:93:94:a6:11:d6:18:9b:07:1f:a8:
53:e9:54:67:4d:ee:c5:c8:4d:4b:2c:1f:c8:a6:bf:
4c:21:55:a4:df:db:c2:1e:e5:ce:14:af:e7:90:4b:
1e:83:a9:4a:21:69:85:eb:08:52:04:a9:f0:69:6f:
1c:de:34:75:c3:8a:72:13:88:10:22:64:3f:37:ea:
97:ed:fd:8f:a4:d4:ce:ca:f9:da:b4:cb:95:17:b6:
86:6c:45:8f:10:dc:53:61:fe:7b:7b:1d:eb:11:c7:
5b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:40:EA:49:6B:90:03:AF:FE:87:8B:F5:AD:4F:FB:AD:52:FD:58:66
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:f1:3f:72:46:37:6b:ce:56:08:92:f2:03:d8:9f:3f:45:f4:
d7:01:00:2c:12:58:99:bd:ce:73:c9:01:22:ee:93:60:54:4d:
f0:b7:af:31:4f:c9:c2:77:d4:0e:01:62:96:29:5a:7d:f2:5b:
7b:06:fa:71:be:6e:2d:15:4d:6b:d1:ed:1f:1f:ef:9a:01:b2:
92:33:1c:5f:b6:a8:ec:07:4e:9b:a0:97:7c:90:98:25:a1:cb:
8e:4b:2d:66:94:45:3b:df:d0:18:ea:7e:4f:2b:aa:7d:75:cf:
ce:fa:1a:8d:26:de:45:34:93:9e:cb:af:59:68:cd:fa:8d:49:
0c:2e:82:72:e4:0d:08:af:5c:a8:c4:7e:ad:cf:03:d7:2c:83:
40:6f:46:52:72:f0:e1:8f:1f:ae:93:8d:cd:f2:13:a0:2e:6d:
97:10:63:19:da:ee:c6:7f:39:e2:e6:57:e0:af:6c:15:49:01:
2d:f7:4c:c9:d4:fe:61:04:6c:04:03:0e:d1:79:7c:fc:c7:dd:
d2:cb:62:49:da:0e:02:dd:7b:36:ca:9b:f5:e6:6b:0e:07:7e:
6c:0f:1c:f7:50:da:09:69:b6:56:7b:4f:34:b8:28:e3:ce:f2:
5e:b8:c6:61:fc:52:35:66:1f:ad:2f:a7:29:82:36:da:a8:e9:
82:f8:ed:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:30:44 2025 by rpki-client