Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: NaeIpKmX+DHGdf6qARPYNw32Sd86VjGC2u3QtuTvfn8=
Subject key identifier: CE:CB:8A:F5:7E:E7:F9:62:A2:F8:45:0E:60:D7:D0:C3:57:C2:4B:9F
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 01974742760F8C53F1208AD8FB8BE83A263D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 02DB
Signing time: Fri 06 Jun 2025 22:00:27 +0000
Manifest this update: Fri 06 Jun 2025 22:00:27 +0000
Manifest next update: Sat 07 Jun 2025 22:00:27 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: nMouVXQamNL2QIRuMHA+w6LlP6CjhCyNWNzW9rgFTWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:76:0f:8c:53:f1:20:8a:d8:fb:8b:e8:3a:26:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Jun 6 22:00:27 2025 GMT
Not After : Jun 7 22:00:27 2025 GMT
Subject: CN=cecb8af57ee7f962a2f8450e60d7d0c357c24b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:45:3e:9d:b0:11:dd:3d:34:c5:ce:9d:94:
bd:2e:08:91:4d:c9:13:29:8f:e0:4b:be:fa:fb:06:
a6:1a:c8:35:f5:1e:f1:41:3d:ea:1e:af:92:e0:bf:
e7:0b:ab:54:77:6b:f3:7f:00:af:b0:84:91:44:68:
3a:b3:01:2f:c9:b0:75:03:5d:7c:72:21:3d:48:7f:
a9:a6:df:3d:c4:38:03:24:77:76:eb:40:90:64:4d:
67:b6:4e:2f:de:bf:ae:d1:19:ae:f3:3e:c7:81:59:
ac:fa:8d:6f:12:46:ef:9e:d7:0e:f9:97:4b:44:5e:
a1:e0:45:b6:97:5d:7c:fe:20:8b:e2:40:eb:39:b9:
9c:2e:36:ce:1a:77:67:82:d8:d3:40:5c:f9:6e:e6:
ee:60:ea:92:a5:05:c5:be:ba:e5:e5:30:0d:0b:5f:
5b:f4:b1:7b:82:a0:c4:d8:04:21:03:31:e0:99:61:
0f:4d:7d:f2:38:85:2c:76:d7:f6:1f:87:93:4c:eb:
56:1b:07:f0:02:e2:59:41:76:ae:f5:45:14:6e:9b:
54:55:4d:0e:70:74:ca:64:90:2f:2a:be:39:85:ec:
16:16:66:29:e2:40:43:04:8a:72:f9:e0:dd:6c:c9:
3a:fc:92:85:0d:bb:b4:2a:5e:36:a6:e8:36:ad:83:
1c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:CB:8A:F5:7E:E7:F9:62:A2:F8:45:0E:60:D7:D0:C3:57:C2:4B:9F
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:9b:b6:1d:57:bd:8b:58:40:ab:64:0a:49:60:0f:89:cc:7b:
c1:98:ac:ed:ea:1f:8a:5f:6d:ec:f3:e8:06:d3:dd:e3:d4:f0:
8d:3b:09:f5:66:56:30:84:a6:9b:bf:c8:cc:6a:e8:85:ab:27:
41:7f:f8:4f:5f:d0:9c:0e:48:56:0f:19:13:38:66:94:94:c2:
06:90:ef:f4:60:e1:05:07:e0:06:43:26:81:05:e6:d7:ed:1b:
b8:13:15:a4:c3:d0:d9:e4:d5:e8:76:41:78:cc:63:fd:72:3e:
84:ae:56:e4:c1:77:68:d3:b4:be:b8:17:de:de:76:de:84:8d:
53:a3:fa:1d:92:a6:89:32:ed:48:4e:a3:3e:17:01:48:13:fa:
81:5f:00:79:8a:41:9f:10:11:f8:c7:06:a9:91:1b:91:cb:9c:
a1:aa:a4:fc:71:43:94:0a:a3:8b:71:59:67:d6:19:50:e7:35:
bd:89:7f:7a:4a:23:1d:dd:0e:9a:4c:00:8c:d3:09:48:db:69:
10:35:4b:90:76:a2:a3:b9:98:6b:5c:ef:c4:9d:49:c4:e9:70:
fa:2b:6a:dd:58:39:71:2a:76:e9:8a:55:e9:29:36:0f:0f:a4:
9f:88:30:7a:e3:e8:e0:11:e5:68:85:c6:ab:fa:e4:bf:9c:3a:
56:f6:29:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:30:46 2025 by rpki-client