Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json)
Hash identifier: 4KVX/C3lm9+rKwO/W+H6AhJenEzrf7qBJsnn8IeItcA=
Subject key identifier: 1E:34:61:2B:F1:E1:7B:CC:1F:3E:B0:41:D8:F1:2B:A1:9B:9D:EE:75
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 0197463050CB72329D01D12642304D002BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
Manifest number: 0D1A
Signing time: Fri 06 Jun 2025 17:01:00 +0000
Manifest this update: Fri 06 Jun 2025 17:01:00 +0000
Manifest next update: Sat 07 Jun 2025 17:01:00 +0000
Files and hashes: 1: 1H3wr9EMEu_9kf6Zl38WrkoAkBU.roa (hash: FprWo0wu1rkhWTeCTL4oYKvIo6iA1oIZ1p0P+xAQYGs=)
2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: zpli05jxkYDFX86Dn2XDBi2RBVrGW9Lr2xoiOfC0Kvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:50:cb:72:32:9d:01:d1:26:42:30:4d:00:2b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Jun 6 17:01:00 2025 GMT
Not After : Jun 7 17:01:00 2025 GMT
Subject: CN=1e34612bf1e17bcc1f3eb041d8f12ba19b9dee75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:a3:e1:4a:9a:f1:4e:35:74:52:70:14:33:
11:b5:f7:f9:5b:05:17:26:44:80:be:af:0a:36:74:
d3:8f:14:3a:4c:09:c7:e2:55:e5:1d:e2:c6:aa:65:
66:01:49:bd:a4:d4:e7:4b:e6:fc:8d:4c:95:8a:57:
cd:d6:75:12:f8:8d:78:91:43:d0:90:24:24:87:86:
84:22:17:56:15:a3:34:7e:ea:fe:52:74:bc:36:f8:
b9:e5:da:e3:37:8c:f9:e7:fe:d0:2c:bc:bd:02:0a:
d4:17:7f:8a:78:ad:17:0e:9d:96:95:4e:07:66:3f:
17:6e:b7:c1:b5:df:a2:b3:30:4f:3d:ae:8c:ba:fb:
fc:34:50:78:04:1f:82:65:b9:8c:86:f7:e1:dd:59:
68:c7:bf:3c:4f:1f:eb:93:19:d0:12:09:40:46:33:
c0:d8:ae:eb:49:19:c4:1d:10:a7:4d:f5:8f:6b:f1:
77:4b:f1:14:a1:5e:fe:2d:27:55:57:86:f2:37:ef:
da:53:11:0a:f8:8a:30:34:2d:ee:8e:f0:15:35:dd:
59:ce:52:57:74:63:f8:22:92:ce:48:5c:66:a6:be:
b8:fb:16:69:a7:51:26:11:a5:ec:1a:0a:ac:3d:f4:
43:ab:41:f6:d2:5e:ec:b8:a4:f9:87:72:9d:7a:b8:
89:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:34:61:2B:F1:E1:7B:CC:1F:3E:B0:41:D8:F1:2B:A1:9B:9D:EE:75
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:1a:56:0c:7f:b2:87:c0:50:b9:b9:39:ae:74:3c:05:af:a7:
2a:92:1f:ab:a1:de:93:1b:53:f5:69:82:22:63:d7:0c:a3:d9:
b7:79:b8:a5:84:5e:c0:75:6a:1b:74:1c:f7:a9:3c:1f:ed:8b:
d2:bd:75:98:9e:2b:0a:ba:ab:1d:04:e0:3e:b8:b6:5a:1a:8a:
9f:11:c0:7a:c6:0a:0e:04:37:14:be:52:7f:5a:7d:e7:5f:2b:
4a:c4:9c:29:f8:be:a3:35:8b:dc:a7:43:8d:45:ab:8c:3d:5b:
4f:84:93:2f:e5:58:13:13:fc:f6:99:a3:1e:cf:c1:2a:6c:a1:
b4:c4:19:71:54:a2:23:eb:5e:6d:7d:5b:c2:de:e1:c7:2e:31:
da:59:24:fb:70:e0:44:1b:17:1c:3f:b3:89:9a:2d:c5:74:98:
af:fa:d7:28:4d:ac:bd:71:9e:da:3f:c8:8e:8d:2d:df:7e:0d:
c6:ae:af:7f:7f:08:61:84:3c:ad:8b:fc:4c:ff:4a:82:ad:cd:
cd:23:c2:1c:bb:64:f8:94:ca:66:ac:49:2d:0a:0d:41:17:00:
52:0b:17:03:ec:47:11:cb:67:0c:c6:41:48:7c:e6:fa:a3:b1:
0a:9e:86:d8:81:18:7a:2b:6d:84:69:3d:fc:a7:57:80:33:d1:
b3:3d:aa:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:59:13 2025 by rpki-client