Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
File: iay4iT6UGAdH7sGXXtVgTE3b4MU.mft (raw, json)
Hash identifier: pUfLjmKp65fgXwRd/XrCT2ZZAt1Zhnvg1Zk6ic5YXX8=
Subject key identifier: 48:C9:9B:A1:DF:D5:5E:C2:17:90:94:9A:C7:64:47:7A:66:F0:CA:EF
Authority key identifier: 89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
Certificate issuer: /CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Certificate serial: 01974AE8F55D545DA7EF2D407FB8B07D86B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 15:01:10 +0000
Manifest this update: Sat 07 Jun 2025 15:01:10 +0000
Manifest next update: Sun 08 Jun 2025 15:01:10 +0000
Files and hashes: 1: UoDvXAabOFEhN_Ur6iO6IlEoQNY.roa (hash: C2nYBT6rKIdGBRSYm5JfeMMp+MUUrWzb3x2zB3OMlgE=)
2: iay4iT6UGAdH7sGXXtVgTE3b4MU.crl (hash: OYxsAHERfjhN+C6or3EBgpGr69gFpbWklMgGlaYjgfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:f5:5d:54:5d:a7:ef:2d:40:7f:b8:b0:7d:86:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Validity
Not Before: Jun 7 15:01:10 2025 GMT
Not After : Jun 8 15:01:10 2025 GMT
Subject: CN=48c99ba1dfd55ec21790949ac764477a66f0caef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8b:6f:75:af:ab:94:b3:12:85:56:e0:2d:f7:
db:5b:25:7c:26:87:24:7e:14:0c:84:cb:8e:45:af:
c3:5e:96:e7:57:fa:b5:d8:43:11:51:01:18:e5:45:
bc:fb:47:41:a9:cb:c0:f8:7a:d0:ce:0f:9b:e7:56:
3a:5b:38:87:00:10:8a:ec:24:c3:08:c1:c4:b7:c6:
49:99:43:34:2d:bc:44:3b:c6:2d:8f:4e:17:00:ea:
9c:22:8d:d5:99:ac:2a:a4:30:56:93:4e:60:d0:2a:
a7:de:6a:d1:85:7c:be:0b:a4:e7:c8:49:e5:68:f3:
11:55:95:3c:be:ae:46:f9:01:fc:85:97:9b:a0:8c:
d4:61:bc:0e:7d:0f:36:ec:f1:b6:c3:19:38:85:59:
4d:d1:1a:88:09:56:65:bc:15:d4:64:03:ea:6b:77:
a2:ec:3a:80:80:b9:58:94:a9:e3:76:fb:1e:75:8c:
1a:91:31:95:6b:0b:42:bf:3d:a2:17:a2:20:b6:e0:
eb:ae:84:b5:3f:46:d8:2a:70:0c:da:b8:81:5a:d4:
78:39:04:79:23:fa:58:1c:ba:51:28:8b:b3:a1:0d:
65:0a:96:e2:a5:7c:a4:5e:04:ef:7c:8f:bc:b8:a7:
ce:ce:a8:4a:99:3f:e1:0d:0a:c4:dd:39:8f:b1:79:
a4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C9:9B:A1:DF:D5:5E:C2:17:90:94:9A:C7:64:47:7A:66:F0:CA:EF
X509v3 Authority Key Identifier:
keyid:89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:85:25:76:5c:bf:2a:b7:a7:48:27:25:ae:cc:9d:15:4a:af:
5b:83:84:ab:c1:7c:c4:45:eb:20:77:11:72:ca:bc:e8:0a:77:
57:06:52:a2:53:0d:02:35:ab:23:f6:8f:d8:e1:32:6a:06:cf:
60:32:f0:91:9b:ab:04:7b:86:5b:09:09:a3:f1:b5:7d:07:fa:
89:e5:58:a3:4d:cb:be:f4:52:26:45:6a:62:62:10:c8:b5:82:
33:0f:e4:1d:92:d4:aa:e1:46:54:dd:6d:0b:01:ed:b2:ec:64:
5f:3c:fa:95:03:cb:f2:1d:70:a3:c4:17:f6:e6:c0:87:7d:5a:
64:d2:c8:cd:f1:7a:51:b6:a2:31:04:f6:2d:95:45:ab:8e:d6:
dc:c4:d8:fc:23:f4:0c:3b:70:4d:9e:15:aa:09:d6:6a:85:aa:
2c:c8:2c:05:4a:69:4d:15:83:a4:7b:7c:c9:52:50:c8:75:d8:
d5:9e:5b:4d:46:d9:09:3c:04:da:31:62:87:e7:9e:c6:2e:f9:
7c:a1:55:32:db:d1:a6:85:0c:36:5d:0a:8f:6b:09:6e:39:3c:
85:68:7a:9c:37:6e:cb:2b:05:64:8c:4a:e4:8c:53:2c:fa:ff:
96:de:36:97:3c:d4:5c:ba:ac:b6:14:8f:69:02:94:ed:b9:f7:
96:93:75:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:11:22 2025 by rpki-client