Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: ZUkCKIhBj7UhcWEsY7bmfsfESGKZVCZiWkPP2olD2hI=
Subject key identifier: 2E:F4:4E:88:3C:1B:1E:C6:C6:BF:1C:D8:E1:0F:E4:BC:D8:5B:A2:99
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 0197643A3DD7F82C93C60652D924D3D13FEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0D28
Signing time: Thu 12 Jun 2025 13:00:27 +0000
Manifest this update: Thu 12 Jun 2025 13:00:27 +0000
Manifest next update: Fri 13 Jun 2025 13:00:27 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: vBPhIJLJ0lvfg5++hbKclmZuBQJ14+DXVcAzjZDRCRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:3a:3d:d7:f8:2c:93:c6:06:52:d9:24:d3:d1:3f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Jun 12 13:00:27 2025 GMT
Not After : Jun 13 13:00:27 2025 GMT
Subject: CN=2ef44e883c1b1ec6c6bf1cd8e10fe4bcd85ba299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:91:97:ad:b5:63:ed:2e:13:c2:80:74:04:f1:
3e:29:41:5e:45:9f:16:07:55:07:fa:85:5c:83:77:
fe:03:fd:8b:03:ed:1f:b8:16:e6:16:b9:e7:a3:1d:
26:59:12:38:b9:3a:34:83:be:56:1a:bc:dc:e2:13:
6b:55:88:f6:f7:6d:fe:03:3c:9d:7d:a9:fd:42:10:
e5:97:26:fc:7c:e6:c0:e7:d0:66:f1:fe:49:90:36:
e3:cc:43:64:ac:c4:c9:c7:b7:45:d0:02:43:1e:65:
1a:e7:fa:16:a7:1a:31:a8:2e:7d:02:95:a1:ab:9e:
0f:10:80:f8:06:5f:fd:2a:fe:ac:5a:91:34:e5:30:
44:08:d6:45:99:91:da:9f:79:64:6e:5e:7c:aa:6e:
55:64:c2:2f:13:e8:f8:c2:31:70:b6:81:d2:87:20:
36:75:35:bb:d8:e5:50:86:da:f4:6d:5b:36:1c:67:
80:93:9c:ac:97:00:00:57:59:f5:6b:5d:72:15:c7:
2d:85:a5:02:c8:0f:0b:97:82:47:67:33:5d:ff:bb:
ef:1b:5f:7a:0b:64:e0:fc:0f:b7:7b:76:ad:b4:25:
d5:e9:20:9a:1e:a0:a1:2d:6c:b8:93:dd:12:d1:de:
e4:94:a0:99:73:95:0a:03:f5:9f:38:0f:cb:d6:89:
7b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F4:4E:88:3C:1B:1E:C6:C6:BF:1C:D8:E1:0F:E4:BC:D8:5B:A2:99
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:9d:09:8c:c9:dc:80:97:5a:dc:3e:a7:7c:81:4e:14:7f:9e:
bc:f9:05:65:ab:50:c0:82:41:49:ba:28:e4:9c:44:b4:20:ea:
47:56:3f:ff:79:a4:b3:9c:7f:47:d3:80:d3:0d:ef:3b:43:ce:
2a:35:02:49:d1:bb:11:d0:42:ae:c7:c9:f5:2f:7d:a8:8b:0a:
b2:00:66:3b:3d:a4:48:d1:cc:e9:cf:3c:f1:25:1c:b8:6c:c5:
da:48:91:f3:30:f2:50:fd:ee:13:14:11:70:68:17:f5:08:a6:
4a:ba:00:d3:ab:dc:bd:aa:0a:d8:e0:8f:be:76:56:86:e6:f5:
a0:5c:ba:91:10:16:c3:66:62:27:ec:a9:53:c6:58:42:44:ef:
b6:15:f2:e4:06:fe:03:2d:34:2b:5e:f7:4d:ee:a5:e4:ea:3e:
89:2e:55:4f:8b:5d:0f:db:db:94:b2:5b:ca:92:33:1a:b7:6c:
a7:3a:0a:81:09:fb:3e:5d:4f:d3:ae:9e:7b:f7:9b:f3:55:fa:
f4:da:cb:7a:8f:e3:4b:a0:ad:ba:1e:a0:83:95:93:33:b4:3f:
56:b6:c4:88:6c:a0:56:31:eb:94:f2:6e:21:13:33:01:19:be:
5c:be:43:0e:91:c0:39:fb:74:06:db:c5:04:28:bd:65:da:7c:
35:a7:91:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:06:51 2025 by rpki-client