Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: KTp0AedSfk46k+st8cufgEXEU0k9LVZIUewc1kc0FZI=
Subject key identifier: EC:05:8E:E2:47:AE:11:B1:20:A7:54:D5:D4:00:23:C2:7C:1A:44:AB
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 01974B8D5065D8FA826E591C17774DA56EF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 05CE
Signing time: Sat 07 Jun 2025 18:00:41 +0000
Manifest this update: Sat 07 Jun 2025 18:00:41 +0000
Manifest next update: Sun 08 Jun 2025 18:00:41 +0000
Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: GQv0WUk8F9QApNnKyfZacEUiBoj5WSIfytiHDLRR470=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:50:65:d8:fa:82:6e:59:1c:17:77:4d:a5:6e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Jun 7 18:00:41 2025 GMT
Not After : Jun 8 18:00:41 2025 GMT
Subject: CN=ec058ee247ae11b120a754d5d40023c27c1a44ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:86:e8:8e:7c:70:29:4e:af:e7:2a:a0:76:c3:
3b:44:3f:a9:be:64:ac:bd:ae:ee:06:ba:59:ad:3e:
49:ae:88:e0:15:71:2a:e3:c7:8f:15:81:81:23:07:
09:dc:03:9d:61:8f:ed:59:da:20:c6:20:b0:39:05:
1b:27:33:be:d1:da:1d:43:ca:ba:34:97:57:66:6e:
d9:fd:46:57:c2:58:c5:d2:04:3b:01:8f:13:19:9b:
be:b9:6e:d2:4c:3c:45:76:21:52:01:26:df:70:ba:
86:b0:ea:d6:13:a9:79:99:a1:d0:1d:e2:24:50:99:
53:d4:d1:28:1f:28:e5:40:04:29:e4:99:67:6b:04:
32:1e:66:ca:7f:2e:a4:0a:57:52:88:01:c0:2f:6a:
2d:5b:70:43:c5:84:04:1a:76:59:ec:44:94:26:00:
97:f3:aa:de:d8:b0:74:88:5c:62:52:0a:06:8f:81:
19:a3:ac:5a:9a:15:d3:b8:bd:df:63:e4:ff:3e:59:
c0:0b:4c:f8:05:cd:81:7b:64:0e:54:f8:75:bc:8b:
be:d8:68:6b:4c:81:eb:47:df:86:ba:92:d6:0e:6d:
9f:cd:d8:87:45:5b:81:dc:64:d7:76:e3:b5:d7:2a:
11:dd:a9:6a:cd:7f:13:5a:11:a3:08:10:a8:3f:31:
62:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:05:8E:E2:47:AE:11:B1:20:A7:54:D5:D4:00:23:C2:7C:1A:44:AB
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:c9:cf:73:4b:08:13:bc:2a:9d:6b:7f:18:a2:a2:ea:b6:b5:
85:4c:2c:26:fa:e1:2b:df:2e:48:ec:90:4f:df:10:75:f5:08:
23:dc:64:07:24:f5:4e:fd:24:63:f7:55:70:ca:8f:2c:9e:9e:
92:94:97:a9:82:58:f2:d8:33:86:98:2d:83:0c:ac:4e:23:d5:
65:b8:70:29:b5:f8:aa:b3:02:6f:7a:07:85:3f:05:98:d7:dc:
7f:8c:23:04:c3:4c:cb:32:29:ca:76:4b:0c:ff:63:3c:10:b9:
92:08:31:4d:33:e1:8b:93:f8:b4:03:6d:0e:83:17:63:89:61:
5a:1d:94:57:bf:04:36:d5:f9:70:e3:ba:79:49:0b:09:27:7f:
4c:fb:80:8c:e3:e7:98:96:b6:c9:c1:ae:71:7d:b6:d3:d4:86:
39:66:19:7d:bc:10:04:11:f5:bb:b6:dc:f8:9a:32:c7:98:8b:
6d:a8:45:0a:fc:f0:13:e1:51:00:dd:45:ff:e7:97:82:9b:cf:
ab:df:f9:79:80:66:49:90:28:c7:49:7f:99:ce:ee:8d:fd:37:
42:9c:3f:e2:5a:81:1b:de:88:d7:f8:dc:a0:33:52:02:8a:b1:
73:92:0f:f5:6e:69:7d:db:ae:5a:a2:32:ba:48:5b:74:56:b4:
84:01:50:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:18:39 2025 by rpki-client