Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: mYUOHcsKUV4+b+f+BqLYodEyvd76Mul5VtwSXwWDT/E=
Subject key identifier: D3:AD:31:DD:5E:20:0D:6D:78:29:36:5B:6D:B9:0C:E2:F6:2E:77:87
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 01974931731F25F9A0600CE7DE129CD02FA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0964
Signing time: Sat 07 Jun 2025 07:01:06 +0000
Manifest this update: Sat 07 Jun 2025 07:01:06 +0000
Manifest next update: Sun 08 Jun 2025 07:01:06 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: I6oClQaSM4BFKMnjBYh+CMmdaS8FkDggvsCWozrtSro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:73:1f:25:f9:a0:60:0c:e7:de:12:9c:d0:2f:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jun 7 07:01:06 2025 GMT
Not After : Jun 8 07:01:06 2025 GMT
Subject: CN=d3ad31dd5e200d6d7829365b6db90ce2f62e7787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2d:6f:62:09:9a:ef:2d:cf:67:16:7e:14:0f:
0c:27:c3:8f:43:a1:8b:5e:b9:05:4d:1e:3f:ba:45:
74:2d:eb:05:44:5f:cf:8a:05:74:6f:57:95:d5:80:
50:83:84:06:7d:6b:2c:1f:6a:88:ad:04:ab:62:00:
ae:93:f2:3f:58:a4:4b:2d:de:2a:5c:78:a3:d1:ba:
f3:60:5a:23:d0:dd:b1:1b:51:3d:51:14:0e:2b:67:
ce:64:84:9f:c2:d6:d7:3e:a9:f0:52:d4:63:5b:c0:
62:83:db:20:36:12:97:31:89:fa:dd:62:ad:d9:a4:
6f:19:a7:fc:47:a0:b7:24:0f:38:ca:bb:00:94:46:
d2:f0:45:b4:2c:2d:b4:50:2a:7b:17:a5:73:4e:32:
b8:e3:0b:15:39:ba:7b:ce:52:0e:f5:4d:bd:62:a7:
58:23:7d:92:05:b7:4e:f8:5c:8e:9e:f0:58:57:f3:
24:67:6f:46:16:d5:d9:29:e5:0a:70:b7:35:da:c1:
06:67:5e:8c:3b:c0:18:78:77:4d:47:31:2e:af:df:
0c:f2:cf:c8:3a:e1:be:21:af:24:aa:4b:3c:1b:cb:
d0:f9:cc:f3:db:3a:9c:bd:7b:4f:b8:9b:05:a1:88:
24:ce:cf:07:4e:ba:e2:ad:b2:a1:12:77:39:2d:41:
13:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AD:31:DD:5E:20:0D:6D:78:29:36:5B:6D:B9:0C:E2:F6:2E:77:87
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:3f:dc:7e:8c:fd:fb:55:f9:a6:e1:10:62:36:0c:97:c2:b0:
94:1f:65:40:a3:18:85:b8:ad:12:96:39:cd:54:26:fb:6b:61:
d4:74:98:76:fb:73:7d:47:c9:75:c4:d8:56:d2:9f:1d:f7:25:
de:c1:43:33:8c:20:2c:b9:bb:aa:a7:47:76:d5:f4:4a:ff:e8:
05:1f:44:52:2d:9e:d0:4f:c4:75:fc:77:b0:42:d5:cd:8b:76:
cd:5e:72:14:00:86:e5:35:3f:39:bb:7f:f7:08:da:f7:e6:1d:
26:24:67:82:14:27:29:fe:69:93:be:ed:5e:29:e0:29:9c:b7:
75:e1:e4:45:e2:1d:9e:47:b9:6e:ab:34:d8:71:99:38:cf:e0:
b1:3f:88:f9:4a:be:d5:e2:1e:2d:28:73:d1:78:33:5e:89:54:
fc:98:15:65:ea:ca:d7:f4:5a:81:b0:d6:fe:50:15:42:bd:d9:
d6:8d:b5:f1:91:3f:ac:07:e8:a4:ac:ba:08:93:2a:39:23:2a:
a7:f6:dc:88:3d:68:3a:9f:1f:d5:b6:b0:9f:b4:d9:c3:48:af:
9f:71:19:07:23:33:6d:7c:e3:e0:1d:20:58:d2:6c:a3:90:8c:
cb:e6:92:73:85:b8:02:75:0f:5a:76:12:9b:4e:0b:0a:64:62:
0a:e6:9a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:03:11 2025 by rpki-client