Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
File: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft (raw, json)
Hash identifier: Rt3iff8MvxcGjA0rRxfLIsRq7iMuiIydF76tq/eEKJs=
Subject key identifier: 5C:72:54:70:0D:95:9B:17:FB:6F:5E:F8:6F:DB:67:4E:DE:AF:A2:78
Authority key identifier: 89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
Certificate issuer: /CN=89af8769339703da3b0cb5e831023d3bf63f022e
Certificate serial: 01974967C6CBCB3865F5394987C5AF3D429E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
Manifest number: 0E26
Signing time: Sat 07 Jun 2025 08:00:27 +0000
Manifest this update: Sat 07 Jun 2025 08:00:27 +0000
Manifest next update: Sun 08 Jun 2025 08:00:27 +0000
Files and hashes: 1: JBBfWvBvIPbMFEPW3wW2A3eZfMw.roa (hash: HPVfysoAPIIkBoYBVqV/VP2S0bfAf3Hk6zV6kpgHup8=)
2: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl (hash: SdLrCq/gtvM+hwgbyqaHBshlMnTuzofXkKVQQ3wIyhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:c6:cb:cb:38:65:f5:39:49:87:c5:af:3d:42:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89af8769339703da3b0cb5e831023d3bf63f022e
Validity
Not Before: Jun 7 08:00:27 2025 GMT
Not After : Jun 8 08:00:27 2025 GMT
Subject: CN=5c7254700d959b17fb6f5ef86fdb674edeafa278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:d1:5c:86:49:0e:16:98:8d:de:e3:72:ed:
16:3b:02:c8:96:42:1e:13:e3:3f:ba:62:ef:8f:09:
dc:f3:ad:49:43:07:09:8d:69:6f:e8:4c:fe:3f:56:
4c:52:ba:e2:f3:f8:e5:15:6f:18:13:31:d8:9d:05:
16:7e:1e:0e:3b:5c:5b:a0:88:d0:c4:c2:e1:2d:63:
4d:14:b2:f5:61:37:aa:97:13:be:e0:a3:94:dd:f7:
41:b7:ea:cd:9e:3b:4c:8e:11:82:f6:fc:78:8e:cc:
c5:de:2f:21:f3:a9:af:46:37:8c:bc:50:69:f5:62:
48:ef:92:b2:ea:2c:9b:fc:63:a6:a2:c6:7d:a0:a3:
91:cb:99:ae:65:a0:30:fe:74:0e:9e:ee:bd:da:6d:
eb:a1:f0:1f:b5:70:d8:7b:bd:cb:15:8c:ab:7d:e5:
e0:63:88:de:e7:f1:0a:9d:39:e6:b1:70:7c:0b:f1:
52:cc:10:7b:63:6b:ca:59:c1:81:67:d3:12:6c:8a:
f7:64:bf:f4:b7:45:6c:82:cf:ab:f5:8f:e0:f4:25:
53:64:73:73:be:bb:82:af:90:f5:55:b4:0c:31:2d:
d5:57:a2:5c:01:f7:fa:22:53:7a:86:70:25:48:b0:
41:73:e5:32:c8:2f:ed:d1:18:94:34:62:e9:ac:43:
18:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:72:54:70:0D:95:9B:17:FB:6F:5E:F8:6F:DB:67:4E:DE:AF:A2:78
X509v3 Authority Key Identifier:
keyid:89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a5:48:86:fd:ce:f8:55:2c:d6:6b:c2:a9:19:88:c1:93:b1:
c2:99:22:26:35:c5:ec:4a:eb:e1:22:07:25:16:06:60:04:94:
4d:77:fe:b3:00:e5:dc:7c:41:2f:59:2d:fd:d3:ee:a5:8b:c0:
99:75:16:29:c2:b5:c8:ff:c6:22:81:9a:dc:6b:9e:0a:9e:20:
3f:b5:a8:f8:0e:a2:a3:d6:f3:e9:f9:5d:af:1b:d9:13:f3:4b:
f7:01:b3:dc:66:c5:fc:55:8d:f5:a1:a9:0c:58:7b:0c:97:3d:
04:ea:b9:2e:27:83:ac:33:b3:41:93:3a:01:4c:88:55:bd:6b:
2b:74:25:2c:dc:25:70:b7:54:f0:d2:80:ee:a5:00:2d:c3:36:
6e:25:39:3a:91:aa:7d:61:51:d8:8a:af:20:10:65:de:4a:3e:
04:0c:44:26:06:da:c4:8a:a9:b1:41:99:8d:e3:00:45:db:46:
85:12:4f:2f:3d:32:ac:42:73:8e:b5:5d:18:d7:40:db:14:cb:
73:0e:42:1d:fb:eb:b1:e8:16:4c:6c:36:d1:6f:77:a9:3c:b9:
ed:09:69:24:de:ff:35:3c:9d:4c:a2:38:b5:79:96:79:c5:1e:
08:d7:50:fd:bf:06:c1:45:0a:e5:65:dd:40:5a:59:92:f1:b9:
a9:c6:79:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:43:32 2025 by rpki-client