Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json)
Hash identifier: dsyXEdgyFWU7qAMcxLVh/0dD3aM2VPs1EIJaBLMQKHQ=
Subject key identifier: 90:98:27:95:01:CD:D2:03:5F:A2:70:76:EA:5C:41:31:FB:3A:CB:3A
Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Certificate serial: 01974FA14F4479F3D019FE401AFC4306E0D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 13:01:01 +0000
Manifest this update: Sun 08 Jun 2025 13:01:01 +0000
Manifest next update: Mon 09 Jun 2025 13:01:01 +0000
Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: tELNp3zZwFzlQZxUJrveGoNYqL2wOfH3BJpbw+I9unQ=)
2: Tp4BAItGYlXYP71Yl1jvkjdBkns.roa (hash: BUC2R1hzU4lwEDEogKCUTPLUZZa/Hz8pj9j9ce25uwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a1:4f:44:79:f3:d0:19:fe:40:1a:fc:43:06:e0:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Validity
Not Before: Jun 8 13:01:01 2025 GMT
Not After : Jun 9 13:01:01 2025 GMT
Subject: CN=9098279501cdd2035fa27076ea5c4131fb3acb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4c:7c:a4:c6:de:ec:09:a9:11:cd:cf:c7:96:
85:58:d0:59:86:10:f3:93:e5:5f:2e:7c:4d:32:76:
9e:17:84:6c:72:df:28:92:2b:31:22:e2:f3:07:b2:
ef:97:bc:37:21:85:d6:22:c8:9c:c3:d5:c4:1e:ee:
61:eb:6e:97:ba:c1:74:92:42:1a:0c:e4:73:e8:61:
3a:c2:12:fb:0a:82:d8:66:37:e9:1b:c9:42:bc:33:
86:bc:16:47:8b:59:8a:f1:89:dc:c2:b7:88:b6:62:
70:8c:97:48:fc:10:44:56:5a:d9:73:ab:68:e9:80:
ee:ab:9b:c0:43:87:83:ac:cd:14:43:d7:7e:d4:c0:
c9:5c:2b:a4:de:af:9f:eb:a2:28:f5:f1:0a:62:01:
92:0b:2b:3b:74:ee:de:32:18:da:e0:0e:ef:74:06:
43:03:cb:4a:ab:e0:ca:2e:7c:34:9b:bd:3f:59:e0:
49:e4:df:1e:e2:5f:71:c2:71:31:19:0f:f9:b0:10:
54:81:51:6e:da:dc:17:47:94:0e:2a:31:54:23:d0:
d5:03:99:97:b2:96:09:28:97:92:a4:8b:74:33:04:
76:47:3a:f7:7e:34:88:0c:cb:45:f9:0a:4c:e7:dd:
85:0e:0f:05:55:1e:35:38:c6:82:35:0d:ed:42:df:
c3:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:98:27:95:01:CD:D2:03:5F:A2:70:76:EA:5C:41:31:FB:3A:CB:3A
X509v3 Authority Key Identifier:
keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:99:d9:20:1b:8e:ba:b7:3f:2d:ef:c1:26:83:b4:88:5b:33:
38:e1:08:23:05:f8:8e:5c:df:7f:a9:4c:2d:51:60:6b:ea:c6:
43:7e:f6:90:f8:6d:68:90:e7:2b:29:36:85:65:77:25:e2:40:
54:c8:ec:a9:e4:60:f2:a7:5e:6e:6f:ca:32:2a:a2:76:37:2a:
d7:80:84:1a:27:0b:ec:51:ce:cb:0d:71:65:f4:60:9a:04:fb:
9f:6b:b4:7c:a7:ae:24:05:cf:a3:eb:8c:0e:56:bd:c1:e6:b8:
bc:49:ce:b7:a8:3c:eb:f8:34:a9:83:91:68:9f:2e:82:1a:d9:
8d:a9:99:be:14:42:68:18:61:04:a6:5f:b5:0c:a8:e7:b6:4d:
a4:62:93:e8:53:71:66:19:b3:33:4a:a2:20:0c:84:a4:dd:64:
35:6e:1f:e7:31:e4:21:3c:e6:c1:57:ef:5a:ac:a4:53:84:be:
65:5c:e8:97:87:de:b4:ba:22:95:db:7f:9b:b3:fa:df:8d:eb:
28:83:51:bf:6e:05:42:fe:13:fd:b7:24:69:7c:7e:21:bb:1d:
50:b5:3f:65:f3:1c:2a:d1:d1:5f:ba:15:e0:4d:08:f0:e1:53:
f1:a5:f5:9b:bb:d3:55:9e:94:03:5b:ae:89:bf:66:ec:1f:6c:
7b:1e:e1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:46:47 2025 by rpki-client