
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
File: iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json)
Hash identifier: bxutERoxSNkhck5s0z+WR9E/farKhTFpoWttPk8eQ3g=
Subject key identifier: 56:28:FE:22:4E:9C:B5:74:2F:4C:2D:56:3A:60:ED:D5:F7:49:7B:0D
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial: 0197605D954C849F8CF079D6D4A5B59453B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
Manifest number: 1589
Signing time: Wed 11 Jun 2025 19:00:35 +0000
Manifest this update: Wed 11 Jun 2025 19:00:35 +0000
Manifest next update: Thu 12 Jun 2025 19:00:35 +0000
Files and hashes: 1: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: NcKFIqBF1870BBqWipOc9+9HePmMRM9fuICHCKL2WN8=)
2: uNj0vhcUK_UhfSxrxVZLYp2n6nk.roa (hash: xTRc4Rd4GJsupl0R/CzG6nNJAwdCcx0IPu8T4AbYP1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:5d:95:4c:84:9f:8c:f0:79:d6:d4:a5:b5:94:53:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Validity
Not Before: Jun 11 19:00:35 2025 GMT
Not After : Jun 12 19:00:35 2025 GMT
Subject: CN=5628fe224e9cb5742f4c2d563a60edd5f7497b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:46:3f:83:25:57:24:7b:58:79:66:7f:a0:54:
22:18:87:67:66:a4:4b:27:9f:b2:73:14:70:4f:9f:
e1:a6:e6:91:ee:9a:2c:1a:63:64:cc:1c:46:a3:d3:
01:4b:e6:4e:c1:ed:99:27:dd:bf:3a:fe:f6:8f:14:
f6:13:11:ad:63:27:00:5e:0e:8e:ee:b0:04:9d:71:
49:3a:ad:c9:c5:94:04:93:70:b9:07:eb:25:83:fd:
5b:bb:24:b4:3a:fb:d6:42:8d:0e:a0:45:eb:57:8e:
ff:9f:8d:7a:d0:c6:f7:de:1a:22:70:02:bb:f4:a0:
30:1a:c4:be:f9:57:84:59:91:2c:c9:35:24:2c:2c:
1c:43:30:8b:2b:0f:02:e4:a1:5e:8d:6a:66:e7:1d:
f2:eb:0f:db:42:07:ec:dd:e7:1a:f9:e2:cf:e0:a1:
68:e9:d5:d3:9c:11:69:91:a8:5a:53:72:fa:74:86:
ff:dc:1b:3e:11:f7:74:3b:66:89:a1:ed:be:d7:0a:
d6:47:a6:9b:d2:81:ee:51:ab:36:31:ee:3f:ca:41:
8f:30:92:e9:9e:51:7a:50:36:31:99:d5:c0:51:08:
c3:fa:8a:65:ef:5d:87:82:90:a1:8f:7a:9c:05:7c:
c9:1e:d0:52:31:f1:c4:2d:9c:aa:0e:ea:27:71:52:
fe:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:28:FE:22:4E:9C:B5:74:2F:4C:2D:56:3A:60:ED:D5:F7:49:7B:0D
X509v3 Authority Key Identifier:
keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e2:fd:db:d8:fd:66:87:98:8e:58:23:74:06:9c:c3:f6:9d:2c:
d5:df:7d:4f:2a:69:b0:25:0e:d5:84:ed:dd:a9:9f:4b:61:9d:
1a:ee:f7:a6:20:39:75:bb:76:26:9b:04:e1:52:e7:dc:70:1e:
ab:37:57:d8:85:bf:b3:63:bc:39:7e:be:41:5c:71:55:ac:1c:
eb:eb:60:f2:d1:6e:08:86:3d:c4:de:e7:d3:8b:4e:9e:5e:52:
1c:25:19:3b:34:ec:e4:c5:20:d5:06:47:b1:10:e6:23:47:91:
37:ed:92:be:4f:74:a6:e4:8e:20:f4:26:41:fe:38:3c:55:2d:
fd:66:3f:b5:1f:0f:f5:53:0c:49:19:92:a8:35:ef:96:6b:5a:
bf:e9:81:d4:ac:9f:e5:a6:b4:df:35:69:5d:3b:9c:87:31:69:
bc:dd:db:a2:21:0f:7a:94:38:cc:d2:9b:0c:91:63:77:cd:f1:
eb:88:05:88:ca:52:4d:59:9f:65:55:af:74:f7:f9:43:e5:83:
54:27:32:cf:fa:d3:09:8d:38:b0:6a:88:52:7f:4d:7d:97:28:
cc:bc:e3:bd:d0:4e:bb:25:92:ba:7a:2e:67:63:67:63:77:0a:
f7:de:37:71:e2:08:b0:6c:2b:57:81:07:3e:29:d6:0b:79:ed:
1a:76:b7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 00:24:34 2025 by rpki-client