Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: ypNiTI7G4qC/Eb1kNXuYbwSDMgoUZiPqW+bSJerqUJ4=
Subject key identifier: 71:1A:FB:56:E9:3D:F3:58:E6:9E:BD:FA:48:20:13:BA:7D:1B:67:21
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 01974A0CDB9861811E236D7622C71DE30478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 1056
Signing time: Sat 07 Jun 2025 11:00:45 +0000
Manifest this update: Sat 07 Jun 2025 11:00:45 +0000
Manifest next update: Sun 08 Jun 2025 11:00:45 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: OdI9uSRyJ/yFcKYeXI5fMqm+0duU6OiNlxPEaPinGys=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:db:98:61:81:1e:23:6d:76:22:c7:1d:e3:04:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Jun 7 11:00:45 2025 GMT
Not After : Jun 8 11:00:45 2025 GMT
Subject: CN=711afb56e93df358e69ebdfa482013ba7d1b6721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c7:01:f2:50:53:49:e5:34:06:c5:c2:8b:51:
aa:49:fa:fe:11:38:8c:e9:03:8f:8f:b5:e8:9e:1b:
5a:ca:a0:f3:a2:2f:05:78:68:ce:f3:83:9e:1c:ec:
b3:2d:bf:0d:fb:5e:a6:96:94:c3:7f:03:82:e6:ff:
ec:43:f9:30:5e:63:38:9a:03:db:97:bf:35:93:3b:
8b:9b:20:9c:13:3b:96:45:92:65:bf:fc:1f:d3:e7:
e1:4e:2e:6c:fc:9c:1b:f7:ec:c3:48:7d:27:3d:70:
20:f3:45:df:45:56:2f:8e:5a:b1:d4:a7:9f:f2:97:
0c:01:89:8e:d1:38:e6:e7:e5:d3:4e:29:f2:e7:46:
0d:3b:cc:97:c4:ea:fa:a7:30:53:91:74:ab:2b:f4:
ab:41:ea:a0:f8:9d:ad:e8:99:97:f6:d7:4e:b9:68:
16:13:6c:d6:a1:bb:a5:39:0a:df:78:d4:36:81:c2:
77:73:4c:6f:87:4e:b1:38:37:dc:13:b0:e1:42:4e:
89:63:a5:b7:2a:0e:a0:6d:7a:5c:9f:12:f2:6b:04:
18:97:f3:94:a7:0d:3e:cc:07:97:68:87:4a:86:25:
e8:d5:8f:ec:d8:79:be:94:d4:3f:47:f0:fa:5f:5e:
67:df:20:91:b3:f0:0c:a8:31:fd:4a:df:38:2c:b4:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1A:FB:56:E9:3D:F3:58:E6:9E:BD:FA:48:20:13:BA:7D:1B:67:21
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:63:f4:c1:a5:fb:89:9e:10:25:59:ea:57:f1:1a:62:50:5e:
06:c3:cb:4d:0e:4d:60:ba:c3:2c:9c:ac:1b:94:d5:45:ec:a3:
4e:9e:f0:88:d1:bf:73:ae:48:e3:6b:3e:08:ff:f3:b6:16:50:
cc:d7:4c:c8:2a:7a:1a:22:67:18:0b:39:d6:4b:7a:0b:af:e8:
04:4a:c9:2a:d5:c3:31:c1:5b:c0:85:10:e8:15:fd:2a:96:13:
af:7d:aa:2f:86:ef:48:0f:88:ac:32:95:4c:29:8a:5c:ab:32:
9c:95:05:ba:13:2c:01:05:21:d8:27:da:05:18:03:dc:54:4c:
95:7e:52:4b:ba:eb:0a:f2:6d:59:d2:78:d8:6d:b5:18:74:b0:
1e:c5:4b:70:65:1c:86:41:57:3f:0d:5e:62:6e:ec:a1:30:cd:
d9:89:03:be:a8:d9:ce:bc:cd:fd:8b:40:00:42:ad:3c:18:48:
b9:16:1e:07:7b:42:38:45:2a:c4:c0:91:84:d5:8a:bb:23:87:
04:bb:a4:32:84:ee:00:6f:ad:09:8d:cd:a9:e1:d2:52:7e:4a:
9e:07:5b:6d:8f:67:19:f1:85:1d:8f:f0:04:04:cb:54:7c:d3:
89:46:a7:5c:3d:40:51:06:1e:d0:22:e4:0b:a6:27:47:59:ed:
36:56:fe:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:37:40 2025 by rpki-client