Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
File: iydIPcFsMY5a__gyKTDIF_0ZLJE.mft (raw, json)
Hash identifier: rky7qvI1CUyQOBrQHSFywSKFBHgif/oAyJ63nnnIh/Y=
Subject key identifier: 27:81:C2:2E:26:B5:A1:F1:8E:07:44:E5:68:ED:44:31:4E:A0:BD:34
Authority key identifier: 8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
Certificate issuer: /CN=8b27483dc16c318e5afff8322930c817fd192c91
Certificate serial: 01974967CAFE5575D0366878B5B2EB6ACDE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
Manifest number: 08DC
Signing time: Sat 07 Jun 2025 08:00:28 +0000
Manifest this update: Sat 07 Jun 2025 08:00:28 +0000
Manifest next update: Sun 08 Jun 2025 08:00:28 +0000
Files and hashes: 1: WG1KTWwRB1pYbj2P1y-YbJWElMQ.roa (hash: /RcbZ2ujStzbSPjPDGEz6Qg57WsDieIVmjOcowRraSQ=)
2: iydIPcFsMY5a__gyKTDIF_0ZLJE.crl (hash: DBIVvHCKQ98id2H4cimbdbNJ+8DLfiuav6DUwX8sSfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:ca:fe:55:75:d0:36:68:78:b5:b2:eb:6a:cd:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b27483dc16c318e5afff8322930c817fd192c91
Validity
Not Before: Jun 7 08:00:28 2025 GMT
Not After : Jun 8 08:00:28 2025 GMT
Subject: CN=2781c22e26b5a1f18e0744e568ed44314ea0bd34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f8:93:13:0a:79:78:db:a6:9d:1b:9c:08:ab:
c3:9d:a2:47:17:03:43:af:b3:95:43:f3:f3:7c:9a:
9a:bc:32:7e:3d:97:13:23:c8:8c:f4:d2:b8:1b:92:
db:b4:54:e9:59:9d:cc:a6:cb:b3:46:62:72:f8:f5:
9d:06:6b:20:d0:12:2b:a6:e5:94:16:38:ff:8a:07:
31:92:ca:78:f1:ca:0f:d9:d7:fa:82:95:42:18:e2:
f9:b3:de:90:40:c0:8a:96:4f:0b:3d:23:89:6d:fb:
c1:8c:c4:50:5c:04:12:93:18:19:3d:ee:46:b2:fd:
d7:2e:bd:76:4a:70:d2:f0:75:a1:98:9f:ec:03:65:
1b:60:e3:80:62:02:d9:9b:57:3e:64:fe:dd:78:4a:
f2:0d:ea:78:6b:f9:02:6e:5f:1e:6e:4e:77:63:ea:
9d:d3:e3:d4:27:86:ef:cc:73:df:fa:f3:7a:cc:3f:
38:6c:9b:39:70:b8:81:de:05:28:56:18:99:28:b2:
03:5e:0d:6e:db:d3:a2:5b:9c:8d:59:5d:3f:6a:90:
6e:e4:4a:66:8b:40:bd:73:b3:a7:89:69:25:df:92:
c7:82:3e:1a:02:4f:74:75:a5:a2:50:d0:e3:8c:c0:
49:0a:26:1b:90:fd:31:c9:89:54:02:a7:d0:a6:3a:
18:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:81:C2:2E:26:B5:A1:F1:8E:07:44:E5:68:ED:44:31:4E:A0:BD:34
X509v3 Authority Key Identifier:
keyid:8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:25:37:7f:eb:29:b0:16:13:50:17:83:19:2a:85:e5:c1:e0:
15:67:01:1f:12:72:67:dd:3b:2b:84:50:21:50:9d:95:24:aa:
a2:15:34:88:ae:48:46:18:a6:ba:f2:c2:6e:1d:49:75:20:54:
ec:1f:ed:5b:a2:54:ad:66:d1:1e:45:7b:a0:07:f8:de:b6:ad:
f0:3c:bc:a8:4f:51:31:3e:f8:d0:63:8f:d7:f1:da:18:87:b6:
d0:aa:be:a3:ba:a7:63:33:1d:89:55:30:70:62:51:18:f6:3f:
92:00:5f:36:c7:ed:0c:6c:5c:3f:96:e9:d1:6f:8c:df:ab:c0:
04:9e:55:03:05:ca:02:46:41:c1:98:dc:74:9e:86:b0:e4:46:
7b:ca:4c:93:6e:65:d6:83:a2:47:16:9e:96:30:29:77:ab:b8:
99:39:3e:5c:2f:86:84:40:f1:42:32:1c:66:77:84:f5:00:43:
3b:12:c7:16:3c:cf:fe:66:91:3a:03:fd:0c:3c:8c:04:81:eb:
46:73:87:82:8c:65:1d:16:ee:66:81:cd:99:83:ee:63:99:30:
c9:70:32:1a:41:2c:f9:2e:3f:36:25:3c:7a:d0:aa:34:c3:bc:
06:25:23:b7:19:24:5e:1e:d9:00:75:07:25:4b:6c:d6:cd:1a:
d8:91:02:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:43:50 2025 by rpki-client