Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
File: iMaZNJivBRiWLl9I1chG3BddGIQ.mft (raw, json)
Hash identifier: 2Xa4uvX975kZ8JNSzAwbm7dXdHfhHZ+iTYQteFktXDM=
Subject key identifier: 7B:8E:10:B3:C7:3E:64:B0:7D:53:D8:A7:6C:36:5C:21:B0:F2:6C:3F
Authority key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
Certificate issuer: /CN=88c6993498af0518962e5f48d5c846dc175d1884
Certificate serial: 01974AE905A9BF6BD6850D6D39320F3FAE8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 15:01:14 +0000
Manifest this update: Sat 07 Jun 2025 15:01:14 +0000
Manifest next update: Sun 08 Jun 2025 15:01:14 +0000
Files and hashes: 1: iMaZNJivBRiWLl9I1chG3BddGIQ.crl (hash: KXtJ08sxcvEB+Soq4sOivWO1HFQZynckQk4515CLyDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:05:a9:bf:6b:d6:85:0d:6d:39:32:0f:3f:ae:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c6993498af0518962e5f48d5c846dc175d1884
Validity
Not Before: Jun 7 15:01:14 2025 GMT
Not After : Jun 8 15:01:14 2025 GMT
Subject: CN=7b8e10b3c73e64b07d53d8a76c365c21b0f26c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:21:ff:93:e1:b4:9e:aa:6d:d7:26:96:88:
b4:b5:a4:01:f6:24:9c:df:e3:4e:65:c6:3f:c9:de:
f5:a4:85:87:d6:81:50:3c:66:9e:82:d4:a3:54:a8:
2d:1a:00:7e:71:5b:b4:19:51:22:97:49:c4:7a:d5:
06:84:25:93:d7:df:28:be:b7:43:2b:0a:da:06:05:
2e:b7:10:4a:9e:51:cf:5a:cf:57:df:2a:8f:f9:ff:
2a:aa:f4:6c:65:b9:a5:20:d9:57:c5:09:35:ef:2d:
c2:a6:32:96:70:e1:cb:3e:ef:1e:4f:90:10:25:9e:
78:cb:bd:36:5e:a2:ad:72:0c:11:ee:76:f6:97:14:
16:97:47:ed:8d:df:d3:d6:eb:f5:c4:a4:f5:ab:1b:
3f:9c:f8:ee:44:8b:c0:dc:b6:01:6c:a1:77:e3:1f:
03:90:1c:33:d4:40:e0:34:e4:fc:4a:af:a0:14:ba:
83:65:f5:24:ba:0c:f3:77:47:fa:f1:f9:9d:f3:cb:
c5:f2:ab:e6:1d:ef:57:ec:71:8f:65:41:17:a6:b8:
6b:25:09:a2:38:51:d8:63:16:37:9b:9b:4c:04:fe:
b1:ff:40:9c:3e:5b:ed:ef:3f:e3:86:d9:c5:4c:a5:
12:dc:9b:de:78:74:42:ae:2c:30:50:ac:50:39:cf:
ca:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8E:10:B3:C7:3E:64:B0:7D:53:D8:A7:6C:36:5C:21:B0:F2:6C:3F
X509v3 Authority Key Identifier:
keyid:88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:3e:19:d4:93:31:26:c1:42:29:8c:da:27:f4:38:9e:09:3a:
8f:91:dd:09:6b:79:94:39:a5:f0:6b:0a:ce:8e:19:55:11:0e:
d1:5f:e0:bf:73:81:a2:31:40:4d:c4:69:d6:ea:ad:f6:fe:c2:
c0:58:f8:61:d8:9e:4c:98:14:44:71:5c:c0:b1:16:68:0d:82:
b4:16:ef:c8:c3:2e:98:20:e0:d7:02:65:e6:af:1b:0c:68:26:
2f:52:17:2c:33:bb:66:77:72:9c:b8:7a:79:c7:7f:9a:e9:f9:
a7:2b:2e:37:08:4d:db:c3:71:d9:a6:d1:20:e5:fa:26:29:c8:
ab:22:2d:b5:96:43:f0:f7:6e:4a:8b:9b:23:d9:d2:7b:71:14:
33:88:53:d4:09:68:cf:62:29:16:8a:4d:dc:d3:ed:8b:64:aa:
ed:52:cb:f2:9e:eb:25:5f:6f:95:9c:39:cc:5b:ae:52:1c:bc:
66:48:62:8c:0b:d4:17:1d:40:c0:43:6f:83:7d:ce:f5:f2:85:
50:f1:ea:c1:d3:ed:2e:f9:27:78:73:40:54:b3:0b:01:5d:9f:
64:bb:ff:32:26:19:c8:0d:8b:0e:d6:45:63:5c:6b:43:a6:5f:
51:5c:57:2a:b0:9e:28:a9:12:a6:61:37:24:d3:d4:66:a1:a4:
71:8d:7e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:16:39 2025 by rpki-client