Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
File: ij8nyT77e7wLCv6OzCT3A50nUQg.mft (raw, json)
Hash identifier: y3Ei9WHdqmGgD+JpNrn8S57CROua3Rhm3WxGUjXVp/A=
Subject key identifier: 30:3B:AB:33:7F:E1:11:BB:74:F5:39:5E:88:1E:9D:2D:42:81:F7:C4
Authority key identifier: 8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08
Certificate issuer: /CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108
Certificate serial: 019748558595EB12B6DEBB0FAAA62722C9FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
Manifest number: 0372
Signing time: Sat 07 Jun 2025 03:00:53 +0000
Manifest this update: Sat 07 Jun 2025 03:00:53 +0000
Manifest next update: Sun 08 Jun 2025 03:00:53 +0000
Files and hashes: 1: 4mtjo1wkfTbCTW9KNexHpaJfxb4.roa (hash: NNFjMP/4ryf3yqLdY/nlmC6UZkGbjTY7ealoIUdpyCw=)
2: ij8nyT77e7wLCv6OzCT3A50nUQg.crl (hash: 5hdlzuSbiK3Bkh9Z+/4p9/G4ldKA5eCWHUYpcV9kPsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:85:95:eb:12:b6:de:bb:0f:aa:a6:27:22:c9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108
Validity
Not Before: Jun 7 03:00:53 2025 GMT
Not After : Jun 8 03:00:53 2025 GMT
Subject: CN=303bab337fe111bb74f5395e881e9d2d4281f7c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:ba:f2:ce:b0:3c:1d:8f:8d:78:44:96:37:
f1:fd:b0:c9:a0:d2:6f:99:7a:72:6e:05:0e:a1:3c:
e8:cb:8a:11:9d:2b:c2:d1:f3:d0:f8:99:3f:c4:f9:
f6:f3:0f:b0:7b:04:01:13:48:1c:f8:d2:11:24:25:
5e:4e:16:10:2c:00:2d:79:1f:25:f6:2e:e9:33:90:
48:51:68:da:c9:aa:74:ab:28:c6:29:6d:ee:49:fc:
cf:d2:66:19:f1:27:62:b9:b0:ff:68:22:92:16:6c:
8c:f4:1c:1e:b4:7d:c3:0b:35:2b:eb:10:3f:2d:38:
02:1a:3d:2c:17:4f:21:fa:c6:cf:b7:b0:43:38:ed:
c5:42:9b:b6:74:00:14:0d:41:7c:5c:c7:ec:fb:54:
0f:6c:6f:ac:a0:6d:63:a4:4b:02:4f:7f:67:17:76:
fa:4b:d7:76:6d:0b:41:ed:b2:02:65:32:07:d7:eb:
b5:94:e7:e1:3f:e7:7d:73:ff:72:bb:92:02:83:c1:
57:b3:2a:f7:b8:34:8e:ee:90:9b:45:ab:53:ed:be:
11:89:29:1b:96:d8:dd:d0:5d:44:cf:16:5e:7d:0a:
63:59:67:1f:21:f0:7f:da:8c:ed:06:60:06:b5:6b:
54:70:11:5d:e4:81:b2:9b:f5:25:d0:e0:f0:25:53:
ab:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3B:AB:33:7F:E1:11:BB:74:F5:39:5E:88:1E:9D:2D:42:81:F7:C4
X509v3 Authority Key Identifier:
keyid:8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:d5:dc:2b:90:f1:b7:70:0f:c0:9e:70:30:6a:7d:08:6a:c3:
e7:1b:4e:d1:1b:54:2e:d8:a3:27:45:81:34:e0:6a:6a:b9:2c:
dd:87:06:ee:88:e8:07:43:aa:cc:c6:ca:4b:dd:4d:c4:e8:fe:
3b:0a:a3:10:8f:16:51:0b:04:33:9a:83:ba:71:45:26:30:d9:
80:0b:7e:e3:e7:48:df:8b:b5:34:59:e8:26:5f:fd:cc:eb:2d:
3d:ef:27:10:f1:df:36:13:89:44:a7:da:30:0e:35:0d:d5:f8:
d2:aa:3d:3f:17:f4:19:5f:b7:20:8e:1a:54:1b:17:22:bc:39:
0e:5c:f3:72:f0:14:5c:61:10:cc:23:09:28:89:9e:79:43:cb:
24:8a:1d:39:65:9a:d6:d5:57:e4:91:f0:07:15:43:13:ae:72:
6f:90:1d:20:27:69:d1:ea:7f:0a:34:ff:ac:84:6d:b7:3e:2b:
34:91:9b:b5:b5:41:a4:03:89:48:dd:a0:01:1b:d8:81:e2:0c:
72:03:50:a2:1e:a5:c6:6a:ee:a9:f1:31:07:33:b1:f0:91:2f:
2d:76:4f:d3:dd:38:06:c2:70:f5:a5:13:6d:de:b3:73:fe:ed:
a8:b8:c5:c9:a3:d4:bb:72:d3:9c:14:ac:2c:63:52:f1:2e:1e:
40:3a:ce:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:41:55 2025 by rpki-client