Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: zpf6zXMEAGWl1s3ZmpPWTRzjW7I1qvvIIm2NssCMruc=
Subject key identifier: 58:F7:5C:03:7A:C9:6E:BC:EA:1B:27:06:ED:3A:B3:76:B2:75:B5:E8
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 019748F9F23E17C4B01E0E212050832DEAC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 0424
Signing time: Sat 07 Jun 2025 06:00:29 +0000
Manifest this update: Sat 07 Jun 2025 06:00:29 +0000
Manifest next update: Sun 08 Jun 2025 06:00:29 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: 4IhPBmP4Pz2G/ZhIbm4lwIzYQI7xF/tv5LXtk/DQSDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:f2:3e:17:c4:b0:1e:0e:21:20:50:83:2d:ea:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Jun 7 06:00:29 2025 GMT
Not After : Jun 8 06:00:29 2025 GMT
Subject: CN=58f75c037ac96ebcea1b2706ed3ab376b275b5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:50:bb:a0:47:00:4f:ec:99:ff:8a:a5:8b:6d:
bc:82:49:c4:04:7f:0e:bd:5d:08:b4:6f:cb:b2:70:
3e:0e:22:65:b0:f0:14:14:eb:e6:dd:d4:3d:1c:83:
9d:3e:96:99:fa:47:93:97:ef:55:04:d9:31:19:be:
bd:25:0b:0c:f2:1e:74:47:be:ae:3e:2c:1f:20:93:
ea:bb:49:e9:e4:cf:ef:5e:f8:f6:6c:87:c4:cb:fa:
63:5f:4c:de:7b:b6:6f:d6:18:2d:4f:ca:c9:33:d1:
05:16:6e:69:ee:92:23:a9:53:ac:7a:6b:3f:dd:65:
6c:40:8c:da:81:9d:b7:8c:7b:7e:08:d5:8a:ac:81:
cf:54:85:3c:98:04:20:d7:ca:19:63:0e:9e:75:dd:
87:2f:7a:a7:c2:0e:01:da:39:eb:e9:24:5d:20:07:
86:e6:53:0c:fd:6d:1b:4a:1b:83:4f:d0:eb:f5:c3:
b9:ed:ec:97:01:ff:6d:b9:bc:f0:19:97:9c:ed:dc:
a1:68:9f:e3:76:a0:11:24:22:95:34:6c:6d:2b:20:
ae:2f:70:69:26:91:74:38:de:ff:f2:ad:96:0f:7f:
ae:a8:04:12:cd:a2:40:60:33:43:61:df:f0:20:08:
b6:39:34:26:16:e6:b1:22:b2:f5:00:37:80:84:ed:
6b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F7:5C:03:7A:C9:6E:BC:EA:1B:27:06:ED:3A:B3:76:B2:75:B5:E8
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a9:86:e8:0f:10:4a:21:cc:32:e8:5a:62:55:6b:bf:20:ec:
4d:c5:e0:29:e4:46:14:20:0c:4b:7d:46:1f:95:6a:45:fd:48:
cb:7b:75:fe:c0:c5:36:06:ef:8e:04:a7:dd:8b:d9:39:00:45:
c2:48:2a:f7:47:25:a8:1e:2d:28:c3:9e:70:d4:f9:05:c3:af:
dd:64:ca:98:a1:46:08:ca:c1:e0:18:fb:8c:1b:4c:6c:14:8a:
a0:04:fc:fb:c9:89:25:54:5e:b7:65:46:f5:2e:02:4e:d5:dd:
23:42:22:9f:1d:65:9d:0f:0f:26:cf:1c:1a:46:86:4e:c1:2e:
5e:7e:15:9e:5b:4b:ff:4c:97:b8:27:b7:45:f7:f9:aa:2f:64:
ad:f2:25:77:56:6a:7a:5a:41:62:84:4b:ed:5c:5b:ba:d1:d5:
ec:77:3a:60:46:c7:94:f9:ff:b8:90:14:46:ef:ea:d8:3c:ac:
f8:a3:99:06:92:e5:4b:1b:0f:29:bf:bb:cb:1c:df:a8:b1:98:
a0:5d:e6:99:30:74:d3:d7:68:74:f7:b1:83:b3:a5:31:b3:50:
7e:e0:18:bb:b7:ae:b6:c3:d6:10:f5:96:35:93:b8:18:c9:14:
18:ac:9b:e4:f1:7e:88:b8:b0:17:fb:5a:58:9a:20:cc:55:29:
dc:81:02:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:45:28 2025 by rpki-client