Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
File: ieXrHhIJiXh0XVQNypbP8N5HBNo.mft (raw, json)
Hash identifier: UyCQ3H8gHpu1aXlM7EJFitGXmwIxX0hkGWFABVqMfMA=
Subject key identifier: 90:F6:D1:11:AF:49:58:EB:98:24:6F:2D:37:3D:72:FC:0B:C1:27:B7
Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da
Certificate serial: 019748C33BFAECCDEF77C2FFE8C858A41DA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
Manifest number: 09F1
Signing time: Sat 07 Jun 2025 05:00:43 +0000
Manifest this update: Sat 07 Jun 2025 05:00:43 +0000
Manifest next update: Sun 08 Jun 2025 05:00:43 +0000
Files and hashes: 1: ieXrHhIJiXh0XVQNypbP8N5HBNo.crl (hash: 0eRURaMuhA1ZBdF79sTs9hDpTLSGxTSlTsII17wsAJk=)
2: l-HFEGYP57VmF8aDDh7--ZbJBDw.roa (hash: z6foBKVqU7T5Yu/Dwks8ZalWU/MYlRsXoQCU7GPCUOE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:3b:fa:ec:cd:ef:77:c2:ff:e8:c8:58:a4:1d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da
Validity
Not Before: Jun 7 05:00:43 2025 GMT
Not After : Jun 8 05:00:43 2025 GMT
Subject: CN=90f6d111af4958eb98246f2d373d72fc0bc127b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f7:a3:4a:0f:7f:9f:4d:62:c1:66:e9:a0:35:
3b:60:b0:c9:a9:af:1b:d3:ba:35:aa:df:6b:a4:06:
7f:52:ad:76:e0:e2:04:41:59:78:15:58:f2:df:bb:
a0:5d:ec:46:6a:30:90:b1:c8:eb:80:fc:5d:8c:25:
26:78:6d:c0:47:46:d3:71:a8:5e:eb:9e:c1:a0:ad:
9d:19:cf:40:7d:6b:c1:b2:d8:3d:97:cc:f7:50:93:
92:fa:5a:95:b5:83:98:b4:0b:e6:da:bd:dd:78:15:
d3:61:66:53:6e:a5:cf:19:5c:69:67:89:2b:ea:82:
ba:fa:21:0e:83:62:89:37:67:22:0b:00:b8:ba:41:
c5:ea:0e:64:1b:45:ee:ca:e7:35:a1:ef:d5:b0:bd:
46:60:d1:92:3a:b1:28:21:37:c5:ef:b1:ab:7f:01:
5d:f5:8e:57:c2:80:8c:dd:58:11:a0:51:99:35:0b:
6e:dd:cf:70:d6:7b:90:29:89:1f:8c:eb:f1:85:88:
78:22:e6:ee:8f:bd:e1:d3:2f:ec:26:ca:2b:da:e7:
fc:62:dd:8d:33:a0:30:9e:2b:80:ce:3e:13:ea:ff:
40:61:66:e3:17:11:76:7e:dc:81:fe:e9:39:b9:5f:
20:5f:01:39:05:a1:80:17:8b:e2:65:71:7f:16:bf:
e2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F6:D1:11:AF:49:58:EB:98:24:6F:2D:37:3D:72:FC:0B:C1:27:B7
X509v3 Authority Key Identifier:
keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:82:97:2b:ec:e2:15:97:78:95:e9:74:3c:21:c1:c5:0e:94:
94:8b:41:91:cc:74:1b:64:0a:47:1e:ab:e9:19:cf:e7:64:a0:
b8:31:f5:41:b4:b5:d2:49:32:d9:1a:1d:c7:a8:a5:2e:f2:72:
35:d9:ae:0f:a7:9f:63:c0:bb:19:2f:f6:7d:f7:66:55:23:9f:
a5:01:8a:64:91:ce:49:ae:c2:e4:dc:3b:67:ab:ca:fb:ad:7e:
2c:0a:a1:83:51:d2:19:bf:e0:ad:95:63:fe:e2:24:36:c0:be:
d3:f5:cb:f5:d7:93:3d:2a:e9:b7:8a:31:c7:2f:39:24:d2:ec:
52:a7:b2:f5:c5:3a:b2:62:14:e6:9d:aa:6d:58:d2:16:ee:1c:
9c:b6:ef:8c:00:9c:e1:e1:82:5e:88:d1:a1:f6:bc:a3:60:ca:
a0:e9:ad:d6:6b:9c:49:74:54:de:50:ae:fc:9c:09:f0:7b:29:
23:07:88:1a:da:26:52:67:76:32:1d:fe:03:fd:28:eb:31:78:
ff:03:2f:e7:7d:6e:ba:a4:12:6c:b6:55:d7:6c:d5:68:14:9d:
f6:e5:cb:c3:4f:3e:12:6d:9e:95:69:66:5e:40:2a:6b:28:7b:
57:cd:00:3d:72:ad:43:bc:be:f6:b3:a6:a4:d0:86:6b:e8:34:
f0:1a:89:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:07:19 2025 by rpki-client