Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: TSPBOJcCJ+/blJfBXRiXOXLCiiLz0DE+SO5h6/LRDJU=
Subject key identifier: F8:A6:B0:F7:F1:55:30:87:CF:FD:15:F5:0F:93:D3:28:B0:58:3C:A2
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 01974C325A00E42579B57B36EE664BC42EE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 0E7D
Signing time: Sat 07 Jun 2025 21:00:57 +0000
Manifest this update: Sat 07 Jun 2025 21:00:57 +0000
Manifest next update: Sun 08 Jun 2025 21:00:57 +0000
Files and hashes: 1: 8EaewYTyFly5jEaj4gZEqMNcVMk.roa (hash: gqxj+841N8d9uy4L59oEcZudU4ge+IzVBr1jzF4wgjc=)
2: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: AXx7CYEW78hETb2/nB2yvjR93bW62uMbP4+Zjg/qy7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:5a:00:e4:25:79:b5:7b:36:ee:66:4b:c4:2e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Jun 7 21:00:57 2025 GMT
Not After : Jun 8 21:00:57 2025 GMT
Subject: CN=f8a6b0f7f1553087cffd15f50f93d328b0583ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:35:b1:0b:8b:9f:ee:c0:e4:26:3c:59:45:13:
5b:27:bd:1b:3e:1a:65:95:55:aa:78:13:52:ed:98:
e5:5d:67:74:9e:06:7a:73:a0:ce:68:4f:80:3d:44:
aa:f8:11:a0:c9:a5:52:6c:ea:de:d9:4e:4c:00:72:
a3:78:e5:20:cd:7b:89:05:ed:ac:12:7a:d1:42:72:
9e:df:d3:c1:21:b5:8b:58:f3:03:cf:93:a1:bd:83:
5d:b5:67:9a:c3:25:ff:9a:0c:e8:0c:19:56:22:27:
ba:d5:2d:eb:08:3a:39:85:db:c5:e0:61:9e:10:89:
0d:46:53:df:aa:be:0c:2b:19:8b:9a:7e:77:c7:86:
f2:b5:1d:b1:38:18:2d:19:87:f7:28:bb:92:a2:e0:
46:31:93:8f:a8:69:38:25:62:d1:d5:74:92:6c:11:
c2:b2:66:80:f6:42:ba:f4:51:be:d1:1d:9d:ad:b3:
b7:0a:43:84:8d:93:81:30:b0:29:a7:f5:05:fd:97:
dc:68:f3:c5:e8:ba:6a:40:cd:f2:67:37:50:5f:6a:
b1:37:ec:38:25:c5:3b:b1:4e:49:94:b4:c8:21:e3:
01:ff:3b:53:6a:8d:86:bc:fa:58:13:1b:ae:4e:cc:
26:67:11:76:7b:59:d4:6b:f8:15:ac:f2:07:af:b0:
2f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A6:B0:F7:F1:55:30:87:CF:FD:15:F5:0F:93:D3:28:B0:58:3C:A2
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a4:e3:14:d8:c1:67:76:3d:49:8f:1d:1d:2c:6c:87:28:05:
6f:15:b8:2c:aa:01:65:d3:69:bb:8f:67:71:b0:a6:f3:fe:7d:
64:ee:8b:fd:14:83:51:a9:87:6f:13:42:5e:3e:6e:8c:10:ec:
9a:7e:9e:93:ca:de:4f:9e:89:22:b6:ad:fb:1b:a9:b5:f3:ae:
76:09:e0:de:1f:9d:60:3d:5c:d4:5a:fc:10:14:b2:4a:fe:f1:
70:90:02:ba:2e:13:4a:23:6f:67:6f:4d:4a:f6:80:6f:de:fa:
94:e5:c3:17:39:4f:39:60:d1:c7:2a:86:26:ae:a5:ef:06:68:
5c:3c:87:42:82:22:16:4b:48:c7:a0:e0:81:99:4f:a6:a7:03:
14:08:fb:76:a1:0f:82:21:9e:12:0b:c9:7b:17:f5:f8:b3:ff:
4f:db:fb:7f:6c:ac:cb:a5:47:a2:aa:29:f2:35:39:62:71:9f:
ea:29:88:3c:e1:27:4c:91:da:3f:d7:ed:58:2c:d0:3d:ff:7a:
46:e0:c0:b0:e2:e0:7b:07:ae:c1:3b:77:b6:2f:21:74:0d:7c:
b3:86:d5:ed:bd:d5:15:cd:a2:8c:46:48:75:dc:fd:b7:e4:19:
88:8f:84:ff:35:84:2d:97:ae:37:1e:cf:dd:18:5c:c0:08:76:
7a:74:20:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:35:16 2025 by rpki-client