Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json)
Hash identifier: Om+7250T9ZTn/P/AdG5YhtHrQunpWv10fiqslyuy+JI=
Subject key identifier: B2:5C:2F:C4:C1:63:7C:57:6D:CB:2C:F0:D6:52:74:85:A1:E9:42:C1
Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Certificate serial: 019750463E351E4FB61140EC9184EE7E4A91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 16:01:09 +0000
Manifest this update: Sun 08 Jun 2025 16:01:09 +0000
Manifest next update: Mon 09 Jun 2025 16:01:09 +0000
Files and hashes: 1: if3KaihHpbg1Z08V6cXxVYQmFhk.roa (hash: 4GJMU1mopT3EhZuM0ayjHedY3bbBO8iZn11kZBRbuts=)
2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: a0A6njMeLsGNPP1s8vUURomTkWw+tLXPxSsGaJDUu5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 16:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:3e:35:1e:4f:b6:11:40:ec:91:84:ee:7e:4a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Validity
Not Before: Jun 8 16:01:09 2025 GMT
Not After : Jun 9 16:01:09 2025 GMT
Subject: CN=b25c2fc4c1637c576dcb2cf0d6527485a1e942c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d7:9d:8c:90:49:af:53:44:d7:0b:c9:6a:6b:
73:ae:c2:81:aa:17:d5:dc:3a:1e:9d:84:e5:a2:49:
fd:74:f3:f1:b2:0b:17:7d:b0:67:de:4e:8f:a4:5d:
0a:43:80:3c:40:76:35:8d:1b:92:5a:f8:a4:a3:3b:
59:f0:95:ee:ac:ee:cd:ed:ea:85:75:28:b8:16:48:
56:15:03:21:47:0e:1d:ba:dc:81:df:9d:f5:72:a4:
3d:9c:45:17:02:57:6f:18:70:d1:9e:e1:a9:7f:ba:
3f:c1:1b:93:ef:32:b5:0a:a8:56:96:9d:c0:0a:72:
7e:96:85:d4:1d:8d:f6:72:4c:f6:d6:48:cd:1b:8f:
8f:a6:b1:cd:e2:88:fe:e7:88:c6:b8:29:4b:80:fd:
e2:40:8c:ef:ce:50:3c:38:36:1b:af:ed:24:63:c6:
c7:19:89:03:a8:ac:7d:c1:4c:93:a9:cb:b0:cd:b5:
66:20:51:3f:2a:a5:7a:64:56:e5:7b:30:df:26:27:
38:94:37:2f:07:79:c0:31:02:0b:3c:ac:41:2b:3d:
56:b9:cc:1a:56:a9:54:bb:e0:90:87:20:73:c7:d3:
ad:91:8b:3c:f3:0e:fd:43:c9:da:5b:01:38:19:5a:
26:3a:94:85:04:95:35:4a:60:5e:e8:9e:e8:74:7d:
cb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5C:2F:C4:C1:63:7C:57:6D:CB:2C:F0:D6:52:74:85:A1:E9:42:C1
X509v3 Authority Key Identifier:
keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:f9:24:8f:a7:84:c8:6b:2e:c9:b6:35:9d:ef:9b:56:7c:c9:
6c:65:be:9d:91:c8:15:3d:e6:31:a2:6d:92:ea:62:87:26:70:
ab:39:5c:43:cb:73:0c:65:85:4b:cf:b4:71:36:f9:2a:1b:25:
f9:69:75:8d:45:bc:40:56:f7:e4:eb:50:ae:17:f7:ac:8f:6c:
fb:bc:b6:e0:4a:45:e2:5f:22:d1:14:d9:2c:6d:4d:b7:e6:8f:
96:e8:b2:bd:6b:e3:56:35:2e:04:36:e7:c5:01:4e:d9:7a:00:
0a:e9:65:72:d9:72:b6:6c:f9:7d:ef:40:32:22:d5:03:c5:6b:
48:a8:39:66:3c:80:98:f4:8a:06:12:63:eb:d4:99:aa:b9:53:
c3:d0:d1:cd:3d:be:38:32:b2:e8:b5:d3:cc:8d:35:fe:7f:0b:
c0:84:50:f2:d1:de:d3:99:b4:ab:cd:73:42:64:61:5a:e2:eb:
d2:f1:21:4c:2d:46:e4:67:ff:ee:57:5e:35:07:c4:87:e0:85:
4e:d6:60:84:41:de:ba:15:fc:1f:19:03:d2:b5:25:c7:2f:a7:
6f:a1:b2:fc:45:47:d5:04:9b:2c:70:26:c1:6b:25:91:0f:43:
ca:70:d3:1f:62:52:29:c1:a3:61:fa:22:fd:d6:a2:93:ba:4f:
39:15:cf:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:59:10 2025 by rpki-client