Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: pzF9h4QE2bwOrmicfwESSwcEESF5zdO3koqPBuaOQQw=
Subject key identifier: 7D:BB:28:08:25:F7:22:64:EE:21:B9:B9:6B:A0:FB:0B:07:CB:69:49
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 0197485598A2FB55D53B2CB648E246738A6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: 011F
Signing time: Sat 07 Jun 2025 03:00:58 +0000
Manifest this update: Sat 07 Jun 2025 03:00:58 +0000
Manifest next update: Sun 08 Jun 2025 03:00:58 +0000
Files and hashes: 1: 9WCM-NfBtEzVC0bLgcXxGw_dKs0.roa (hash: +AotBLTXOYZ2qqQz68W39gfX7TdnqXgGz673AR3fS9c=)
2: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: Ebf1XAtqrjvSPk+Ig3mcOD8+anUg1D8fSzg4yvfKxI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:98:a2:fb:55:d5:3b:2c:b6:48:e2:46:73:8a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Jun 7 03:00:58 2025 GMT
Not After : Jun 8 03:00:58 2025 GMT
Subject: CN=7dbb280825f72264ee21b9b96ba0fb0b07cb6949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:92:7f:ce:21:82:e3:32:61:23:3e:3a:b0:8d:
14:a7:2d:b8:b6:81:93:f5:51:4a:59:c3:31:b9:ed:
ac:6a:36:da:76:fa:44:12:e8:e5:72:9f:df:f1:05:
08:ff:75:71:96:f4:e3:d0:e2:8b:34:f5:29:03:a2:
78:7b:b1:75:6a:17:c8:97:56:96:7b:dc:b0:89:d3:
b0:22:19:60:6e:6d:fc:71:9f:ae:67:4b:1e:8d:f0:
68:8f:f2:2b:b8:b4:f5:8e:d3:d9:f7:15:e3:95:bb:
94:04:b5:70:70:1b:bb:34:8b:fa:61:9d:e4:a5:c3:
e2:5d:9e:9a:fd:30:27:99:08:b0:c0:d4:15:e5:86:
e5:b8:25:ce:5f:52:93:44:a2:33:ed:8e:fc:c7:9d:
74:6a:a8:92:96:a4:56:06:e8:e8:55:d2:66:c5:89:
d8:69:1f:62:7c:6f:51:02:0a:bb:40:94:fc:68:00:
c3:38:2f:98:33:5a:74:29:b5:39:78:18:d9:b9:93:
e0:04:a0:25:c3:c0:36:89:ef:26:9d:60:9b:c4:86:
55:33:13:a3:6a:af:62:40:a7:29:81:be:3c:56:ba:
b9:7a:8f:4b:e5:ab:8e:04:3c:bd:d8:0a:57:89:a0:
f0:17:46:1d:28:40:04:ce:ef:9c:72:31:ce:7f:de:
7b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BB:28:08:25:F7:22:64:EE:21:B9:B9:6B:A0:FB:0B:07:CB:69:49
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:f4:ca:83:c2:f3:03:56:d9:db:00:87:62:e1:91:9b:e1:f6:
18:fe:31:28:7b:8c:e0:49:e8:9b:0b:59:bc:c8:82:5c:49:37:
ee:da:f4:a6:30:b5:29:61:57:40:04:10:ae:13:03:78:45:85:
cc:39:4f:d6:93:d7:84:e7:87:82:87:a7:ef:45:ef:b2:21:76:
d6:50:23:2c:5a:12:78:dd:35:7c:dc:b8:28:01:98:86:d5:0c:
bd:13:eb:f2:5f:49:8a:15:e0:c0:8d:ec:c3:38:dc:a8:fc:97:
d1:b2:08:ec:a8:80:70:3f:39:0c:fe:af:7c:66:8a:bb:ce:96:
27:15:ad:d6:5f:81:be:77:78:1f:3c:97:9c:9e:b7:c2:30:9e:
5a:c6:29:3a:f4:78:f4:e5:a4:3c:24:d6:f1:0e:d8:b1:70:13:
3b:2f:2e:4a:d3:60:bb:63:40:c6:e1:31:82:1c:c9:bc:55:85:
c8:df:bd:a9:04:6a:21:73:bc:d9:c4:3a:f6:b0:86:9d:7a:5e:
70:a3:a0:8a:77:db:61:23:84:4b:00:bd:31:c4:e0:48:a2:bb:
be:11:8c:a9:eb:40:40:8d:2f:ee:0d:c3:87:71:f6:09:65:1f:
d4:c5:75:96:87:fa:df:08:af:55:0c:e7:f2:fb:0f:6e:63:32:
76:01:fb:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:23:06 2025 by rpki-client