Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: b/xi4PBGoiaw2DD5MjeWEpszErNQQve+rsd3xRsztPA=
Subject key identifier: 0F:35:D1:D3:E2:84:64:5D:1A:55:84:8D:6C:80:26:29:A5:14:17:10
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 01974968449E5393EBFE8E541E44A2109F88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1510
Signing time: Sat 07 Jun 2025 08:00:59 +0000
Manifest this update: Sat 07 Jun 2025 08:00:59 +0000
Manifest next update: Sun 08 Jun 2025 08:00:59 +0000
Files and hashes: 1: 2t0GWwoe7mmFS83bQQPX5JNcD34.roa (hash: hxRzouLeq4ys7uUoj+7mRAVC8MeKAFWBUYqAcz4n5d0=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: hffDYxldwuTTmfkaloqWid8tn9pW5Z5gvkAh6SRYLNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:44:9e:53:93:eb:fe:8e:54:1e:44:a2:10:9f:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Jun 7 08:00:59 2025 GMT
Not After : Jun 8 08:00:59 2025 GMT
Subject: CN=0f35d1d3e284645d1a55848d6c802629a5141710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:2d:82:40:c3:73:0a:ed:96:00:4d:a8:33:
01:ba:9a:7d:1c:76:cf:91:c1:4e:fa:bc:c6:54:d5:
b3:5d:06:35:69:10:96:a1:cb:3f:8c:40:cf:b2:28:
38:ff:38:ed:a8:9f:c2:67:d8:af:db:80:55:c4:c9:
4b:2a:eb:f6:96:c0:4f:7d:bd:ce:9f:31:39:c8:d1:
71:d2:de:8e:9c:04:3d:0c:76:ae:cb:e3:43:71:cb:
6f:22:1b:95:bb:7d:ca:84:79:37:cd:e1:da:b4:0f:
cc:92:3b:28:49:ed:2b:5b:cc:85:95:7f:7c:80:b0:
84:c0:f8:a1:14:d7:c5:1d:df:3e:17:6d:bc:72:14:
32:87:24:af:c8:04:44:85:1a:eb:a5:32:c0:9f:82:
86:00:ed:42:35:a3:92:c6:75:ed:dc:87:e3:cc:ef:
5a:df:c2:3f:40:7b:89:38:a3:e4:bc:33:d0:53:e7:
66:58:ad:1a:a5:e6:85:98:82:1f:1a:dd:c9:7d:29:
77:ce:17:e8:42:2d:cc:91:88:3d:7e:c5:3c:f7:9e:
a2:5d:dc:65:64:c7:42:f8:07:d5:ce:57:b7:4b:78:
ff:6d:27:21:3a:24:3f:2c:82:28:a6:58:3d:56:6c:
18:1b:21:8b:e9:70:00:dc:ae:1e:27:06:c2:a8:ff:
9f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:35:D1:D3:E2:84:64:5D:1A:55:84:8D:6C:80:26:29:A5:14:17:10
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:22:ce:0a:2e:30:ef:86:57:3e:14:56:5d:6d:66:8e:c0:f9:
6e:a4:f0:e8:f2:0e:65:74:9d:81:0b:6a:02:5b:b2:ea:d1:41:
a3:2c:8b:3f:07:09:66:a9:31:2c:86:e5:d7:88:69:17:c5:4c:
b3:0d:84:8c:36:bf:2e:9e:98:76:3e:ee:ba:c6:49:a0:4b:0b:
84:7a:14:5b:83:db:3c:6b:9e:28:20:c0:9f:9f:ce:eb:e4:5d:
c9:03:46:1d:04:bd:62:93:1f:7d:41:9b:35:9b:46:d1:3c:97:
43:f9:df:0a:7a:19:04:f2:69:ba:3a:9d:23:9f:1d:40:01:db:
4c:89:95:3e:8a:9b:36:8a:92:72:eb:cc:e2:41:e9:98:22:bc:
53:e2:8a:df:33:0d:eb:35:27:d7:fa:4d:41:13:fe:b3:3d:f1:
56:e6:37:9e:de:0a:9f:df:a9:fd:a5:d4:ff:ad:96:34:ac:57:
3f:ee:9d:1a:9d:e8:a0:1e:24:87:13:97:30:fd:99:b3:10:9e:
67:b6:48:39:51:37:bf:a0:c5:a3:44:35:f4:de:cd:7d:fd:df:
6a:41:e3:30:af:db:17:83:e8:96:fa:b6:68:3c:15:3b:28:44:
05:45:03:e5:70:f0:44:73:6b:1e:d2:51:fc:10:ed:0f:59:a7:
34:e8:71:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:11:24 2025 by rpki-client