Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
File: iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft (raw, json)
Hash identifier: VAsQf1ZECC6r+VYUdQGs73yGJgzS0DndhVT+jBDTYAw=
Subject key identifier: E1:ED:26:F8:DF:5F:4C:BA:32:E1:DD:13:98:C1:A8:30:05:44:22:F6
Authority key identifier: 88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
Certificate issuer: /CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Certificate serial: 01974D7BC14BF784817D2DE56A7B7181CB0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
Manifest number: 0325
Signing time: Sun 08 Jun 2025 03:00:45 +0000
Manifest this update: Sun 08 Jun 2025 03:00:45 +0000
Manifest next update: Mon 09 Jun 2025 03:00:45 +0000
Files and hashes: 1: 0iDUFJnxa3p3pYn9wOd7dy5ufak.roa (hash: 3azQw0QyMVpE4/ttRjyWB6+sGCTH0gc4+eCuZ8gfhjY=)
2: iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl (hash: D/8WQXwshPm+Z0kijZ7OG8neOIZCLb7Vtd0XXiA3gt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:c1:4b:f7:84:81:7d:2d:e5:6a:7b:71:81:cb:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Validity
Not Before: Jun 8 03:00:45 2025 GMT
Not After : Jun 9 03:00:45 2025 GMT
Subject: CN=e1ed26f8df5f4cba32e1dd1398c1a830054422f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:29:48:e3:2f:6e:62:2f:e0:0f:7c:fd:e5:25:
b0:59:0f:d2:24:da:29:a5:dd:f8:2b:1d:cb:12:fd:
61:45:69:cf:12:49:b1:dd:8c:98:a1:d2:da:21:57:
cc:4b:3a:50:ba:16:c4:53:67:a6:3d:56:ab:8b:20:
46:e8:ab:27:f4:b6:37:25:66:6d:0d:b2:be:12:bd:
1e:f6:14:05:ca:8a:02:18:c5:3e:91:cd:a6:57:a1:
fb:be:eb:21:8f:87:fd:95:95:16:b0:1f:7c:81:1b:
bc:11:e4:72:3e:2e:ab:69:46:97:82:72:19:57:5a:
25:3b:f2:80:e0:b1:9d:00:bd:9c:97:e1:18:58:c4:
a8:2d:e2:0e:68:9d:5b:0f:87:be:70:26:51:a0:fb:
39:03:0d:98:b2:29:d2:9e:75:c5:2a:e4:83:d7:40:
84:96:36:2e:45:f7:c5:9c:63:2c:2f:35:5d:73:78:
a7:5d:6e:55:53:9a:9e:f1:87:e4:c9:73:b7:2e:7c:
5a:15:f8:6e:22:7c:18:69:f5:dd:7b:4c:32:55:bb:
2b:da:5d:52:e3:6b:0b:12:b8:62:8d:97:a0:92:67:
da:69:23:85:2d:9c:56:66:5e:fb:01:01:be:d9:38:
22:d4:d7:66:f4:87:06:2d:7f:47:c5:73:e9:b8:b1:
d2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:ED:26:F8:DF:5F:4C:BA:32:E1:DD:13:98:C1:A8:30:05:44:22:F6
X509v3 Authority Key Identifier:
keyid:88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:0a:6e:0a:3a:70:df:d6:a5:52:f4:0f:52:46:81:ee:84:8c:
ef:60:57:58:bb:4c:62:a4:b1:42:6c:d6:b5:a8:0f:70:da:fe:
54:71:20:4e:31:3f:e0:59:52:40:84:c8:33:5d:68:45:d2:c7:
09:0c:50:1e:3b:f4:a1:74:e4:ad:c5:19:fa:f1:d4:a7:a3:11:
79:52:78:22:61:6a:0a:d7:e0:1f:10:84:ef:39:05:fd:cc:35:
7a:1e:65:3d:92:de:b2:fa:43:4a:6a:e8:9a:9f:83:da:2f:e8:
a2:c7:5e:bb:a7:65:0d:6e:d7:4c:8a:fc:e7:28:77:9e:3d:b0:
cb:38:40:27:52:ec:70:12:2b:c4:94:d2:d0:40:b0:e3:71:b0:
86:ac:e4:cb:54:e1:12:8e:a0:fe:8b:f6:0c:cc:15:85:eb:dc:
2f:7b:d8:61:b4:9f:05:37:2b:8f:a8:83:87:09:bf:76:55:14:
4b:ab:a4:5b:1b:b7:30:0d:29:22:7c:46:20:1a:e1:f5:b7:46:
20:54:0b:6f:23:2c:c0:69:c7:ec:2f:1c:30:ac:16:3c:9f:fb:
26:39:dd:ef:da:12:05:ce:d8:28:0d:c3:7c:2c:16:fa:61:d4:
a5:96:32:bb:3d:49:6f:6d:d1:7d:f8:99:65:78:dc:5e:06:75:
9d:d5:42:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:31:08 2025 by rpki-client