Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
File: iEZAW_zHgGbFGSyz6-csRDxVcog.mft (raw, json)
Hash identifier: gjNVkaJYs414LqW1CmhXXNyCVnXJD9Boc43P1u7hoCI=
Subject key identifier: A4:66:4F:AE:45:21:21:EC:45:93:DB:A9:79:4B:75:94:CD:F2:E3:8D
Authority key identifier: 88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
Certificate issuer: /CN=8846405bfcc78066c5192cb3ebe72c443c557288
Certificate serial: 0197499F092733E9F197B364D339CA9FA25F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 09:00:48 +0000
Manifest this update: Sat 07 Jun 2025 09:00:48 +0000
Manifest next update: Sun 08 Jun 2025 09:00:48 +0000
Files and hashes: 1: 1wukbEM_Z2cOLmS317mkgQWPtlY.roa (hash: mynvXYceF8nnYoZdEmhOk8iYDpjkXUz62HUCHGcK8Wc=)
2: iEZAW_zHgGbFGSyz6-csRDxVcog.crl (hash: Rl+2XObNEu2Z6mJFrkmkiqdf+OlB0zZyEM3b+pCImP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:09:27:33:e9:f1:97:b3:64:d3:39:ca:9f:a2:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8846405bfcc78066c5192cb3ebe72c443c557288
Validity
Not Before: Jun 7 09:00:48 2025 GMT
Not After : Jun 8 09:00:48 2025 GMT
Subject: CN=a4664fae452121ec4593dba9794b7594cdf2e38d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:74:48:bf:fd:fe:74:24:10:32:7a:f1:3b:c1:
4e:01:b0:97:92:d6:64:c1:d9:cb:ee:f1:e9:31:6d:
64:e2:2e:05:ab:ef:65:be:3f:f7:6f:45:3c:cf:ff:
ef:8d:69:3a:6f:40:fa:4d:92:61:fa:48:c4:66:36:
29:5b:67:07:65:d6:5c:78:fc:14:44:7e:73:be:f4:
8a:44:b8:da:55:b9:98:c2:69:52:a0:bc:f7:1e:7b:
59:a4:32:dc:82:f1:a5:b9:7e:72:52:f5:e8:8a:ef:
d1:9f:41:66:6a:dc:cb:4f:9a:45:0b:ad:fd:2d:75:
5c:74:29:65:2b:d8:f9:77:e0:59:11:07:6d:7d:d8:
af:56:71:1a:1b:22:a3:3a:f4:dc:bf:a5:73:71:ba:
8c:00:6d:16:ce:a8:76:c1:30:c8:c1:90:f4:33:d8:
3a:36:d8:32:fb:c1:c0:12:ce:d0:66:c4:23:87:06:
6a:83:7c:6c:90:b6:14:50:f0:f8:1a:2a:98:02:54:
ca:83:84:d0:5d:57:b7:5c:b4:f5:5f:ea:5a:73:4b:
b1:bc:35:2c:1a:59:c2:72:b3:c9:25:d3:be:bf:29:
b9:6d:4f:ad:dc:4e:3c:50:52:84:84:c9:17:f2:5c:
63:ff:1c:ae:92:5c:ea:a9:ad:a8:23:06:93:5f:24:
70:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:66:4F:AE:45:21:21:EC:45:93:DB:A9:79:4B:75:94:CD:F2:E3:8D
X509v3 Authority Key Identifier:
keyid:88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:e6:e6:77:90:45:42:f4:ca:a5:ff:e9:65:b0:51:91:6c:4f:
77:b4:f3:ac:88:5e:f4:10:14:eb:a4:d5:f9:bc:92:b7:5f:fc:
82:e8:28:5a:88:e6:f2:9e:ec:0b:17:3b:e6:80:0c:a7:c8:e4:
ec:52:a0:75:6b:26:2e:f0:1c:46:37:7c:21:9f:4e:3a:86:f6:
1f:5f:88:5e:45:b1:7d:f2:c3:1a:84:53:61:1e:ba:9d:03:88:
dd:c0:0b:f1:0f:c7:23:63:83:15:1d:c5:cc:41:fa:68:6b:c2:
85:47:40:d4:81:51:96:00:7a:75:38:d5:06:6a:3a:54:77:5d:
c3:22:4b:9e:a9:91:1d:67:2c:d5:b2:56:82:54:fe:d3:b9:97:
32:0b:53:a8:ef:cc:a4:68:ac:3c:45:1e:b5:7b:c9:4e:fa:0b:
d3:0b:30:5f:0f:f9:15:c5:fe:cb:03:91:0a:03:1e:35:ce:f8:
5e:7a:c6:35:06:cc:0b:a0:1a:00:ea:78:07:9e:08:fe:ed:c6:
78:92:31:b4:4e:bf:de:71:1e:d4:74:f0:f9:a2:57:25:35:3f:
83:7b:5d:43:3f:b1:41:38:59:bf:0c:1c:57:4b:44:65:92:e3:
25:03:05:7c:51:eb:31:3b:7c:c9:69:54:1c:d1:1b:0f:2b:4a:
26:1f:fb:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:44:14 2025 by rpki-client