Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: WcaPkKUSjk1YYRheToDrRjyY5T+dqPOd/SP9pnbPckg=
Subject key identifier: 46:76:31:E9:C6:1A:02:67:78:FC:A4:E5:CE:FC:DC:6B:A9:73:15:BB
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0197500E9CD2967A998F4C29996781F88865
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0C3A
Signing time: Sun 08 Jun 2025 15:00:24 +0000
Manifest this update: Sun 08 Jun 2025 15:00:24 +0000
Manifest next update: Mon 09 Jun 2025 15:00:24 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: zdj88o8cwQZyast3XLcfiRVT84yjI3HNQe97tqqx59k=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 15:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0e:9c:d2:96:7a:99:8f:4c:29:99:67:81:f8:88:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Jun 8 15:00:24 2025 GMT
Not After : Jun 9 15:00:24 2025 GMT
Subject: CN=467631e9c61a026778fca4e5cefcdc6ba97315bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3b:51:bf:03:33:31:f2:b6:b1:24:e6:5e:b5:
b7:70:9c:06:4d:91:a3:b3:fe:70:37:35:63:6f:f1:
b5:de:d1:59:89:44:cc:7e:c0:2d:e0:aa:56:29:d9:
ec:a2:07:38:e3:33:f6:64:fe:ac:70:16:fc:70:f5:
05:0a:19:9d:4d:02:4b:24:a7:0c:44:6b:c7:38:3f:
59:6a:74:8a:50:63:bc:8a:6b:83:89:a2:01:a7:9b:
7b:4d:e9:5d:da:34:2c:12:df:1c:2f:9b:ed:85:20:
9c:ef:83:5a:85:9c:ff:b4:b0:1b:ee:22:24:f9:c6:
2b:dc:00:26:cb:de:65:f7:a2:32:82:fb:66:8b:5f:
0e:88:5a:78:52:ec:7f:cb:61:18:95:8f:c1:e7:0e:
de:a0:9a:31:f5:21:2c:4b:7c:9c:18:85:4e:47:44:
ae:b0:e5:ed:da:33:3a:43:95:6e:44:88:8f:a3:0d:
f6:d0:3e:1b:42:96:75:4a:69:f9:9b:5f:77:e4:57:
25:c4:b0:ab:65:b4:4a:79:4c:5d:f7:5e:cd:b8:6d:
c1:dd:65:f2:4c:dc:dc:91:51:88:c2:45:e4:7e:6a:
ef:42:e1:13:f7:ab:2e:84:8d:26:a9:1a:9b:a5:22:
ab:11:e9:65:39:b0:0d:87:96:c1:5c:01:38:85:b6:
77:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:76:31:E9:C6:1A:02:67:78:FC:A4:E5:CE:FC:DC:6B:A9:73:15:BB
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:0b:e6:77:4b:18:95:68:9e:0a:c1:0c:2a:5f:c9:67:05:d1:
2c:66:c8:ec:60:ac:64:ae:40:ae:95:28:25:15:9b:bc:dd:92:
a3:98:93:1a:d8:df:41:ea:2c:11:e3:5d:52:c7:c2:7c:62:bc:
e2:3d:fa:e2:42:53:66:04:46:f3:f8:f8:b0:bd:21:80:3f:78:
ed:19:dd:4f:93:fb:43:91:59:96:c9:dc:1e:a7:e6:ac:79:07:
a1:b1:d5:ef:eb:40:c6:7f:6e:5f:40:4a:b8:91:44:50:65:45:
03:99:44:44:14:fb:3b:7d:4a:09:aa:b7:4f:56:63:a6:0a:f8:
cc:36:de:de:ed:49:3b:63:99:5c:76:a5:62:af:ed:49:61:0c:
ce:72:8d:28:e1:02:95:e7:71:fb:ef:7c:78:f6:9e:13:a0:e4:
ba:7e:9b:0a:47:00:ea:ca:68:ad:1a:8e:64:f0:a9:77:e7:0f:
df:ed:1b:07:0b:de:08:de:e3:59:74:3d:c8:40:4c:31:6b:e2:
c7:bb:a1:a7:ea:2e:d8:7d:d9:8e:38:a0:23:56:d7:14:cc:10:
72:07:4e:c6:09:e6:c2:17:77:a6:e7:c2:d4:14:97:91:1a:02:
29:04:8b:29:08:a9:6b:de:86:dd:36:87:03:6f:b1:36:5f:c2:
c1:6c:7f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:28:52 2025 by rpki-client