Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: H15MD/cRUOUSrVuJaQFRD/dwzQKYF6v5qsu2UxZM31E=
Subject key identifier: 99:92:25:D6:BC:CF:6A:74:A0:8F:CD:DC:7F:F0:F7:99:94:71:FD:4B
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 01975234F858893DB3BD95DB6F6E5B68411F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 11B5
Signing time: Mon 09 Jun 2025 01:01:32 +0000
Manifest this update: Mon 09 Jun 2025 01:01:32 +0000
Manifest next update: Tue 10 Jun 2025 01:01:32 +0000
Files and hashes: 1: YR9oUfcPn7hi-EfIp0zPWNgdoLI.roa (hash: gZUlOd3rhYgj7y7iYiifqKrTqOs4vDy8o9fKugEnj2M=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: OtsyY+VpT5Hpt15F5/tt7rcKmA2VITD99rX+WvB/9Gg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:f8:58:89:3d:b3:bd:95:db:6f:6e:5b:68:41:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Jun 9 01:01:32 2025 GMT
Not After : Jun 10 01:01:32 2025 GMT
Subject: CN=999225d6bccf6a74a08fcddc7ff0f7999471fd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3f:64:01:81:c1:ba:ee:df:27:5b:9d:bd:ad:
54:6b:95:76:3c:4e:93:47:7c:dc:0c:91:6d:71:76:
9d:7a:25:ef:d8:24:f9:e3:10:1a:84:54:54:2a:a3:
96:77:ef:53:70:93:78:c7:3c:16:c5:d1:fb:d2:e0:
66:5d:fd:0a:ab:5e:e4:09:49:d1:ab:b6:14:87:65:
de:77:75:84:bd:23:56:42:ef:a8:35:2a:c0:9b:a6:
60:63:c3:a2:23:51:0f:9f:fb:79:6a:af:2b:81:36:
bc:1d:e0:77:62:54:fd:ec:ad:25:10:dd:1e:c5:fe:
58:0a:ba:71:07:5f:4d:52:02:68:52:cc:b6:ea:f5:
d2:62:67:15:f9:2a:e0:ed:78:5d:cb:37:0f:b7:a7:
0d:3b:55:6b:9c:86:0c:0d:2b:ef:32:77:45:a6:43:
44:44:84:8e:0c:c9:fe:23:0d:a6:eb:19:7e:0e:29:
ca:1e:85:aa:15:51:c7:ab:79:38:a2:83:d5:b5:07:
26:67:fc:39:28:f0:33:7d:2e:e6:d6:dd:4b:48:e2:
3a:1f:01:18:94:17:89:6d:1f:01:84:07:ae:35:66:
f0:bf:87:70:0d:d8:6d:e9:ac:ac:6a:9f:f0:b7:c2:
cf:77:c0:fc:f6:b2:0e:6e:88:ab:19:d4:6d:88:6c:
07:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:92:25:D6:BC:CF:6A:74:A0:8F:CD:DC:7F:F0:F7:99:94:71:FD:4B
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:08:e1:2e:1d:8b:fa:91:e6:16:39:d9:f0:2e:73:db:95:94:
68:16:a4:c3:62:9c:57:c3:19:40:35:ed:4b:d0:18:82:f3:3c:
84:22:d6:26:e1:5c:02:ca:7c:6f:96:5c:17:81:4e:3c:ec:fb:
16:e2:55:5c:67:6f:53:2e:b2:9f:17:1f:23:f8:11:c4:72:43:
4b:6d:ac:f1:6a:73:58:d5:8e:65:4a:49:77:f1:52:31:24:f4:
f6:f5:fa:fe:6f:ef:f9:32:ec:b0:88:9b:aa:69:e8:f7:aa:5f:
cd:df:0f:05:1c:50:a2:00:70:c3:5f:9d:43:32:fe:e0:34:46:
88:f3:1d:18:35:fd:7f:b3:e1:db:b7:86:b8:71:b6:22:d3:22:
36:df:36:da:1c:2f:ea:2c:de:78:ab:c2:ce:05:f0:0f:e2:13:
45:58:9e:d3:d4:08:48:b7:a6:e1:ba:d7:05:f4:56:85:a9:47:
d6:ab:b8:ca:d6:bc:f3:94:d5:67:65:b4:73:e5:79:ca:8e:32:
68:5f:20:04:4e:12:3f:5d:3e:14:d4:22:e9:9a:ea:dc:db:b6:
e1:b4:2f:1c:08:1e:1e:91:0f:c0:c6:e9:2c:79:86:30:4e:a7:
90:e5:0d:a7:49:b0:a5:ee:03:c8:0c:75:3d:9e:e1:f5:03:ee:
f9:02:7d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:11:34 2025 by rpki-client