Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json)
Hash identifier: 1/M14VKG+XpwPDl1fQttc5X0m27jmeAt/BkZtM5uz1c=
Subject key identifier: A8:9F:75:2A:92:29:51:C5:20:C4:1F:38:68:80:41:4A:2A:5B:8F:19
Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Certificate serial: 019748FA1FB29DBBE1E8429D3C9EA1EB74F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
Manifest number: 08A9
Signing time: Sat 07 Jun 2025 06:00:40 +0000
Manifest this update: Sat 07 Jun 2025 06:00:40 +0000
Manifest next update: Sun 08 Jun 2025 06:00:40 +0000
Files and hashes: 1: 0aVULxHFqdDfNnT5CqmJEz5qebM.roa (hash: p1YUyJePrroRXqe7gzHmSFVR4nwW1EVYKUdr7JKm3tY=)
2: 1x2QkjrjfmH7457XFfnRPIPsvrU.roa (hash: hdLqZqotCS5NMzBAHyICUCVoucf1opCMX8HxfI3Xt9w=)
3: Dc1SxW96IAQ3f2snIBmens7GV0U.roa (hash: A68NloNFUVZ/1yLMaTnJ5sUcnw8LpIIqTLsAe9oPGuQ=)
4: Hclo7mgAV-Jk6Qp5sVlZMDADheQ.roa (hash: cVUhTfbeGPClCYhj8aCdhEzcQl8l864NJzclgxFTC+Y=)
5: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: gdf1E2cky2jQ6C4zej3GmXj4Djhl/IQmPSOuwJB5u/g=)
6: Ku4DjWMj_wrBqXvp8QwLCV7LvMQ.roa (hash: MiHDGBqhLXLE6nmzkue9evydNoK6FMJwJm/pNx6ZNnQ=)
7: ajmq5QdlQvXrCBRMjUs67yP9AmI.roa (hash: mQ5XjE5gzuzrTdkByBU3/meXRrw3VOANPbjnntSYJ74=)
8: iIyJKjInlinbrFoxMvyP7cHrL18.roa (hash: jppb7YCDugjMDFMLhWTY9NbjBHwSDw8mYabJJeuiwkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:1f:b2:9d:bb:e1:e8:42:9d:3c:9e:a1:eb:74:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Validity
Not Before: Jun 7 06:00:40 2025 GMT
Not After : Jun 8 06:00:40 2025 GMT
Subject: CN=a89f752a922951c520c41f386880414a2a5b8f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a8:72:6c:29:fc:67:ee:60:0e:71:20:0f:dd:
f3:84:92:61:db:6e:75:2a:a6:ef:4d:41:fd:c7:7a:
90:07:74:7f:a5:7d:2e:3b:ad:5b:a4:d0:f2:33:6c:
86:b4:7e:08:83:3b:4d:99:cb:a9:d4:f1:c0:41:50:
51:54:ba:47:cc:e0:bd:34:b0:73:c2:03:c9:e4:f0:
1d:5b:b4:d4:52:45:b4:89:21:fd:1d:7c:9f:6f:00:
26:7a:30:78:36:3a:24:1e:8d:c0:be:26:17:39:f2:
89:47:c2:32:bb:45:78:cc:c9:8f:73:a5:ad:40:d2:
fa:6e:37:4b:be:a3:a5:b3:c2:94:91:ae:d5:aa:82:
f5:57:0a:20:ba:82:d4:c3:51:86:26:56:e7:d5:23:
bd:71:a7:e6:1c:c7:50:bb:bb:28:cd:3a:b2:21:fc:
b0:45:8d:f3:11:6f:32:8f:ea:b0:44:4a:7b:8f:2d:
e1:aa:ac:f5:5f:3b:b6:17:06:53:f7:63:1e:b1:54:
2c:f3:91:8f:51:54:0c:c2:56:a7:b5:bc:52:74:1f:
b7:c3:b3:82:43:9c:78:32:f6:df:8e:d1:84:29:72:
5d:50:bb:1a:f4:43:b6:d0:36:4d:32:e9:d4:79:18:
43:4b:00:4d:dc:13:a3:2f:76:07:9a:d2:c9:bf:52:
87:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9F:75:2A:92:29:51:C5:20:C4:1F:38:68:80:41:4A:2A:5B:8F:19
X509v3 Authority Key Identifier:
keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:b5:63:42:f3:72:fd:dc:81:92:3d:36:b6:eb:ae:d3:d5:cf:
6a:8e:07:cc:13:1c:d2:b3:76:6d:e8:43:44:c5:c1:e4:ce:1a:
96:d9:a9:ab:00:c2:95:bd:58:ed:80:b8:58:00:50:50:7e:0b:
5b:20:25:19:38:67:00:75:14:a7:05:e6:0f:c4:5d:28:59:94:
bf:67:0d:ac:83:a5:44:a8:38:5e:7a:89:43:a8:d6:04:67:b4:
3a:7b:c4:b9:03:82:c3:59:bc:63:d6:a5:1f:ec:69:c6:f1:ec:
80:1f:af:46:3e:3c:1b:38:85:52:ce:c0:65:a2:b5:67:24:98:
bd:51:b1:e2:87:f6:7d:13:da:9e:3e:e9:8c:ea:62:34:36:d6:
6b:b0:da:7b:c0:2d:40:68:f4:fc:fe:ca:b3:2c:d7:a1:75:75:
40:d6:7b:cb:ef:94:27:4c:0f:3b:90:42:b2:64:0e:ca:60:42:
3d:2d:1f:c4:06:20:07:91:b5:b8:20:fc:d9:a9:65:8a:c4:4e:
c6:dd:08:84:71:9c:b9:b5:a7:71:ab:1a:00:2c:a6:cd:52:1f:
78:85:22:47:fb:b9:63:79:aa:4d:9e:70:8f:af:53:8c:2f:b6:
57:c7:24:ab:74:62:1d:d0:90:c3:26:20:98:d3:30:3b:fc:20:
0e:2d:33:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:51:17 2025 by rpki-client