Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
File: I8Aq9PWPETIK8xlpRuH86dBQyQY.mft (raw, json)
Hash identifier: CxWVPjNrOTaz6j1xC1Qifh104SBFg/NNoXo2S8ZO1uA=
Subject key identifier: BF:11:76:EB:61:89:CD:59:BB:85:75:3F:BC:DE:C2:8F:EE:65:CF:C2
Authority key identifier: 23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
Certificate issuer: /CN=23c02af4f58f11320af3196946e1fce9d050c906
Certificate serial: 01974AB17B2BFBC1D0668E7CADA53929E97B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 14:00:34 +0000
Manifest this update: Sat 07 Jun 2025 14:00:34 +0000
Manifest next update: Sun 08 Jun 2025 14:00:34 +0000
Files and hashes: 1: I8Aq9PWPETIK8xlpRuH86dBQyQY.crl (hash: 4Bi9JByKqE2MBNMzVjcy2grInktRkE5RLUSHey+wjxE=)
2: L1nx6g959I4u5e_n7rqsUK0vG74.roa (hash: X8LU286M1DCtu5IfhCO2jJJ+1Cy+WsVLYYIMMfE/G4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:7b:2b:fb:c1:d0:66:8e:7c:ad:a5:39:29:e9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23c02af4f58f11320af3196946e1fce9d050c906
Validity
Not Before: Jun 7 14:00:34 2025 GMT
Not After : Jun 8 14:00:34 2025 GMT
Subject: CN=bf1176eb6189cd59bb85753fbcdec28fee65cfc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:31:a1:0b:10:2d:0b:09:7c:9b:7c:86:c1:4c:
6f:8d:c1:85:f5:a9:db:01:26:49:02:36:a8:b3:4e:
68:3e:aa:58:70:11:e2:0d:2b:d1:5d:08:5c:ab:02:
02:9b:da:4b:1a:01:4a:b3:34:89:50:f5:f4:0a:d1:
b9:2e:37:8c:28:66:dc:93:68:37:2b:58:64:45:47:
27:e8:55:bb:98:95:89:75:a2:88:fd:6b:63:a8:2a:
d3:96:e9:4a:a2:c0:0a:a2:a6:eb:1a:6f:e9:82:2c:
a0:af:79:e3:45:09:44:35:ef:73:a5:dc:21:a1:a6:
04:e0:77:d8:b0:a8:00:da:23:23:db:ee:49:ef:5c:
b2:7b:86:a3:e2:39:76:8c:68:79:12:4e:df:ed:94:
8f:67:92:51:51:d4:6b:d1:c7:1d:14:06:8d:2e:8c:
bb:a3:8e:87:84:f0:d1:94:39:4e:bd:97:ba:cc:54:
df:4c:79:ba:b4:e8:8a:96:9d:0b:b9:69:d3:fb:9e:
12:f5:9d:ae:e5:b3:08:9c:87:37:7c:a6:b7:9e:5f:
a6:33:16:42:6d:44:84:10:1a:1b:7e:8c:2b:c4:6f:
89:d1:f1:73:3c:c5:1b:5b:8d:5d:cf:09:7b:f5:a3:
70:4e:63:66:fa:fe:69:7b:d5:e9:e6:d6:e8:52:1a:
b8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:11:76:EB:61:89:CD:59:BB:85:75:3F:BC:DE:C2:8F:EE:65:CF:C2
X509v3 Authority Key Identifier:
keyid:23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:78:42:a3:ae:73:dd:88:21:d4:b3:7a:68:f8:69:64:9d:da:
eb:bf:f1:f9:60:25:d7:0c:1a:28:09:06:46:99:c9:3d:e6:a0:
f5:e9:a8:01:ce:b6:f2:62:19:11:94:9a:d9:5d:ac:2a:7e:52:
32:41:39:34:5a:2e:a4:51:9d:82:df:4b:7d:38:21:21:8d:8d:
cd:61:55:6f:d3:6f:76:ac:fd:1b:80:7e:97:23:6e:65:b7:3d:
c1:47:93:0a:19:b4:d5:d4:ae:8f:84:cf:ab:0f:cf:fc:d9:fc:
81:e9:04:d5:84:4f:a4:dd:c0:a0:56:7b:c6:94:fc:24:62:3a:
d0:05:70:a6:37:7d:e1:9a:e7:29:e0:82:04:75:53:2b:62:6d:
a4:a6:9c:29:40:f6:4f:da:39:c9:d1:62:dc:4d:21:96:82:13:
00:1f:9e:7b:26:64:ca:94:20:54:c3:26:1f:d5:d7:d0:94:78:
91:8c:93:21:58:45:f6:9e:76:3b:60:0d:c3:c6:0a:9f:dc:97:
87:ad:80:15:22:a9:dc:8c:b1:8e:c2:82:b1:57:f9:66:c4:f6:
d1:8f:32:21:dd:e7:2d:fd:45:38:ca:4e:82:65:e1:45:e6:95:
d3:50:44:3e:b4:52:02:25:f3:5b:21:ae:48:c1:db:23:38:db:
50:b7:a3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:35:17 2025 by rpki-client