Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: dxx0ZA0cJ0+cfZ3F1j4zu/c79JMUgCX/Lxza0Rg+XuE=
Subject key identifier: A9:96:55:A3:B7:37:48:AC:BF:81:7E:0F:26:95:A5:78:8C:7E:89:62
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 019745F90BFF358F7D64DA3E2CD9798CFB94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 157A
Signing time: Fri 06 Jun 2025 16:00:38 +0000
Manifest this update: Fri 06 Jun 2025 16:00:38 +0000
Manifest next update: Sat 07 Jun 2025 16:00:38 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: g79NHNqDQEztrcCF29V0sBga2Kec8VR5IwiERyZ1y7Y=)
2: cFbXH5gO6qs06Nq1Ek6wrTAvxB0.roa (hash: c0tlMuDM/vPMybXrB0sIatVwyL/aO7RZmUvD1wZIObw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f9:0b:ff:35:8f:7d:64:da:3e:2c:d9:79:8c:fb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Jun 6 16:00:38 2025 GMT
Not After : Jun 7 16:00:38 2025 GMT
Subject: CN=a99655a3b73748acbf817e0f2695a5788c7e8962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:eb:83:f3:95:14:a8:76:8d:e2:37:d4:4b:29:
ed:7d:d0:02:70:ef:99:42:17:9d:da:33:6e:f0:1b:
54:3f:b1:aa:bf:88:dc:5b:08:e9:4d:62:74:de:b2:
42:5a:cf:ec:b5:ab:1d:8f:4a:da:ee:c4:57:9c:49:
16:fe:45:38:03:8d:7a:98:e4:0a:ef:20:c4:03:87:
52:f5:21:6e:92:16:d3:4b:7a:84:cb:e6:43:f2:28:
e4:32:a2:56:ae:8a:c3:6e:e0:73:b3:85:d1:79:cf:
e1:65:8c:87:95:6d:8b:8f:a4:61:41:85:98:ad:b2:
34:eb:47:0e:33:a4:9f:e5:26:4f:e6:0d:10:8c:c0:
89:b5:c7:2f:bd:ec:34:e6:5c:aa:ea:8b:f4:e7:60:
61:61:c2:4b:a4:90:8c:7a:64:4a:d8:29:f7:c3:6c:
56:dc:3b:30:41:b8:c5:9a:6a:ae:00:50:af:d7:07:
47:4d:b0:18:bd:ee:81:7d:c1:bf:e0:7e:9d:52:01:
e6:c2:7a:c1:7f:e3:d0:bf:f1:74:e9:41:75:13:11:
89:cd:4a:d1:62:23:7e:d1:07:d6:de:40:eb:78:81:
63:99:46:44:6c:c4:cd:31:8a:ec:21:4e:77:dd:de:
63:ce:c0:85:76:fb:85:99:ce:3d:e9:15:b1:8f:e9:
07:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:96:55:A3:B7:37:48:AC:BF:81:7E:0F:26:95:A5:78:8C:7E:89:62
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:d0:eb:d2:dd:b9:ff:86:98:16:ae:5a:ae:47:df:71:30:ad:
ce:13:99:66:4a:3f:a4:c4:d7:21:6d:04:d6:f9:a6:94:e7:a3:
8a:ac:41:52:6f:63:87:01:10:5e:ea:8d:e9:b4:df:0e:f9:e4:
75:fe:5b:8c:2a:90:aa:4b:11:ed:16:70:fb:d4:05:bd:58:aa:
7e:5f:7d:a1:81:ad:fc:aa:ef:73:59:5a:ff:ba:4f:c3:d6:92:
6a:9f:2e:34:5b:78:ec:3a:83:63:07:b1:d2:5a:56:3f:89:e3:
cb:0f:db:4d:43:98:b3:00:f9:c6:54:32:28:9c:d8:98:87:87:
5b:66:f0:19:55:1b:f8:fd:5a:94:f7:2f:10:37:4e:8a:65:85:
79:0d:0b:83:fd:16:af:db:2f:1c:c3:c4:ab:db:c5:09:4c:af:
9e:a0:99:44:48:14:31:eb:8c:b9:16:81:73:b6:bc:48:ae:6c:
26:93:46:e2:10:36:c6:7f:c7:ef:c8:02:86:d9:e3:1c:13:26:
9d:40:f3:87:00:a4:31:62:48:53:a9:87:ce:1c:f9:f4:98:b7:
2a:9c:f4:e8:60:eb:8c:dc:d1:fc:db:c0:2e:a1:79:c0:d6:14:
11:0c:25:49:d4:91:dc:be:ad:fe:2d:b1:c7:ac:d9:0b:7d:df:
60:f9:bc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:18:53 2025 by rpki-client