
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier: X7RNA5rE/j52qHolcDEHD4ZpL6cZu4Fv383XHwZi8Zs=
Subject key identifier: 25:82:AF:F8:E7:92:92:1C:E0:3F:33:87:D8:35:2F:49:9F:B4:22:73
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial: 01975DFCBA479A31B23C8F242D3CA6F2832B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number: 0756
Signing time: Wed 11 Jun 2025 07:55:33 +0000
Manifest this update: Wed 11 Jun 2025 07:55:33 +0000
Manifest next update: Thu 12 Jun 2025 07:55:33 +0000
Files and hashes: 1: VWVp9Cs0S9PvQSERU4KTGGzQ8JI.roa (hash: SxWsENl0azYTplSpEg/TKtQu0dvHaU6Cl+WjOSHnKaA=)
2: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: Q981uZq5tYcXwX0la25R0ybZuA58YduNcr1IicEnxas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 07:55:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:fc:ba:47:9a:31:b2:3c:8f:24:2d:3c:a6:f2:83:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Validity
Not Before: Jun 11 07:55:33 2025 GMT
Not After : Jun 12 07:55:33 2025 GMT
Subject: CN=2582aff8e792921ce03f3387d8352f499fb42273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8f:b6:82:ac:c2:07:24:83:44:c7:0d:a6:9e:
44:4d:77:23:ef:b7:87:91:75:e0:88:93:4b:9a:d1:
e9:38:dd:fd:dc:90:05:05:ec:4d:33:2c:29:e3:5c:
d2:fe:86:bd:a7:05:ea:05:25:4c:3f:14:eb:d8:99:
2b:65:c6:bd:e5:02:a1:be:dd:5e:fd:6d:83:6a:80:
c4:db:8e:d1:fb:c8:82:01:c6:d1:f6:5f:da:25:07:
e2:d5:b4:6f:5b:de:04:a1:70:d2:1c:d3:ed:67:e0:
93:4c:b5:a7:a5:a5:17:d7:95:2c:eb:7d:e6:4c:e6:
5d:da:57:f8:94:05:fd:9d:50:0f:94:94:b4:9a:49:
7b:75:0f:43:77:09:e0:b6:da:11:e4:03:1d:85:6c:
0f:1c:d9:ed:e0:4b:70:73:9b:43:74:c7:9b:5c:1d:
71:92:0e:65:6a:61:13:1b:3a:66:2d:ef:0e:22:4f:
a4:44:08:ac:dd:9b:7a:4e:1b:e8:b5:45:d6:9e:d5:
a1:14:98:5c:e7:31:b3:dc:d8:18:76:2c:81:1e:de:
31:b6:3d:54:b5:11:a7:ec:09:84:16:2c:5b:48:7e:
aa:3a:6a:e8:86:3d:25:99:bc:e9:ec:03:06:3c:b8:
79:fc:6b:52:15:5b:8a:7f:f1:01:03:a9:11:05:c5:
68:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:82:AF:F8:E7:92:92:1C:E0:3F:33:87:D8:35:2F:49:9F:B4:22:73
X509v3 Authority Key Identifier:
keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:8b:2d:9a:2c:f0:69:1a:66:b2:21:e2:19:59:ef:c5:6c:5d:
46:5b:f9:a1:86:41:ce:55:33:99:b4:dc:14:f1:b8:da:87:e6:
2e:0b:ee:5a:d6:07:8d:67:f1:eb:3a:7d:c7:38:1c:44:7e:2d:
f5:7e:05:5a:d8:fe:57:97:77:a9:84:83:f1:ad:3c:0c:a4:41:
d4:40:f9:54:10:c0:d5:0b:50:8c:13:47:c3:d6:0b:34:76:7c:
28:b9:36:bf:81:ef:3f:c4:e3:00:17:3d:d3:f5:56:14:32:6f:
48:a0:b2:c3:7d:36:ee:bd:19:f4:e9:f8:9e:0b:2e:0e:eb:bb:
ad:8b:48:8e:18:95:8e:4b:b7:7f:3d:53:bd:1c:b9:87:2b:c7:
0a:40:a5:60:4e:03:a6:cc:bc:68:fb:f2:05:24:cf:ee:48:51:
08:05:48:ea:6f:0d:53:68:1f:2a:65:fa:47:40:ee:9f:a3:80:
5b:06:a5:9b:df:a1:4e:e7:23:ab:2d:c1:36:0c:84:2a:1e:d4:
f5:36:5a:c7:d6:66:5d:1f:87:31:3f:31:27:46:c0:fc:81:81:
bf:0b:2e:65:af:17:b6:3f:f0:fe:20:44:63:a9:52:3b:91:e4:
2e:48:b9:32:96:55:99:a7:54:46:e5:cb:e9:34:2b:53:29:6a:
49:70:2f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:05:39 2025 by rpki-client