Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
File: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft (raw, json)
Hash identifier: LgaBIoDFwWV/W3Eew7kV135ErTVJKMHn49AooZmEH50=
Subject key identifier: E9:49:B0:2C:6D:F9:40:B0:15:27:B3:FA:69:CA:68:45:F7:96:C1:75
Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Certificate serial: 01974C31FA9A678217B301AE36208A548013
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
Manifest number: 1538
Signing time: Sat 07 Jun 2025 21:00:33 +0000
Manifest this update: Sat 07 Jun 2025 21:00:33 +0000
Manifest next update: Sun 08 Jun 2025 21:00:33 +0000
Files and hashes: 1: TuA6dq5RUfQK0g-nhGPwelxAp8s.roa (hash: A068hT4+Hwiukpw4NAI0ekcWki3f2qgAy0smH/qbl44=)
2: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl (hash: 4fFdr3oEnxCMhegTLti0fqM3kCApuO9Jq2kpznllfL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:fa:9a:67:82:17:b3:01:ae:36:20:8a:54:80:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Validity
Not Before: Jun 7 21:00:33 2025 GMT
Not After : Jun 8 21:00:33 2025 GMT
Subject: CN=e949b02c6df940b01527b3fa69ca6845f796c175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1b:f3:af:fe:98:d3:ca:5f:35:8f:65:9b:52:
41:a0:be:b0:ee:05:48:2f:fa:94:05:49:f5:5d:10:
b0:8d:28:56:a8:a6:19:53:bb:68:0a:6a:1a:84:3f:
0b:81:3e:38:21:29:82:c9:5c:55:a9:1e:f8:8c:ed:
64:07:b9:9c:16:5d:55:e5:9a:6f:3e:f4:39:cd:82:
98:87:59:4f:b7:66:f2:3e:df:af:8f:b6:1a:f6:fa:
07:c0:10:63:58:7a:f7:7b:9d:59:00:c8:bd:9e:aa:
1f:c0:30:90:13:29:44:6c:53:1f:97:ba:ee:57:7a:
4e:72:de:7a:86:78:04:d4:8c:7a:c0:66:88:1f:49:
a0:d6:41:90:01:6e:83:02:66:a7:c9:5c:67:fd:d3:
ab:ea:e7:6c:74:cf:38:14:94:ff:70:e2:a4:8f:bb:
8a:f3:91:28:23:88:81:24:93:a9:27:80:df:9d:0e:
c8:fe:2a:48:4b:90:47:1e:4e:f6:8f:2a:a4:5e:80:
c4:af:bd:4a:f2:e1:ff:dc:1d:00:5a:59:23:7d:1a:
d6:eb:f0:9f:2c:41:50:48:a2:8c:ae:a2:c0:06:e1:
de:a3:c9:1c:f7:cc:70:f0:04:11:dc:d9:73:68:38:
27:2c:e2:26:38:78:a7:6e:e9:34:03:0c:5c:8c:60:
dc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:49:B0:2C:6D:F9:40:B0:15:27:B3:FA:69:CA:68:45:F7:96:C1:75
X509v3 Authority Key Identifier:
keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:11:a6:91:30:f1:8f:12:4f:e1:bb:01:05:8b:d7:6b:0a:38:
39:21:d0:9d:0c:32:3b:af:3b:aa:f9:2c:1d:1f:eb:8b:03:83:
82:8e:86:69:35:ef:d6:f7:4b:07:98:3c:ad:e8:5e:48:74:04:
5f:20:0d:0e:51:ed:90:7b:ce:67:77:6f:1d:cf:e9:ff:8c:a8:
78:d0:6d:aa:ae:3a:b4:86:c2:c5:e8:f3:99:76:a0:bd:59:a6:
be:c0:b7:bb:47:89:63:29:cd:3e:e7:ac:1d:a5:ec:bc:9a:e7:
28:2d:47:45:8b:37:41:82:e1:8b:2f:cf:0f:56:8a:96:98:4a:
78:38:8c:84:12:bb:a7:28:fc:71:b1:2a:c3:af:d7:7e:65:98:
5b:55:ed:42:0e:28:bc:41:72:ea:7b:b9:d7:c5:e1:8d:ae:29:
fb:01:28:0e:d1:82:a7:04:4b:b1:00:29:e4:a5:1e:9f:54:85:
6f:d7:27:42:53:a1:b5:35:c9:9a:e0:fd:a9:b5:78:28:5c:a2:
f2:be:59:a0:12:bd:f9:cd:ea:ec:be:44:75:f6:6c:40:0f:a4:
f6:a0:c8:b7:6b:b8:e3:81:77:c0:f2:e0:39:77:ac:14:b6:7c:
ea:c6:e0:2a:3f:80:ff:85:0a:b1:ed:20:4a:85:97:09:de:96:
dc:46:b5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:40:39 2025 by rpki-client