Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
File: ihZhi3H_yA4cP0HtDfyJq16WP9I.mft (raw, json)
Hash identifier: x3lwl55ju0FMZrJlZy2hQEmwmVnhg68yZKSxVIFr5tc=
Subject key identifier: 1B:41:4F:19:D4:63:87:59:F5:16:23:8C:D6:6F:59:4A:2B:2A:45:99
Authority key identifier: 8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
Certificate issuer: /CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Certificate serial: 01975CEEC52484900B35AB29B9E84E666B28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
Manifest number: 158D
Signing time: Wed 11 Jun 2025 03:00:41 +0000
Manifest this update: Wed 11 Jun 2025 03:00:41 +0000
Manifest next update: Thu 12 Jun 2025 03:00:41 +0000
Files and hashes: 1: ExfUqNEW3Lyq9Nl7Jq22WcfJ1rw.roa (hash: 6SjZfPEMGV4QZNr6XzSlmm+VNkfjjPfYSSMSKKIpL5E=)
2: ihZhi3H_yA4cP0HtDfyJq16WP9I.crl (hash: Mec/Nm4jpNjADTYN8r6pDxLRWBthYbRfA/WFY+IlVJw=)
3: vuckuXbmedLIJWITtJ1gJzQY8X0.roa (hash: BujWwxtiu31OcVkERDwp6qXjCF/qZpedTzNgbY+R4ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:ee:c5:24:84:90:0b:35:ab:29:b9:e8:4e:66:6b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Validity
Not Before: Jun 11 03:00:41 2025 GMT
Not After : Jun 12 03:00:41 2025 GMT
Subject: CN=1b414f19d4638759f516238cd66f594a2b2a4599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c9:a4:22:ee:6e:25:85:01:e2:17:b6:b3:5a:
17:3b:2c:12:e7:9d:62:f2:9b:ed:3f:a3:c4:7f:48:
ef:a5:ab:7e:95:87:29:d6:4c:35:ae:ac:27:50:10:
9b:b0:34:8b:01:d8:dd:a9:4c:de:8a:af:c8:ad:ea:
3a:6e:bf:8c:ee:b1:92:3f:83:3e:d9:d2:fe:6a:d0:
ae:3a:51:46:7d:49:3e:28:e1:6b:2b:6b:72:e3:d6:
1e:b5:88:b7:7e:19:b3:7a:35:f6:d1:39:03:89:2f:
e3:98:ab:63:65:5e:42:0e:52:86:fe:2a:fc:e1:7e:
2d:de:7b:33:8c:39:8c:a7:5c:09:a0:a0:31:42:24:
04:41:b9:e9:13:77:71:61:99:4b:48:34:f0:af:7c:
0c:2d:cc:99:b2:b9:ae:b6:9c:13:35:eb:6a:1a:19:
20:05:59:5c:2a:be:a5:d6:42:f7:63:ae:b4:57:b2:
72:3d:63:25:8d:38:8c:7b:91:7e:45:c6:23:a4:c9:
9b:23:c7:d4:06:4a:3a:39:a1:c5:34:b4:82:bb:96:
1f:d0:73:ea:d6:5c:6c:b7:01:9d:12:69:51:ba:02:
03:87:9f:4d:ae:3b:af:5d:6b:21:47:ab:5a:9e:67:
90:1f:c8:67:79:17:f0:8a:ba:b2:ea:17:8c:6a:58:
de:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:41:4F:19:D4:63:87:59:F5:16:23:8C:D6:6F:59:4A:2B:2A:45:99
X509v3 Authority Key Identifier:
keyid:8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:49:3e:f9:f3:ce:28:dd:1c:c8:cc:d1:73:9d:f1:0c:ba:ab:
1a:f0:85:8a:d3:b1:c0:9f:9b:0f:69:65:aa:c6:e9:ca:de:ee:
47:c2:de:41:5b:21:93:ea:7a:3d:8b:ac:30:6b:a0:b4:ab:13:
d0:14:a8:2b:5b:f4:43:07:a6:e8:ac:5a:b7:bb:f5:c0:c6:c4:
96:57:63:af:30:da:18:3c:88:5f:cc:f5:b2:62:5f:3e:ea:a5:
c4:a1:8e:a2:8b:db:d6:6f:72:09:ee:bc:35:cf:82:8d:a6:12:
ff:d3:39:af:65:31:d3:6d:a1:d6:56:9a:ce:6e:81:b1:7b:50:
fa:19:e1:a3:50:0b:59:41:68:70:7f:30:e1:cd:43:7a:f9:a8:
1d:dd:34:f8:82:f5:e4:a7:c9:2c:50:18:fb:3a:36:a5:b3:6c:
ad:71:5c:dd:6c:37:6e:b4:b5:21:8d:6e:27:21:20:56:27:3f:
e3:08:03:7b:7b:ce:a9:ef:a4:87:39:6a:24:71:30:82:76:bb:
83:8b:87:a2:05:c7:41:3b:5d:b8:28:8d:6d:36:4c:6d:59:ce:
85:3e:13:f9:3d:27:5c:cc:30:fe:88:c4:7a:5b:5a:be:0c:27:
06:a4:bb:75:fb:74:41:c0:aa:a9:c5:78:1e:ed:b8:0b:84:1d:
1e:26:3c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:54:00 2025 by rpki-client