Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: wuuHvCKaSbUabb4w53uElY9ToMx3TSxHkYphywt+nMc=
Subject key identifier: 4E:D8:DF:17:F8:DB:50:89:F1:40:DE:5F:E4:63:98:3B:C2:A7:A6:0E
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 0197474267575D87AC4C2F3424F8823E976E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0686
Signing time: Fri 06 Jun 2025 22:00:23 +0000
Manifest this update: Fri 06 Jun 2025 22:00:23 +0000
Manifest next update: Sat 07 Jun 2025 22:00:23 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: PqkK2RHhsZFH559IS4vt4pHvKcKtgclmyVRQB1ZGxPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:67:57:5d:87:ac:4c:2f:34:24:f8:82:3e:97:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jun 6 22:00:23 2025 GMT
Not After : Jun 7 22:00:23 2025 GMT
Subject: CN=4ed8df17f8db5089f140de5fe463983bc2a7a60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:64:ae:78:4a:07:06:03:42:c6:6c:01:eb:50:
e8:fe:4e:77:61:99:9d:b0:7f:d8:c0:1e:0b:af:ca:
7c:b7:1f:16:56:1e:67:49:1a:75:96:2c:53:83:6d:
c5:cb:11:bb:17:14:fa:1f:56:66:f9:5d:84:a3:a3:
21:ae:b3:e8:79:63:73:be:ea:b1:7c:78:a2:68:e1:
4a:97:1d:e9:61:b3:22:98:85:32:c4:38:c5:c4:b9:
f7:63:77:2a:40:62:63:e8:dd:2e:95:86:e3:fd:b9:
8b:05:77:78:ff:27:40:70:08:6c:12:e3:b9:b6:47:
36:8b:d1:77:28:8a:f8:4d:6d:4d:c7:4f:36:c4:1d:
43:42:c9:9f:cb:df:ae:14:21:bf:20:13:db:2b:41:
e6:f0:f2:0c:25:e1:5a:aa:a7:9a:3c:42:57:84:d7:
9b:7e:22:0e:39:7e:e4:d4:ea:d6:5b:84:61:01:f5:
f2:41:a0:a9:1a:96:11:53:7c:65:19:c9:8a:43:cf:
65:85:30:70:1d:04:f1:d4:ea:e6:01:d4:ee:ac:15:
e0:c9:0c:b7:16:65:5d:6f:4b:c9:9e:0e:54:c6:fc:
2f:58:1a:6a:b1:68:eb:99:39:26:40:63:52:bc:08:
65:18:53:b4:94:ff:a7:3c:76:d8:70:03:ac:9b:ec:
e2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D8:DF:17:F8:DB:50:89:F1:40:DE:5F:E4:63:98:3B:C2:A7:A6:0E
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:21:94:05:08:02:65:f0:67:17:4c:fe:2a:1b:1e:66:d8:bc:
b3:af:07:ca:03:40:57:ff:73:2f:34:1e:7b:11:07:9b:a4:53:
85:51:cd:99:54:69:7b:be:43:e1:e5:81:e0:e3:0f:55:02:94:
89:4f:89:0c:3d:00:78:a3:d2:7e:b2:65:9a:c9:c8:f8:42:37:
89:2d:8e:5a:51:01:95:70:53:1d:58:b0:67:47:47:96:71:a7:
1b:09:1b:4a:20:c1:a5:93:3d:32:09:e2:26:e4:0c:cd:a7:3a:
e7:e2:b8:de:d3:df:92:3c:a4:e3:fb:41:e9:ec:27:05:51:5a:
ca:56:f8:32:f6:f6:a1:d7:d0:ae:d9:ec:98:70:9e:da:37:75:
1f:8d:d6:8b:73:b4:ac:5c:20:a9:0c:d4:9e:a7:dc:e6:d5:c6:
3b:88:9d:9c:45:e2:cb:16:92:64:33:79:92:8e:01:fe:96:8e:
5d:f2:e7:5a:62:9d:11:57:fb:b5:c1:4e:72:3e:8e:a6:e9:c4:
60:b8:fd:14:4e:de:f3:cb:31:e7:fb:79:86:4b:04:5c:ec:50:
bd:72:38:8a:b8:65:db:65:c8:a4:83:86:5d:91:7c:84:45:9a:
4e:69:a5:44:f5:82:14:ca:ed:5b:a0:22:ec:d8:ff:54:e7:60:
53:cd:f7:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:54:44 2025 by rpki-client