
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier: 4XezzDZ009vrnTHNDtRnt6u4/trAkyuXdooPsNo9XGw=
Subject key identifier: 39:7B:AF:C6:46:16:A9:A9:92:06:B9:65:0C:D4:DC:1B:1B:A4:55:52
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial: 019766CD65B06FD3254D28EDDD897C6B491B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number: 0223
Signing time: Fri 13 Jun 2025 01:00:26 +0000
Manifest this update: Fri 13 Jun 2025 01:00:26 +0000
Manifest next update: Sat 14 Jun 2025 01:00:26 +0000
Files and hashes: 1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: XSS+w9qpTHc/CfBA7MvncnPWvBQUzB7vWH+AUjWm4J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:cd:65:b0:6f:d3:25:4d:28:ed:dd:89:7c:6b:49:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
Validity
Not Before: Jun 13 01:00:26 2025 GMT
Not After : Jun 14 01:00:26 2025 GMT
Subject: CN=397bafc64616a9a99206b9650cd4dc1b1ba45552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0a:ca:06:df:c2:0a:c0:2c:bf:84:89:db:15:
ed:21:93:f1:24:51:c4:8c:64:a1:90:74:5b:0a:41:
d9:1f:7f:15:02:46:3f:e4:ca:49:ab:b5:52:72:df:
fb:1c:61:37:0e:89:dc:d4:c5:66:96:2c:78:26:cd:
e1:0c:58:8d:8e:21:19:95:c9:df:a8:43:4f:0b:0a:
03:db:7a:73:05:a0:ea:72:6f:f3:eb:bc:ff:5c:3e:
8b:01:a5:a2:e2:b2:6b:55:6b:28:e0:23:8e:8a:c0:
5b:52:78:04:14:06:ca:46:93:01:36:28:33:b5:e5:
5d:b2:9e:f9:56:71:fe:bf:f9:50:1f:05:76:ce:7d:
d4:ac:51:1c:56:db:a9:74:0b:c0:16:a5:5e:31:bb:
08:d8:e7:1c:ab:7f:bb:43:9e:77:40:8a:7f:81:c1:
ac:ed:80:ea:99:0c:8e:b4:b4:0a:96:35:46:23:10:
9f:11:09:02:86:61:f0:e9:02:e6:36:67:38:5e:c4:
10:5e:6e:2a:bc:f2:98:97:e6:31:07:8f:5f:5a:47:
9d:8f:1b:a9:de:d5:98:fa:18:a0:56:a4:44:fc:00:
1c:96:1f:1d:02:23:57:06:75:e8:61:53:39:78:3c:
30:03:df:6e:5f:a2:58:cd:09:36:35:a7:5d:76:3b:
34:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7B:AF:C6:46:16:A9:A9:92:06:B9:65:0C:D4:DC:1B:1B:A4:55:52
X509v3 Authority Key Identifier:
keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:06:c2:a9:47:bf:74:ed:92:f0:ab:0a:c9:b1:fb:91:3e:0c:
e0:a9:44:91:1b:25:ec:23:77:01:63:f6:fa:a7:ea:46:49:ca:
e9:a1:96:b9:f5:57:ef:03:e9:e3:9f:25:ec:f5:fe:e8:6d:72:
f3:93:be:7a:c4:62:c1:c5:53:93:5f:af:4a:c6:4d:6d:6f:74:
ca:20:19:09:b6:56:d0:2b:47:d8:ef:1a:34:9a:e2:93:7d:aa:
d4:40:b8:fd:7a:ca:0e:47:ef:e6:32:c9:d2:6d:8e:d1:70:5e:
0b:af:31:73:7e:55:f4:63:1e:c1:51:e1:e2:f1:83:a8:70:40:
36:e9:8c:d9:28:07:e6:44:02:5c:5f:8a:e5:94:cd:80:3f:87:
61:6e:75:80:63:87:98:69:5f:1e:a6:6f:8b:d3:23:11:77:b0:
6e:f3:11:32:5a:c5:af:18:86:c4:0d:95:96:68:05:14:1f:f0:
d7:af:d9:16:a0:ac:e9:09:62:8a:57:f2:3e:82:72:d3:08:88:
d1:24:95:d1:59:a7:33:48:25:b4:61:23:6f:49:be:e5:1a:f9:
1e:07:86:bd:f2:91:f2:ea:24:78:b9:07:4d:a0:bc:61:46:18:
74:9d:be:55:c3:df:16:31:8c:13:76:d6:99:e6:60:6d:b0:98:
38:fd:be:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 04:29:06 2025 by rpki-client