Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
File: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft (raw, json)
Hash identifier: 2zX+HeniswrQK+kKKPcrsRiyJkrV83wOA3wUH2+m8G0=
Subject key identifier: 6D:3C:56:60:C3:F3:FC:20:C8:A0:21:0F:45:E1:61:A9:CA:90:EC:91
Authority key identifier: 21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61
Certificate issuer: /CN=218af26f9a36653f4d996719d4a410fe84af4861
Certificate serial: 019747B0FD8EB5421697DC050AEBB4DBFFD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
Manifest number: 0440
Signing time: Sat 07 Jun 2025 00:01:10 +0000
Manifest this update: Sat 07 Jun 2025 00:01:10 +0000
Manifest next update: Sun 08 Jun 2025 00:01:10 +0000
Files and hashes: 1: 8aRFc9FMZuB39L9ezbDQe4rTWqI.roa (hash: d0kPdTmIfua7sOVHFgh6TKa6BfDr4mbqEziPITcO1vw=)
2: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl (hash: fyXJDKE08R3dAFmnpqws/PHPx/3sfLwbbE8ZLAdtMNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:fd:8e:b5:42:16:97:dc:05:0a:eb:b4:db:ff:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218af26f9a36653f4d996719d4a410fe84af4861
Validity
Not Before: Jun 7 00:01:10 2025 GMT
Not After : Jun 8 00:01:10 2025 GMT
Subject: CN=6d3c5660c3f3fc20c8a0210f45e161a9ca90ec91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:a7:1b:1c:c2:e9:c8:37:c8:f6:e6:58:30:
23:d9:77:6e:2d:ca:30:07:89:40:40:08:2b:97:77:
94:e1:20:2c:df:fd:34:73:a0:6f:e4:d1:d9:19:3c:
21:70:0e:94:be:34:43:96:75:82:2a:b7:91:a2:d0:
83:5b:b0:f4:97:56:bf:02:d4:0d:b2:0f:b0:23:ab:
45:9a:52:55:fb:b8:d0:2c:8e:5d:d4:b7:f6:31:70:
9a:1e:82:8a:33:a9:a6:bf:69:29:53:ce:e7:f0:e0:
99:31:aa:e7:1a:5e:7d:b6:0e:e7:78:c1:f4:9b:14:
77:e2:4b:db:0f:7f:d9:59:88:9b:d6:8c:29:cc:74:
da:b7:05:e9:d9:bb:9d:2a:f6:aa:e5:f0:7f:db:a4:
9d:b3:92:94:f5:9b:a5:97:62:20:02:b4:f9:06:80:
6a:32:c5:bb:29:1e:1f:29:a1:4e:10:1c:7b:76:16:
1a:7d:36:5b:11:9d:ac:1a:2c:af:3f:63:db:03:c5:
78:83:d4:83:4f:73:60:38:e4:ac:01:56:17:1b:d2:
8d:0b:0a:0a:43:d3:39:37:fa:1e:18:7e:83:1e:b1:
92:fc:b5:b1:cf:7f:21:b8:0d:6c:1d:95:b6:0f:cb:
41:47:e8:15:c6:7a:86:42:bd:92:90:22:ce:a7:ef:
c7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3C:56:60:C3:F3:FC:20:C8:A0:21:0F:45:E1:61:A9:CA:90:EC:91
X509v3 Authority Key Identifier:
keyid:21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:5a:ec:af:4f:ec:33:6b:ba:c1:3f:8e:34:f1:c1:ee:a2:0f:
07:37:5d:61:03:89:b9:1e:91:90:ed:2a:5e:96:2d:eb:69:b8:
4a:6f:09:97:6e:c9:de:aa:a4:ed:83:92:a6:91:b8:bb:ad:c6:
f2:fb:8e:98:e3:2b:87:24:d6:15:5b:19:d1:49:3f:48:45:b7:
a3:07:62:b9:72:11:ee:77:b0:b5:2d:37:d8:db:7b:5e:e2:a7:
ba:2e:69:64:5c:15:ab:8d:e4:c7:ad:27:d5:fd:4d:41:65:be:
f5:cf:d5:90:86:e6:1a:e7:aa:f4:47:59:1c:ca:c5:24:7b:88:
cc:a0:c0:bb:32:fb:a9:bb:7c:2e:e9:0a:3b:12:c0:4d:16:07:
f2:0a:49:27:d4:32:b8:27:78:0b:f8:bd:e5:c0:10:b8:6e:43:
0b:47:5f:cb:31:f5:ea:41:b5:f6:f7:91:26:cd:80:66:c4:72:
2d:c6:d2:3f:ce:97:76:29:85:55:9d:6c:d1:db:b7:a1:05:37:
1d:c4:a1:27:c9:cd:2f:9a:11:de:0d:6d:d9:12:c8:5d:e7:af:
58:3c:a5:23:17:a6:74:a0:f4:4d:44:09:1a:39:c8:76:1e:4c:
32:f6:80:8b:d1:02:ac:68:4c:aa:b7:52:4e:4c:ae:50:1b:b8:
3f:fb:7c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:15:30 2025 by rpki-client