Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json)
Hash identifier: i+Akm9G9H5P7N2y+Dh/tZtzPL4FYRVTKETV9ZSXNngs=
Subject key identifier: 6D:09:BE:B7:D2:14:4D:27:A4:42:11:7E:64:83:CD:E9:BE:F3:9E:1E
Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Certificate serial: 01974AB17FBC91858F0BCDBAB2B579764C6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 14:00:35 +0000
Manifest this update: Sat 07 Jun 2025 14:00:35 +0000
Manifest next update: Sun 08 Jun 2025 14:00:35 +0000
Files and hashes: 1: Fl6pOlPLU-YJzCc-HkB3wwedcd0.roa (hash: jlDQ+VkQoTEiq8ZQ7EeJUmtKUn70x3pUuA4q7simdPM=)
2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: cR/zAXsjIuP/ZVsA6q6qhiHHvksaFoLdK9tq9mkDsvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:7f:bc:91:85:8f:0b:cd:ba:b2:b5:79:76:4c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Validity
Not Before: Jun 7 14:00:35 2025 GMT
Not After : Jun 8 14:00:35 2025 GMT
Subject: CN=6d09beb7d2144d27a442117e6483cde9bef39e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b4:5c:c3:3c:07:1b:17:bc:84:4d:ff:ab:81:
ee:eb:d9:38:d1:e8:20:4d:f0:44:86:8c:1f:17:11:
05:9f:ff:26:1e:25:1e:18:7d:e1:0e:46:47:a7:56:
da:ad:42:8c:94:78:5d:98:ac:75:5f:be:45:6b:5c:
04:6f:6d:ee:83:b3:7e:20:93:0b:a9:0b:20:0d:84:
03:70:05:c7:0b:d0:68:8c:66:63:03:15:3e:fd:6f:
6b:5d:94:c9:83:fd:01:a9:fc:40:73:6c:56:45:e8:
97:db:b6:f0:09:df:5d:94:c0:83:7c:72:14:b0:99:
14:39:9f:08:22:20:3a:9d:21:12:84:44:dc:3b:58:
33:24:df:e9:52:8a:26:0b:5e:94:26:e6:94:cc:ab:
9a:5d:8e:24:4b:ce:b9:88:a4:d5:98:de:fa:62:6c:
2c:09:3a:56:6d:2f:df:a4:3f:7f:3a:4c:8e:4a:e3:
be:ac:e9:d2:25:14:e0:d7:a0:39:5d:c5:7b:f3:e5:
ad:58:bf:aa:0c:ef:90:b9:a6:0d:69:ad:d0:62:24:
f1:b4:17:a4:81:7a:d1:ed:46:55:72:73:76:4d:f8:
12:d9:9a:11:8a:4e:0d:cf:34:bc:37:a4:15:7e:c9:
a8:99:e9:c6:6b:d7:80:3e:44:13:f1:ba:7b:2c:b1:
0f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:09:BE:B7:D2:14:4D:27:A4:42:11:7E:64:83:CD:E9:BE:F3:9E:1E
X509v3 Authority Key Identifier:
keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:cc:67:30:b7:8c:8f:8f:3f:21:31:b6:57:15:39:d0:48:80:
05:3f:1e:8a:06:80:51:98:ed:29:a8:1c:cf:12:5b:73:cd:14:
f6:db:f5:b5:14:c7:d0:6e:42:77:a5:3b:0c:67:ae:6c:62:7e:
69:b0:fd:0f:5e:0f:84:ba:8e:6c:ce:23:8f:87:81:26:d3:1b:
14:df:13:b8:8a:ab:da:0a:87:dc:d3:54:6d:74:af:30:80:d8:
40:3c:9a:73:36:26:a5:15:98:f6:b1:d3:d7:78:8d:d9:b2:19:
05:bb:b7:fc:0d:62:14:c5:72:74:90:48:97:e8:56:99:ff:e2:
42:1e:73:48:c1:8d:68:2b:07:9b:2e:f6:06:ba:2d:fd:72:48:
55:80:6f:6d:a0:43:c7:f0:93:ad:83:92:95:41:44:75:56:ae:
a0:2a:b0:c7:06:88:b5:db:63:ce:0b:40:91:c8:73:17:90:6e:
d7:cb:cf:60:47:93:56:26:b6:54:e3:b5:83:48:cd:b3:d6:8c:
e2:0d:e6:6e:9f:83:4a:b1:02:63:b5:37:c4:bc:de:a0:c0:da:
49:f2:a2:20:03:cc:55:53:0f:ee:1b:8d:89:57:13:22:6d:6a:
b0:6c:7b:20:41:3b:e0:11:5d:67:7e:4d:a8:46:7b:99:09:9b:
b9:7b:7a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:28:05 2025 by rpki-client