Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
File: IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft (raw, json)
Hash identifier: 8Rpa+e9uXG8wK1ISPKqSzl9N7FJpa8Lm+dtIz/1iy/o=
Subject key identifier: 0B:8E:B5:A3:4A:C2:FE:85:CE:23:CC:4E:83:F0:43:74:74:AC:2B:D0
Authority key identifier: 22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
Certificate issuer: /CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Certificate serial: 01974A439E8970956AF795AFA739E52E4D02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
Manifest number: 0BF9
Signing time: Sat 07 Jun 2025 12:00:34 +0000
Manifest this update: Sat 07 Jun 2025 12:00:34 +0000
Manifest next update: Sun 08 Jun 2025 12:00:34 +0000
Files and hashes: 1: IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl (hash: 8nLlaXtNb+uBZEXf1bQrhvjxGM3L+pEoB53Qccidfs0=)
2: gJhF5evxe8g-iDe3hBXACq-nKPk.roa (hash: qM5+n5uw27ndltKhnl7N0lO0fW10CmbET7TyhvcxHok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:9e:89:70:95:6a:f7:95:af:a7:39:e5:2e:4d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Validity
Not Before: Jun 7 12:00:34 2025 GMT
Not After : Jun 8 12:00:34 2025 GMT
Subject: CN=0b8eb5a34ac2fe85ce23cc4e83f0437474ac2bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f7:4b:55:6f:a6:79:ca:51:3c:4b:f6:c4:48:
2f:4b:47:1f:36:aa:fb:3b:0d:bc:93:5a:0f:f7:66:
9e:36:b5:01:49:de:ed:d4:6d:dc:77:0e:ba:d6:f6:
84:fc:67:49:4f:c0:b7:7a:bd:ad:a1:98:51:ee:29:
32:07:99:52:a7:2b:1d:0e:86:8e:d5:52:02:4a:53:
40:a8:4e:04:2a:a1:51:3b:a2:57:31:9b:e9:1e:ef:
e3:68:39:64:9b:10:bf:c2:9c:71:80:b0:c9:d7:59:
9c:0c:14:f3:dc:9b:80:8d:95:9f:d9:6c:a3:34:46:
f3:a6:6e:c9:e8:cd:77:ab:23:07:11:02:a5:bc:66:
44:be:cd:88:d0:19:2c:d2:96:72:1b:03:38:75:11:
75:8c:e7:9c:51:45:d6:0b:e8:8f:dd:6a:75:c6:5c:
6d:19:3b:bb:e8:f4:6f:dd:66:86:bd:0b:f1:97:e8:
e9:b5:8b:1f:09:1b:5d:9b:2d:5b:84:b5:cb:72:4e:
04:58:f2:27:66:bc:31:7c:dd:73:96:fc:d1:8f:30:
5f:bb:29:fd:4a:e5:74:86:fd:b5:7d:7d:2f:9d:c5:
aa:3b:26:07:35:12:cb:c1:d7:0e:5d:d6:e0:86:f8:
e0:68:9c:df:9a:55:b5:92:81:0e:8c:c6:17:3a:ac:
98:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:8E:B5:A3:4A:C2:FE:85:CE:23:CC:4E:83:F0:43:74:74:AC:2B:D0
X509v3 Authority Key Identifier:
keyid:22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:77:df:c4:27:ff:8b:2b:61:d6:b5:82:9d:73:a5:8e:b1:38:
82:d6:a9:2d:1d:40:ef:70:04:17:8a:8f:01:78:3d:3c:05:c9:
32:15:be:c8:f1:16:c3:f4:01:f4:92:f5:20:ce:5c:2b:00:cb:
b0:21:e2:04:80:84:36:04:f4:8a:8e:4d:6b:a1:e5:41:a7:64:
68:da:ff:16:6d:dc:08:4d:62:b9:ab:a5:2e:46:03:0d:30:83:
37:a9:e4:c2:bb:b9:a2:c4:85:67:6b:ec:9c:de:75:61:cf:f7:
1d:02:31:a0:d6:96:5f:0e:56:b0:ad:29:ca:29:91:4b:3c:51:
4e:b2:58:cb:8f:f7:d6:e6:87:17:cf:2f:1f:a8:14:33:39:28:
d3:f2:b1:b3:f7:e0:bc:e9:59:20:26:77:25:e9:04:a9:75:cb:
42:af:7d:be:c4:aa:18:e2:3a:1e:ff:89:d0:24:ad:eb:0a:a7:
71:fe:fa:3d:d3:56:84:0f:78:c3:50:a0:b5:fe:a8:0b:c5:36:
af:39:71:20:dd:5c:bb:6a:c6:d9:74:23:97:82:15:60:35:73:
98:70:d1:72:c2:41:37:28:c7:60:f1:c5:e4:7a:98:93:a9:a0:
20:16:02:3c:74:55:d0:35:7a:61:3f:14:14:54:96:84:7c:37:
2f:8b:80:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:59:46 2025 by rpki-client