Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
File: i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft (raw, json)
Hash identifier: A/4ZRfN8Lg7/R+MqzBQVbXx9CG4sqtthO7UjalQuD6U=
Subject key identifier: EC:50:71:E6:78:D0:B4:81:AC:D7:BC:FE:68:5A:E1:2A:02:2A:C1:4B
Authority key identifier: 8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
Certificate issuer: /CN=8bbb538fc4f8f1984100640dd8435766a6206723
Certificate serial: 01974CD73ACAAD120650F440272AAEB3A80E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
Manifest number: 1582
Signing time: Sun 08 Jun 2025 00:01:02 +0000
Manifest this update: Sun 08 Jun 2025 00:01:02 +0000
Manifest next update: Mon 09 Jun 2025 00:01:02 +0000
Files and hashes: 1: F-XmOCCi8zdRGEXsEW8GIj9dotE.roa (hash: aZqtC7YnlJ57aaBe7FRji3vyD3JPHZ6fm+Qh4aIyCFw=)
2: i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl (hash: 8GtK0+VRUrB+h/Rk+WlNsUoks1XwYhUMH2fkWq9yv+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:3a:ca:ad:12:06:50:f4:40:27:2a:ae:b3:a8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbb538fc4f8f1984100640dd8435766a6206723
Validity
Not Before: Jun 8 00:01:02 2025 GMT
Not After : Jun 9 00:01:02 2025 GMT
Subject: CN=ec5071e678d0b481acd7bcfe685ae12a022ac14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6d:0d:36:f5:cb:5a:7d:d1:5b:e4:33:a0:a0:
fd:79:37:72:be:fa:09:2d:25:55:a6:39:5e:30:1f:
c0:a5:0f:c8:34:3d:ac:0e:a4:0f:f9:ad:ef:be:73:
af:28:fd:19:00:f9:04:cc:33:08:fa:af:c3:fd:51:
df:4e:82:ce:da:ff:48:b8:79:a0:57:42:94:c5:95:
82:1f:0a:96:7e:f7:73:b7:db:0d:4d:a6:8b:d5:5d:
fa:ab:aa:62:71:66:0d:80:9d:70:e5:61:97:9d:44:
dc:5d:a0:a1:97:16:33:f2:9c:e3:ee:bb:5d:72:da:
87:99:83:41:e0:be:d3:fe:69:6d:1a:f2:35:07:64:
fe:41:8a:ee:fc:44:e8:cf:41:95:24:db:80:ee:38:
9b:73:e0:7c:b4:3a:a1:f5:f4:c6:28:07:27:26:1c:
26:92:dd:42:99:a8:a3:c0:9b:d5:f4:fb:e5:ba:8b:
eb:5d:e3:e0:e3:5f:17:0c:ec:79:d3:6f:14:f2:0f:
40:9d:e7:03:76:76:2a:da:60:7b:8f:9c:6d:5c:24:
85:14:bf:85:f2:27:e9:32:06:45:83:4e:13:21:5f:
61:7f:74:f9:d2:73:b1:2d:02:0e:24:e3:be:39:82:
56:e4:96:c6:e1:3e:3c:7f:5f:1b:51:6c:1e:c9:f6:
ca:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:50:71:E6:78:D0:B4:81:AC:D7:BC:FE:68:5A:E1:2A:02:2A:C1:4B
X509v3 Authority Key Identifier:
keyid:8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:73:85:6f:ef:41:4e:1f:46:f0:0e:cb:5b:f3:4a:87:b0:b3:
1c:92:42:1e:cb:e2:6e:3d:fb:09:2f:b9:0e:78:44:2b:f5:a5:
5a:9d:5e:f9:c6:e8:93:dd:ae:0e:5d:1d:3c:20:ef:07:10:39:
a6:f8:4e:fd:d9:de:86:9b:89:49:85:a0:33:53:84:ab:df:ef:
f6:42:e2:81:78:7e:0e:e4:e8:5a:b7:a9:6d:56:1d:46:55:0e:
ba:0e:87:bc:fc:a1:88:bd:61:aa:d0:26:43:34:4b:41:c3:79:
5d:c2:b4:e1:e1:d6:7a:f1:29:1a:82:73:3f:a2:aa:be:69:aa:
26:1a:a5:7b:f5:07:be:d1:20:60:29:2a:02:4a:44:76:88:40:
93:e3:7a:25:f5:9a:dc:ea:76:dd:f2:7a:3b:9a:9c:25:0e:42:
c6:46:78:49:d4:48:05:ef:0d:91:5b:dc:52:ca:57:d5:0f:d9:
8d:92:bf:23:83:5a:08:e2:7b:e1:9c:31:42:e5:1b:d4:b1:60:
60:bf:36:d0:40:90:b9:e0:bd:e2:b2:0b:b7:30:3b:16:77:3b:
ba:88:92:ca:09:b6:4c:22:dd:a0:47:e1:70:9d:98:f3:5d:4c:
87:b3:d9:bc:83:aa:bd:f8:77:b0:16:76:94:5a:aa:d0:52:ac:
da:ee:47:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:36:18 2025 by rpki-client