Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: PBvVhlFUqp5PtLjTxo3yUUuYaU1FeUCl0PkzxUYxxWM=
Subject key identifier: 22:E6:17:88:44:6A:98:68:43:E7:AE:9D:16:E1:7E:58:A8:6C:75:AD
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 0197B77C5B3D01B7AC583377AB8B927AE8EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 12D6
Signing time: Sat 28 Jun 2025 17:01:09 +0000
Manifest this update: Sat 28 Jun 2025 17:01:09 +0000
Manifest next update: Sun 29 Jun 2025 17:01:09 +0000
Files and hashes: 1: OIDmEPbDXYESb6L8W110fitW4aA.roa (hash: AIH3VvHzWUC8AtgPyCBt/ld6YdiGtY4TDL+tLd/3C+w=)
2: OuQJP3rTcu0if4kJ5A5ZWqxKYpo.roa (hash: UN46ctiu4ND9IXGCd4EhP/dQ+ESw5QeLedCQ9yxaLnU=)
3: WV7QPmFglb32ubsYCfgK2rSXhGk.roa (hash: 7jclXGuRVqisqCezIaon+r4NXFS6nrK/O3nscYXGo0k=)
4: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=)
5: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: 78tSOrzn+7r2wxRY8fWJSmr7MfdImkg0QcZfqhCzLhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:5b:3d:01:b7:ac:58:33:77:ab:8b:92:7a:e8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Jun 28 17:01:09 2025 GMT
Not After : Jun 29 17:01:09 2025 GMT
Subject: CN=22e61788446a986843e7ae9d16e17e58a86c75ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ad:7f:0e:31:7b:fc:3b:e2:e7:94:51:15:33:
3d:f0:16:a3:71:26:43:86:b6:c6:06:15:0a:01:ba:
b0:e1:3d:8c:f3:c2:d5:94:1b:32:4c:6c:6a:9a:2f:
e9:83:7d:22:99:fa:18:0a:a2:71:08:bd:d8:12:c6:
a8:87:d4:d6:4c:a4:0b:cb:a5:f9:c4:20:8b:17:59:
14:c7:e0:97:65:6a:d3:75:de:7e:da:55:4a:6b:4c:
de:6d:1f:42:07:ae:ba:bc:96:6f:3b:6b:f5:7c:34:
5a:40:b1:c9:eb:2e:f9:8b:c1:6d:c8:dd:a9:37:23:
1d:50:d7:68:25:10:8d:fa:a7:1e:b2:28:b4:bd:73:
80:62:24:5f:ba:06:fe:1e:73:8d:b0:2f:14:19:2c:
6c:a9:88:74:bb:98:e4:0f:95:11:45:1a:dd:99:3b:
ea:cc:68:23:ca:cc:2f:c8:f0:40:aa:b4:4a:f1:93:
6d:a1:55:35:4f:f3:86:9d:dd:0d:ef:9a:2a:de:42:
c5:92:1f:0a:54:43:48:8e:aa:e6:63:dd:d8:f1:94:
e3:dc:48:62:92:ec:e1:ab:01:4b:3f:b6:2e:25:7e:
57:3c:10:fd:1c:e4:02:fe:66:21:81:09:bc:9e:c4:
c7:7f:f7:77:a6:ca:f0:ee:ba:29:5e:27:24:6b:01:
5f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E6:17:88:44:6A:98:68:43:E7:AE:9D:16:E1:7E:58:A8:6C:75:AD
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:59:1f:c1:a0:ea:4b:07:b7:d6:8a:62:79:ba:56:91:0e:f1:
c9:8c:d0:16:18:fd:76:13:a9:4e:eb:2c:0a:5c:25:fc:83:f7:
67:1f:12:cb:82:9a:b9:fa:07:b3:63:e4:23:74:bb:f5:e5:df:
e2:5e:2b:0e:e7:9d:e5:29:8a:db:9e:fe:52:fa:05:5e:fd:db:
2b:15:6c:bc:b4:f0:af:6e:8d:1e:e2:df:8b:49:bc:1b:39:54:
d2:a5:0b:9e:79:bd:d4:03:2d:3c:10:7d:cc:39:bf:0f:bd:3a:
f6:17:19:fa:aa:68:a2:17:85:c0:11:10:69:32:1b:7b:eb:e3:
7c:3f:65:78:46:f1:45:66:af:2e:61:9f:86:94:38:28:7e:7c:
84:d1:65:db:aa:92:21:69:a7:c8:93:8c:f4:fa:29:5b:9f:3c:
c2:28:6c:6f:85:86:c6:4a:3d:41:f1:75:81:f3:bb:c7:f1:bb:
03:16:f2:73:1e:e4:21:da:22:c1:87:44:8f:15:11:44:25:13:
72:c5:bc:82:90:1e:be:44:a1:39:7d:c8:1a:77:fa:ae:80:d7:
f5:f7:06:65:ec:e6:8c:67:57:3b:65:0d:97:00:ea:6d:db:53:
b0:b1:81:d9:ef:a6:e6:e7:2d:66:d6:48:bc:6f:52:d6:17:fe:
11:d8:8d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:49 2025 by rpki-client