Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: VqBDKZ7r1JMde0LzEcKUxPA3H26lMAtms5XWz7gv+is=
Subject key identifier: BA:99:AB:8E:73:7B:AB:FE:B5:4A:23:9B:0E:BF:57:A4:49:17:B0:15
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 0197B6D732AD4276C56F2C8B8528FF983604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0F1E
Signing time: Sat 28 Jun 2025 14:00:45 +0000
Manifest this update: Sat 28 Jun 2025 14:00:45 +0000
Manifest next update: Sun 29 Jun 2025 14:00:45 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: qjegtDryiLYVwtd5caK0gBDZwZOptIjmS1UYa8DrSgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:32:ad:42:76:c5:6f:2c:8b:85:28:ff:98:36:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Jun 28 14:00:45 2025 GMT
Not After : Jun 29 14:00:45 2025 GMT
Subject: CN=ba99ab8e737babfeb54a239b0ebf57a44917b015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:b9:fa:ef:ea:a6:ea:01:c8:a4:9c:87:2c:
86:0a:5c:dc:3a:1b:b6:76:f5:81:4c:d7:ca:dc:72:
0e:1c:db:38:20:d6:8c:9c:9a:19:ea:6e:ba:a8:0c:
54:71:ea:4f:50:f9:be:9e:df:ac:b2:3a:ef:89:80:
0b:af:2d:02:2b:ef:02:d1:3e:d7:3a:60:fe:cd:cd:
33:bb:c5:06:f0:4a:37:58:92:55:6d:ce:2c:1c:a3:
f4:37:0b:38:fc:24:ac:5b:40:28:6f:9d:57:dc:ab:
9b:42:b5:75:c5:c2:1c:aa:e6:cd:b7:ed:1f:c6:93:
82:62:57:03:9c:c2:32:0d:a0:46:0c:58:9a:e3:ee:
1d:dd:69:58:fd:f7:bb:9b:5d:0e:6e:90:a1:04:60:
34:46:aa:0a:0e:1f:62:1b:62:f2:c1:8d:fa:6a:7c:
ea:34:e7:82:8b:ec:ec:05:3d:82:4d:b1:d8:0e:29:
44:e6:e8:c7:5c:ba:25:78:27:f8:b5:bd:a0:cd:51:
84:07:ce:32:b5:b8:42:68:46:50:49:85:a7:05:43:
7b:ba:22:79:69:f5:16:58:af:82:b4:fd:e9:de:c1:
e2:78:8a:22:43:2f:8c:3f:21:43:39:0e:d1:14:29:
31:d7:d5:4d:d0:3e:2e:f3:9d:08:80:ff:91:3b:25:
0a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:99:AB:8E:73:7B:AB:FE:B5:4A:23:9B:0E:BF:57:A4:49:17:B0:15
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:ca:6f:84:28:cf:7a:6d:66:f0:62:e5:26:30:27:8f:b0:69:
43:a6:9a:7a:19:df:af:b8:e8:1e:0b:38:00:41:40:04:23:e1:
0b:53:f2:3a:6c:73:10:f0:04:34:01:5e:b3:ea:89:4e:10:04:
0b:3a:ce:7f:75:09:9f:89:46:77:68:34:10:ed:a0:99:99:36:
b7:01:0d:31:d9:3f:2d:b0:9c:4c:b3:d2:ea:b0:13:e0:91:8a:
12:09:5a:49:9d:73:e1:98:4f:b3:9a:4a:93:75:ba:a1:85:87:
10:e2:86:e9:8b:e9:80:b6:82:92:7a:db:8e:19:45:6d:ac:75:
ca:21:31:a3:f8:b7:74:e8:9c:56:4c:da:e4:c2:a9:9b:be:00:
99:71:01:42:08:04:dc:89:a8:fe:7f:aa:04:42:22:c0:54:cf:
df:cd:bc:05:df:a9:25:1c:04:7e:64:5d:6b:9f:7f:27:93:a8:
93:f9:72:59:d2:de:9e:86:32:e8:86:b8:8c:38:0a:a3:65:86:
95:60:c8:dd:23:38:a8:20:93:64:80:88:62:2d:4c:c3:10:dc:
e3:c8:4e:4e:22:22:85:42:40:24:dd:6f:79:76:c4:20:ad:6a:
6d:36:11:e9:75:2e:4f:4d:1a:84:64:53:d1:46:7d:b0:8a:55:
03:61:8e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:39:22 2025 by rpki-client