Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: Oh/F37DrY8G1gine3Onc2YYYPO71nHwnKTXihxpgDHs=
Subject key identifier: BA:8C:74:1A:64:8E:C6:97:05:8F:85:23:F1:10:F6:DD:15:96:CA:EC
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 0197B8C5D0A9DB012A64FFA1CF768738DAF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 1043
Signing time: Sat 28 Jun 2025 23:01:01 +0000
Manifest this update: Sat 28 Jun 2025 23:01:01 +0000
Manifest next update: Sun 29 Jun 2025 23:01:01 +0000
Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: Zl7DUxPNRnhXISMd2l5bbP9qCuQpKsLZ2wqDf00hSB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:d0:a9:db:01:2a:64:ff:a1:cf:76:87:38:da:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Jun 28 23:01:01 2025 GMT
Not After : Jun 29 23:01:01 2025 GMT
Subject: CN=ba8c741a648ec697058f8523f110f6dd1596caec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:f0:e0:bf:e9:00:11:73:eb:57:25:66:af:
33:46:01:2d:2d:f6:79:b9:c7:04:c8:e3:16:d4:b9:
cb:b7:ba:ec:bb:ab:7f:3a:c6:a2:15:a0:ac:e1:c9:
b3:e4:4d:70:5b:59:39:58:e7:49:62:45:ac:8a:90:
a7:c9:2f:09:d2:96:4b:eb:00:04:d7:26:a4:37:ce:
6c:8b:36:be:aa:68:2d:73:5f:ec:1f:64:21:a3:eb:
03:d3:52:e3:66:ea:4e:41:5f:1c:bc:54:d1:45:47:
0a:8c:2f:5b:b0:33:40:ee:30:3f:db:2e:e5:cc:8e:
cf:72:8f:3f:88:d9:4b:c9:2f:33:7b:a5:7d:4f:02:
e4:1f:a6:66:8c:33:0d:ec:f5:7a:fa:0e:89:83:cb:
32:99:20:45:e5:82:da:6b:b2:b3:b4:36:54:42:74:
f9:c7:f2:09:51:10:a2:57:f9:9e:7d:3f:24:05:6d:
d6:7a:15:88:e9:c9:e8:10:4f:2a:53:f8:87:3d:e2:
bc:bd:3d:eb:eb:21:d5:0a:c7:a9:c7:70:aa:95:5b:
a1:84:b4:ee:bf:88:44:7b:ac:11:88:aa:3f:93:cf:
7f:7a:ff:c6:fb:82:1b:cd:c1:2a:de:5c:37:75:ca:
29:1d:64:81:07:08:78:7a:a1:94:15:f0:98:e8:86:
42:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:8C:74:1A:64:8E:C6:97:05:8F:85:23:F1:10:F6:DD:15:96:CA:EC
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:29:68:a9:11:e3:41:87:d0:72:1f:27:52:55:02:17:53:37:
dc:0a:86:8f:59:94:f2:c7:0e:32:c0:fe:ee:2a:db:93:e6:f7:
33:91:03:4d:01:84:8d:50:1a:ad:c9:40:a3:a6:5c:59:22:87:
6b:8e:04:a5:55:f5:ad:6a:8d:64:7e:4d:62:28:f2:68:a9:c5:
a4:36:36:16:4f:0c:90:be:52:11:af:89:46:aa:f9:88:e8:55:
e2:a5:54:45:96:3b:9e:c4:dc:11:11:ab:f8:cd:e9:a1:7c:d4:
e7:16:36:57:15:be:12:6e:98:1d:de:1a:fd:28:00:01:5b:79:
fe:bf:ec:42:62:2e:19:91:0a:df:a9:4e:48:3e:80:be:ca:a6:
59:6a:57:b3:5d:54:54:36:64:50:2a:06:f5:3a:81:32:cb:f4:
bd:32:69:dc:8e:a4:c7:c3:a1:81:ae:2f:25:cd:5e:e3:a5:54:
d0:b9:9a:cd:b8:2e:18:81:ba:55:63:4f:b2:cf:c6:0f:34:56:
d4:a9:f5:d4:21:36:a0:87:93:b6:ef:d7:2f:5d:4d:91:ff:5c:
fd:6b:4a:44:cc:7a:72:8c:e0:95:a5:be:86:4f:04:3a:2e:05:
95:b8:d5:4f:a5:0b:4f:13:6f:c8:b4:72:fc:ff:69:ed:ee:98:
0f:6a:7d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:37:13 2025 by rpki-client