Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
File: IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft (raw, json)
Hash identifier: TdCikqBq+vAYuwd3Ik2x5NdBq22rXNGiA2LdoEo1i4Y=
Subject key identifier: 6E:92:C8:E3:D5:0A:BA:EA:BC:08:BE:B1:F9:AE:9A:79:CD:24:5A:48
Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Certificate serial: 0197B7B357B396679DC2834C44427805E538
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
Manifest number: 139C
Signing time: Sat 28 Jun 2025 18:01:13 +0000
Manifest this update: Sat 28 Jun 2025 18:01:13 +0000
Manifest next update: Sun 29 Jun 2025 18:01:13 +0000
Files and hashes: 1: 6LkNfXDGOHhf8gBsIaO1gA2Q-VM.roa (hash: NThSJkZPm+DD4/mAcNhw9miEjuzZudxLC0TeMXxTy6I=)
2: IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl (hash: rYIDWs1cmNo3dv/q7vQxdyfub7LNKUir6YqcZz9XzJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:57:b3:96:67:9d:c2:83:4c:44:42:78:05:e5:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Validity
Not Before: Jun 28 18:01:13 2025 GMT
Not After : Jun 29 18:01:13 2025 GMT
Subject: CN=6e92c8e3d50abaeabc08beb1f9ae9a79cd245a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:91:df:52:81:0f:95:bc:38:80:d5:37:6d:fc:
3c:cc:d8:f2:b7:e9:84:4a:1c:65:8f:60:96:48:75:
18:77:13:08:0d:c6:f2:ee:9a:5e:f5:6b:be:80:fd:
d6:aa:83:dc:db:06:02:73:a9:fd:e1:48:1a:94:51:
b0:5b:8b:d9:5a:1e:02:91:18:51:67:65:95:73:3a:
fc:e1:71:4e:4b:22:71:fd:dd:42:7e:6a:e6:a6:19:
86:ce:f6:96:07:4b:a9:0d:34:eb:eb:ef:bb:96:03:
f5:3a:06:7d:fe:22:58:03:3b:a0:75:11:47:2d:7b:
3a:57:59:97:00:a0:d3:ec:d0:48:4d:8b:90:05:fa:
78:03:a4:c3:f7:2e:13:38:6d:d9:c1:bb:e4:e4:d2:
b1:d0:a7:03:c0:4a:49:91:f2:70:36:64:0a:f9:c9:
34:20:c9:29:bb:c6:35:f0:a4:d9:48:7b:62:d5:4a:
de:66:e6:97:e1:d3:64:4c:77:47:e0:a3:9e:23:93:
2d:d0:07:6e:2c:fb:26:8a:9e:10:0f:66:d3:7d:e8:
67:c5:b3:79:62:9d:07:35:38:49:e6:a8:92:c7:16:
e6:fd:55:c2:d5:aa:fa:16:cd:83:dc:2c:dc:62:2f:
14:3c:0e:4c:7b:d9:ed:df:6e:96:82:8e:9d:37:0c:
c3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:92:C8:E3:D5:0A:BA:EA:BC:08:BE:B1:F9:AE:9A:79:CD:24:5A:48
X509v3 Authority Key Identifier:
keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:72:f6:ef:74:21:c9:53:71:fd:8c:7f:56:24:28:b4:6a:e1:
a3:20:7e:a0:80:3a:75:90:56:09:41:dc:c1:5c:cd:87:4b:5e:
34:e8:0b:87:86:48:c7:42:b3:c2:1d:79:43:d9:38:9d:ec:51:
9a:e5:cb:c7:d5:29:a4:d0:87:8b:62:63:b2:b8:17:c4:d0:80:
7a:62:07:34:e7:0f:d7:5c:26:7f:59:b0:0d:d8:85:38:eb:c8:
d0:b5:1f:26:64:da:b5:5d:6b:b2:86:8a:ed:33:37:91:f8:7a:
cc:dc:90:89:7a:bd:dd:a3:c2:4b:27:0f:ec:2a:04:00:90:3e:
16:fd:df:1b:c9:25:77:55:1f:f1:39:4a:00:7d:e0:15:a5:9d:
a7:7f:f4:1e:a0:e6:bc:71:b7:35:4e:33:73:65:30:20:a6:b1:
e9:aa:9a:74:fa:c7:20:12:dc:b3:92:8d:fd:af:66:64:d2:7c:
ec:5a:55:62:27:b5:5a:93:20:59:89:db:af:40:96:e9:61:7b:
78:36:78:c3:a1:3a:31:60:63:ab:80:01:fb:77:4a:d4:ef:95:
dc:9f:d9:dd:b7:85:26:0b:e3:0c:46:95:32:9c:23:dc:47:63:
72:e1:80:97:3c:24:41:c3:af:3b:5b:36:b4:1e:90:f7:b0:fa:
3f:5b:e2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:44 2025 by rpki-client