Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: rpHeFa3hFFWSBcqQTVu5X+Ex6zNeOKE7NybNMSl6VlE=
Subject key identifier: 07:C5:00:A2:81:51:6B:3E:57:0B:3F:72:B3:C3:15:FE:77:A7:77:CA
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 0197B5C492673ED868249E2357A6882D3485
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 0605
Signing time: Sat 28 Jun 2025 09:00:47 +0000
Manifest this update: Sat 28 Jun 2025 09:00:47 +0000
Manifest next update: Sun 29 Jun 2025 09:00:47 +0000
Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: ctuTo0yGw0o0g9cleoMJBTbMsFGyD3eNbwVpqMQd3+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:92:67:3e:d8:68:24:9e:23:57:a6:88:2d:34:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Jun 28 09:00:47 2025 GMT
Not After : Jun 29 09:00:47 2025 GMT
Subject: CN=07c500a281516b3e570b3f72b3c315fe77a777ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0f:cb:eb:84:00:f4:52:cc:1a:95:1f:51:cc:
b6:c1:9d:a1:ca:16:f7:04:fd:0f:a5:70:87:57:0f:
71:22:fa:a3:bf:75:51:4a:e1:37:5c:7d:5e:a5:f8:
5d:77:84:03:87:9b:0a:90:55:df:7a:4b:6e:00:b2:
4a:8d:7a:1a:6a:4f:c0:9e:34:e2:89:74:2b:a9:1d:
d8:6f:35:2a:f1:d6:22:e3:69:09:75:d4:74:f6:4f:
6c:e4:f0:05:b0:25:34:90:c1:37:1c:36:2a:a2:13:
91:db:93:4b:1f:cc:89:81:d8:cb:a9:b8:2e:ee:b0:
f4:a2:de:44:6d:e9:f2:49:a8:42:24:89:ef:2b:19:
88:01:a6:97:2b:77:c5:78:a7:2c:33:7a:80:bf:0a:
76:17:88:17:6e:53:8b:85:67:7a:53:b6:f9:61:c9:
35:6b:2a:ea:23:19:bf:9d:1b:a9:39:da:31:e6:12:
d8:e1:88:d3:e9:17:c1:c4:85:e6:1e:c7:d4:5b:0e:
33:19:a5:ca:32:8a:74:8b:58:5c:8c:19:9e:ab:7c:
19:56:4b:cd:66:07:79:7b:c8:6c:a5:ea:12:54:15:
89:d2:ea:57:8b:1a:5c:7e:77:57:a7:52:32:56:57:
01:7b:04:5c:c0:73:4d:85:4d:58:d7:96:51:21:fc:
91:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C5:00:A2:81:51:6B:3E:57:0B:3F:72:B3:C3:15:FE:77:A7:77:CA
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:03:af:d5:82:54:f3:36:3f:4d:70:8f:2a:d2:70:53:72:46:
5c:fc:b1:c5:20:29:13:d7:5b:0e:bb:88:bd:19:2c:fd:e1:9e:
0f:e3:22:dd:33:ce:4c:35:54:40:e1:f4:f6:73:17:3d:39:49:
be:09:3b:16:b0:e0:be:20:92:62:d6:f5:6e:50:8c:92:d9:47:
c3:b2:a9:d1:bb:0b:d6:77:b0:95:16:a8:cb:2b:34:95:b2:d0:
c3:7e:04:49:dd:4a:30:d0:6c:2a:50:a2:98:6b:79:4b:a9:79:
fc:f1:b0:42:2a:48:3b:fb:e8:21:fe:37:66:45:99:fa:40:29:
92:d9:30:4a:fc:e6:13:ad:c3:99:7f:bd:e6:e2:9d:b3:8a:4b:
70:55:29:ec:f4:1b:8f:18:73:52:77:fd:85:fa:04:31:e7:8f:
15:f4:bc:1c:76:a7:c2:66:01:03:3c:8b:14:1e:14:9a:59:1d:
b9:73:dd:61:17:27:88:6c:b8:fc:f7:5e:13:95:9a:30:fd:5d:
59:7e:6a:66:de:39:b4:1b:b7:f8:fc:1f:73:25:bd:74:98:44:
1a:ea:aa:52:12:fa:a1:9d:89:fc:aa:f5:e1:5d:ff:11:79:28:
35:c1:59:ad:b1:43:2f:18:86:3e:cd:7a:16:a1:ea:c5:34:64:
96:1b:aa:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:13:41 2025 by rpki-client