Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: fbBQNv1A0M9upf6wou7dsc4De4sPd/TK7Azjv5Qh/Ek=
Subject key identifier: 13:A1:B9:EB:83:60:B1:7B:23:B1:09:8B:EA:96:53:92:3D:0D:06:56
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 0197B74543F90D8119793C524A0F8DFAB72C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 099D
Signing time: Sat 28 Jun 2025 16:00:59 +0000
Manifest this update: Sat 28 Jun 2025 16:00:59 +0000
Manifest next update: Sun 29 Jun 2025 16:00:59 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: cPYz6eQR7yMmPK6For2aOkqGtukT7aVSknjXYWYWZ1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:43:f9:0d:81:19:79:3c:52:4a:0f:8d:fa:b7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jun 28 16:00:59 2025 GMT
Not After : Jun 29 16:00:59 2025 GMT
Subject: CN=13a1b9eb8360b17b23b1098bea9653923d0d0656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0e:ce:60:8c:45:9f:a7:0d:c2:71:f8:21:38:
19:a5:cc:aa:a1:71:7f:9d:b2:c9:e8:72:eb:99:11:
c2:b2:1e:17:e9:31:6c:05:53:a7:8c:df:13:51:d4:
5d:1f:18:c1:a2:74:e3:dd:25:c2:57:93:2a:26:f5:
6d:2f:ef:47:c7:a7:b0:37:30:47:32:63:92:08:30:
05:ab:88:5f:45:c0:eb:ec:34:ff:e2:2f:bd:2a:61:
bb:75:5d:ef:6f:11:ac:55:83:c2:c5:a6:5d:cd:49:
0e:ba:4a:1d:0d:78:f1:e8:1c:72:20:ce:6b:99:ab:
1c:f1:5c:ce:ff:22:7d:fb:d1:da:a6:dc:a6:e8:a9:
9b:64:cb:ba:c5:80:d0:b2:3c:24:0f:2a:2d:f0:1c:
79:a7:06:dd:aa:a5:b3:74:96:8f:10:e3:83:47:35:
f3:7f:b0:60:3f:30:bf:a4:e6:93:5f:af:ad:58:26:
6c:03:47:0a:84:02:34:1e:95:6d:dc:5b:f8:c9:a1:
52:aa:09:b7:dd:1c:aa:60:df:14:8d:99:ba:58:51:
12:09:83:08:ff:c8:ff:d9:3e:eb:be:47:0b:6c:4c:
27:34:08:4d:e2:60:e0:58:2b:87:3c:55:a2:11:7e:
fb:e6:de:f0:87:e6:01:7c:2f:03:d3:0d:b8:44:df:
48:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A1:B9:EB:83:60:B1:7B:23:B1:09:8B:EA:96:53:92:3D:0D:06:56
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:3f:f9:f0:08:fb:29:f8:72:36:b8:50:67:0e:47:45:6f:2f:
fc:74:ef:69:26:4f:39:84:ce:09:b7:fa:3a:b2:77:e0:4b:06:
4b:21:d2:ca:5f:d7:e5:34:ab:f3:75:c4:1c:d6:12:de:48:84:
67:dd:e9:50:9c:7c:84:72:d3:36:e2:1e:a4:23:a0:04:98:13:
f4:27:7a:e4:99:af:95:30:37:d8:1e:11:15:db:73:3a:b1:15:
9e:8e:57:1e:7e:d0:ae:61:0b:49:5c:b0:ba:fe:6a:18:8f:28:
84:d8:e5:dd:2f:9d:0a:29:08:66:59:30:71:4a:2e:47:76:1b:
5f:94:8b:89:58:c9:86:b0:d0:a4:30:7a:d9:44:5b:26:91:43:
0d:c4:a7:ac:81:af:ed:7b:44:fd:6b:cd:38:dd:62:4a:c8:ae:
b3:1d:5b:4e:dc:f1:42:ed:f1:5f:29:99:c3:aa:4f:c0:24:24:
6c:be:94:c0:7b:e0:56:f0:6a:4f:4f:24:07:ec:bc:78:01:fe:
84:d0:ad:0d:9f:78:46:38:44:e9:d4:b6:d7:51:5c:d0:ea:67:
f0:68:e6:b7:58:27:fc:d8:d1:09:86:c5:a9:51:56:f2:d6:28:
9b:eb:bf:f7:e8:94:35:43:f9:8d:4a:b9:82:1d:a3:c0:b2:98:
91:6d:81:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:08:36 2025 by rpki-client