Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
File: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft (raw, json)
Hash identifier: R7k7eHWNf4STk0bBqmFZHzadzTtWGj1t6CoM/1BySKo=
Subject key identifier: F3:FE:0F:27:99:6C:28:E4:65:4D:B5:F8:91:96:63:60:E8:03:1F:AE
Authority key identifier: 89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
Certificate issuer: /CN=89af8769339703da3b0cb5e831023d3bf63f022e
Certificate serial: 0197B96A666C47E7414C794B4745B842C1C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
Manifest number: 0E60
Signing time: Sun 29 Jun 2025 02:00:47 +0000
Manifest this update: Sun 29 Jun 2025 02:00:47 +0000
Manifest next update: Mon 30 Jun 2025 02:00:47 +0000
Files and hashes: 1: JBBfWvBvIPbMFEPW3wW2A3eZfMw.roa (hash: HPVfysoAPIIkBoYBVqV/VP2S0bfAf3Hk6zV6kpgHup8=)
2: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl (hash: 5R650PTXMGTLZss9lf7fD0p20vSXS0vKMrDDm08+5U8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:6a:66:6c:47:e7:41:4c:79:4b:47:45:b8:42:c1:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89af8769339703da3b0cb5e831023d3bf63f022e
Validity
Not Before: Jun 29 02:00:47 2025 GMT
Not After : Jun 30 02:00:47 2025 GMT
Subject: CN=f3fe0f27996c28e4654db5f891966360e8031fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:25:de:b9:ce:37:02:0b:32:73:9a:8d:17:24:
63:70:c0:a6:49:5c:ee:7c:10:99:fa:51:3a:f6:2d:
55:a4:e3:be:86:08:8c:2c:e5:26:5f:c3:78:d2:28:
91:23:b3:03:ed:5c:b4:ae:b1:95:33:92:e0:bf:35:
f6:2b:98:bf:dc:3f:db:ad:f8:3d:9d:c4:80:e9:84:
87:6e:3b:bb:cd:d6:2f:7d:17:6d:2e:55:a0:3b:74:
b7:8e:37:b6:b1:56:d9:00:55:a1:39:f6:36:42:7d:
3b:04:d8:b1:f9:a8:74:8f:3c:2d:c9:1b:82:41:1e:
ec:72:c5:3f:7f:3b:8b:c3:11:31:dc:ef:13:d6:68:
63:43:dd:65:c3:5c:ab:98:80:41:3f:cc:39:cb:8e:
32:e6:4a:d4:b4:2c:76:15:46:20:d6:bd:c9:33:c0:
dc:5c:e6:76:3c:d6:91:1b:d6:c7:88:75:72:0b:7d:
f5:a3:b7:23:0f:27:ab:15:73:b7:c9:b3:7d:d3:bb:
ae:c9:a5:1e:c0:17:e0:bf:da:d2:51:8b:96:71:18:
9c:d9:41:39:cd:d5:b4:3b:53:a5:5e:b6:59:71:ee:
74:27:85:b2:55:b6:6d:b5:59:f1:29:63:47:38:cb:
a6:e1:bf:dc:b9:66:65:41:16:df:3b:47:fc:36:58:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FE:0F:27:99:6C:28:E4:65:4D:B5:F8:91:96:63:60:E8:03:1F:AE
X509v3 Authority Key Identifier:
keyid:89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:59:b1:d3:76:b5:b1:7a:03:5c:70:e8:f5:84:79:64:dd:8a:
73:d5:d8:6e:5e:4d:b8:aa:8f:76:26:08:d3:8d:a0:74:23:94:
32:84:95:1d:01:31:01:51:bb:2f:69:7e:f8:ac:b1:e5:eb:19:
d1:51:ab:3e:ce:99:71:5e:53:44:7d:ab:bb:4e:73:03:72:d4:
99:3b:a5:22:04:8b:ff:e5:c3:af:60:81:9f:55:05:16:8b:f8:
78:cd:d9:06:5a:09:26:ed:d7:49:a6:17:db:f1:fb:87:7c:59:
9f:df:6c:87:c2:ce:df:e2:78:54:47:71:a9:51:b7:99:5c:28:
d7:04:66:a9:48:75:7c:36:1e:37:b9:7d:5a:ed:e7:8c:c8:b5:
95:b4:50:64:52:a0:9a:b4:1a:27:9a:bb:2c:23:59:e9:f5:43:
1f:56:7e:82:f8:28:b3:81:ba:a8:12:12:f8:3e:65:b6:85:ab:
c8:0f:63:a2:c1:6e:ba:e0:ac:a5:bf:e7:dc:d5:30:12:ae:16:
4c:1a:c1:c3:9f:cb:35:43:83:5d:73:6d:ce:f7:0c:61:e0:d7:
6c:f8:f0:d6:a1:b0:d3:c8:1e:46:f1:3b:4e:48:9a:fe:b5:c3:
3c:b8:e1:e9:7d:d3:fb:f4:b3:67:e9:4e:04:b3:b5:d6:ed:a5:
63:cc:36:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 07:04:39 2025 by rpki-client