Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
File: iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft (raw, json)
Hash identifier: /S/Ow5RpNW3Xmk1Id8vtng9b9AquusNLMK8k9thO5/c=
Subject key identifier: 8C:0F:18:E2:99:4D:BD:40:9F:68:E7:3B:77:61:A3:08:02:5B:5B:95
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 0197B820E5AD56551CC95F86B41C9B34F436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
Manifest number: 1509
Signing time: Sat 28 Jun 2025 20:00:52 +0000
Manifest this update: Sat 28 Jun 2025 20:00:52 +0000
Manifest next update: Sun 29 Jun 2025 20:00:52 +0000
Files and hashes: 1: Qv6t4wP7j-uLsxcfTWHv2ZFQWD8.roa (hash: eR47NrGWjMdNEp9FBa07vBAWwdqKIDeSc8imYvJOwfI=)
2: iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl (hash: UgKi9x5up5vTAGiZUVdkS41PwpFqTpL2j/N5o9mpUjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:e5:ad:56:55:1c:c9:5f:86:b4:1c:9b:34:f4:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: Jun 28 20:00:52 2025 GMT
Not After : Jun 29 20:00:52 2025 GMT
Subject: CN=8c0f18e2994dbd409f68e73b7761a308025b5b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7f:67:bd:99:e0:1d:a9:d2:d6:1e:95:1e:ea:
d9:86:fa:e7:c7:65:64:47:f5:28:77:40:9a:82:b6:
d5:72:a7:d1:fb:17:16:a9:eb:df:10:2f:53:43:8f:
c6:5a:d0:59:21:8e:eb:74:48:4e:51:65:4e:63:76:
66:d9:e7:7f:af:e4:7d:9c:b0:fb:7a:24:a6:06:a0:
2e:81:6c:31:f4:30:8a:5c:0a:e3:97:c3:19:0c:8d:
20:8b:b4:b1:31:0e:0f:d5:42:28:7b:c8:d2:b9:27:
ee:a7:f8:0d:9b:35:64:96:a1:44:88:9c:fc:0a:1c:
69:27:5b:21:b5:2e:e6:dc:ec:26:76:cb:5e:d0:e9:
65:a5:e7:53:fc:57:be:b4:2f:3e:2d:83:c4:8e:a6:
02:38:15:bf:ed:3a:9d:52:bf:12:44:16:47:47:f2:
61:9e:22:be:6f:b3:d4:e8:97:7d:e1:de:e0:35:4d:
09:b5:44:fb:df:d6:0f:09:c6:86:4e:90:c9:fc:b4:
d0:ec:92:bc:7c:f2:bb:03:37:86:c4:30:52:7b:ad:
0a:60:e3:46:d8:ea:9d:17:10:09:f4:4e:d1:1d:95:
08:ae:54:fd:60:74:0c:99:f8:42:ce:6f:c0:5d:b7:
1c:24:6f:63:e3:05:31:12:02:a0:ee:0a:e0:af:e6:
46:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0F:18:E2:99:4D:BD:40:9F:68:E7:3B:77:61:A3:08:02:5B:5B:95
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:46:8b:5b:ed:d2:d4:ae:37:d6:e4:5b:cd:c7:12:0e:a2:a1:
a7:a4:20:07:ec:ef:44:d2:b9:df:e0:bb:35:c0:f2:20:94:7a:
ca:be:70:6a:43:55:e0:fb:7d:8c:9f:86:00:ff:4c:16:54:69:
b5:cf:c9:88:1f:d5:28:34:9b:27:c3:80:ed:77:2f:41:af:9b:
1f:50:a0:12:51:e3:91:1e:c2:f7:7d:48:80:60:0f:a2:48:ee:
88:88:b4:69:59:8c:cb:96:b7:3d:0f:f0:8e:ce:90:33:69:a4:
33:aa:f0:87:37:86:ca:0b:2c:73:40:b4:3e:a7:24:31:46:15:
e9:1d:60:7e:bd:35:aa:e5:cc:f4:29:ae:54:6b:24:f0:e0:e7:
ad:02:0a:4c:e5:cb:81:3d:72:63:80:29:ac:51:4e:f8:f8:fd:
0d:02:5b:32:02:59:24:13:56:e3:a7:99:98:3a:b4:fd:bb:7b:
3a:a1:f2:82:a6:62:c4:f4:c3:04:3e:58:64:17:da:f1:63:b7:
1d:b6:1c:af:65:ec:40:a1:29:59:75:19:bb:8f:fb:43:3a:70:
eb:d6:71:72:df:3f:78:51:4f:f9:15:fa:21:0c:f6:4a:22:88:
1b:b3:43:6c:f2:16:61:0c:2b:c1:6b:d0:89:b5:87:3f:46:5b:
f3:92:74:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:11:05 2025 by rpki-client