Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json)
Hash identifier: bIlqJYswlddidcpLGXU7V8GBkYdYfCHflhs4UyaEONU=
Subject key identifier: 15:9D:F4:68:D9:1C:6E:A2:22:43:AD:66:AF:64:F7:5B:C9:E7:3B:98
Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3
Certificate serial: 0197B6A0D9F17D5D120C90984E5E1493E104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
Manifest number: 1437
Signing time: Sat 28 Jun 2025 13:01:24 +0000
Manifest this update: Sat 28 Jun 2025 13:01:24 +0000
Manifest next update: Sun 29 Jun 2025 13:01:24 +0000
Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: 1fP0FU0opVXJBBbMkx++SSwRBTqsMFr0Ltd+7ym4vYY=)
2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:d9:f1:7d:5d:12:0c:90:98:4e:5e:14:93:e1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3
Validity
Not Before: Jun 28 13:01:24 2025 GMT
Not After : Jun 29 13:01:24 2025 GMT
Subject: CN=159df468d91c6ea22243ad66af64f75bc9e73b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b4:7a:19:02:2c:d2:83:13:f1:51:38:49:32:
77:66:88:ed:39:4a:a0:b0:3c:7b:48:23:14:f3:3a:
56:4b:e1:e5:9c:7c:1a:3d:ce:f7:72:cc:55:d3:a2:
18:a3:a1:25:5b:9b:9f:77:d8:ad:b9:cd:4c:28:9c:
8c:14:c4:30:f4:84:c0:83:1d:47:e1:b5:67:fd:36:
9d:1f:17:64:03:ae:bb:23:64:eb:0a:a8:53:2e:e4:
d7:68:19:cf:27:37:70:37:9d:1c:7b:73:f7:c9:f0:
33:06:1b:29:a0:5e:35:cd:0e:ac:ad:4b:fc:03:cc:
cf:97:d5:dc:6f:6a:a8:bd:71:84:8e:ae:6e:a0:bb:
24:26:3e:e6:eb:6d:b1:32:02:83:49:3f:1a:d2:9a:
61:46:4b:c1:dd:8e:3c:8c:4a:0d:e3:a7:ac:a1:0d:
02:ab:9c:3f:76:a2:2b:b2:95:68:32:80:62:76:db:
fc:3f:45:33:2f:38:a7:66:65:d7:63:51:b5:2b:45:
28:7b:dd:e8:01:ec:5a:dd:a2:a6:3c:b3:11:72:91:
77:77:7c:9a:07:84:b0:aa:2a:69:f9:7f:b0:02:93:
6b:80:2b:07:4d:be:d7:7b:18:4a:d0:ae:1b:3c:df:
71:0e:1f:4f:13:77:ad:0a:8f:d6:76:95:d1:6e:e3:
45:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9D:F4:68:D9:1C:6E:A2:22:43:AD:66:AF:64:F7:5B:C9:E7:3B:98
X509v3 Authority Key Identifier:
keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:0c:f7:35:db:c9:4f:42:9a:14:ab:3f:84:9e:d6:77:1c:be:
0f:3d:f1:e2:0c:9b:2d:28:ba:7d:09:61:f8:13:4a:14:39:9e:
c8:d6:ba:0b:77:98:5a:7d:88:2c:08:ed:5c:b3:ec:ec:ae:df:
a0:a2:4b:97:53:ea:eb:79:9a:99:60:a5:6d:25:8c:89:0c:5a:
ac:81:91:f6:c0:03:e3:4e:86:75:0b:d1:3f:af:b1:82:b1:7f:
ac:b5:dc:ff:6e:45:4e:10:54:4d:30:5c:bd:e6:c6:12:bc:9a:
1e:e4:56:87:31:5f:99:e0:fe:cc:36:14:b9:08:dc:d6:70:1b:
e6:eb:5c:86:85:f9:11:06:50:76:fd:74:a2:71:cf:62:1e:5c:
e0:a6:77:d4:14:d5:cf:6f:bf:fb:93:31:8f:3d:e2:5e:ed:82:
0e:ed:83:e3:d7:4d:40:64:be:95:41:6b:1c:a4:b3:c7:34:55:
73:46:b0:b7:33:60:93:0e:69:c3:d6:6e:50:7f:d8:f4:58:9f:
9d:48:48:01:e6:fb:f7:44:7d:09:50:d8:f6:97:66:3a:02:6c:
08:02:96:ca:f7:43:8f:a0:76:75:3c:e9:48:b6:64:d3:e0:1d:
9f:e5:96:13:e4:05:a1:00:ea:d3:3c:ba:f4:ae:16:52:fd:d0:
53:d5:f3:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:55 2025 by rpki-client