Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
File: iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft (raw, json)
Hash identifier: WCJE7OS4OtIkeI213roXJWSa7FmHJ0Ya44xMBpUvdA8=
Subject key identifier: AC:FB:5B:A0:47:28:DE:63:02:EE:CF:FC:CE:D2:68:E6:A9:05:4F:A0
Authority key identifier: 88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
Certificate issuer: /CN=887fa37371d7d4593ba290ef45669ea0de293782
Certificate serial: 0197BA7EE015654E329AECB881E34DEAC1C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
Manifest number: 06D9
Signing time: Sun 29 Jun 2025 07:02:46 +0000
Manifest this update: Sun 29 Jun 2025 07:02:46 +0000
Manifest next update: Mon 30 Jun 2025 07:02:46 +0000
Files and hashes: 1: XWaEMNo4oCmJKw7xuT_lUqU1a9o.roa (hash: vlh1Ps1w/BBZ8U+fD5oVlO0yHpfRUnw+NHa2xAJ40qE=)
2: iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl (hash: ivEIyzqSgpMvwsbSj24znLTo/K9V2vB82mEjhZew+5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:e0:15:65:4e:32:9a:ec:b8:81:e3:4d:ea:c1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887fa37371d7d4593ba290ef45669ea0de293782
Validity
Not Before: Jun 29 07:02:46 2025 GMT
Not After : Jun 30 07:02:46 2025 GMT
Subject: CN=acfb5ba04728de6302eecffcced268e6a9054fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:33:f6:e0:e4:f7:d4:ec:d8:ca:51:a0:44:ae:
34:7c:56:d8:8c:21:34:fc:2d:c5:82:82:b1:90:01:
24:32:82:b8:fa:d6:29:1e:e0:45:46:57:d1:76:38:
19:46:f1:c1:1c:73:87:c4:a3:38:c5:79:ca:a8:9a:
04:d1:e9:89:46:63:9f:dc:91:d4:c3:b6:39:95:19:
32:df:38:70:b8:50:97:48:e2:59:40:ae:aa:3a:fc:
e8:33:21:78:3c:cb:75:96:de:1d:a4:cc:d3:27:c1:
71:3d:20:19:58:a2:18:f7:cf:d7:4e:89:b3:41:ce:
16:9c:34:a7:ae:e3:1c:2b:3e:10:45:7f:c0:dc:97:
9f:b9:d4:76:a9:1c:91:1b:34:6b:27:40:a7:0a:d8:
eb:b1:d0:60:f1:d8:6f:b4:84:62:56:6c:39:ae:e3:
ad:42:17:51:61:20:c2:47:2c:c5:69:46:3c:72:f9:
58:9b:a0:74:3c:a0:6f:ff:0d:31:c8:a9:f7:c3:8a:
09:7a:86:90:94:f1:08:1a:1c:d8:cf:3a:a9:f1:10:
b9:46:c7:ea:48:e6:aa:ec:16:e7:c7:4e:bd:fd:05:
27:62:1a:a2:74:97:2f:c8:68:b1:07:75:ae:f7:f7:
6c:b1:4c:88:e5:df:dc:37:e9:25:fe:50:2e:d3:a9:
8d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FB:5B:A0:47:28:DE:63:02:EE:CF:FC:CE:D2:68:E6:A9:05:4F:A0
X509v3 Authority Key Identifier:
keyid:88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:44:39:cf:39:03:6d:1a:07:c3:bf:bd:c9:23:a5:cb:84:22:
26:d1:14:ad:4d:66:28:e9:a1:b9:b1:ae:cc:62:e3:c2:94:bd:
56:38:74:16:6d:43:3f:df:d0:1c:e9:7a:6f:aa:15:43:c9:81:
d8:e1:e4:29:af:54:26:88:6e:77:d0:e0:20:29:30:62:6c:a6:
8f:52:93:c9:13:b8:c1:df:75:92:40:28:60:29:91:5e:bd:6c:
fe:6b:70:ea:ce:db:a0:1a:b5:ea:5d:5d:3c:2d:ff:82:ca:a8:
0c:69:c5:82:5a:33:3d:79:06:77:a2:29:a3:df:c2:76:7e:dc:
6b:b5:7b:4d:3f:7f:f6:28:e7:d9:43:fe:87:65:8d:16:6d:0a:
7b:66:c6:21:81:50:23:59:ef:f3:c6:b0:36:47:3b:33:03:2a:
eb:c2:27:66:27:3c:04:e2:19:e0:ff:73:c2:9d:2a:43:18:ee:
7e:5d:81:88:52:de:41:53:59:33:bd:10:78:f1:ba:03:bc:1e:
a1:f3:41:52:ad:ed:70:a9:5a:48:52:0a:59:63:94:93:d4:c4:
d7:b7:81:58:54:7a:c1:5c:fa:e1:8a:f5:61:38:b8:32:b8:67:
85:6b:c6:ff:c3:2e:35:f7:76:af:c3:b7:73:fd:9a:8b:2f:2d:
df:aa:d8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 10:34:00 2025 by rpki-client