Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: INXgwD1OlRQ0dDcL13q4CECz6PVcETwXNOlSA/g7LyM=
Subject key identifier: EB:52:FE:A3:82:C4:21:15:A8:8C:8E:58:F1:57:D3:22:57:1E:88:03
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 0197B77C0E8303F472DF0C9AE38C8E4592E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0DB0
Signing time: Sat 28 Jun 2025 17:00:49 +0000
Manifest this update: Sat 28 Jun 2025 17:00:49 +0000
Manifest next update: Sun 29 Jun 2025 17:00:49 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: nKJON7Bi1h+MB8LhtVBF6Srpb7ILxdB7Qi2n+X75z+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:0e:83:03:f4:72:df:0c:9a:e3:8c:8e:45:92:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jun 28 17:00:49 2025 GMT
Not After : Jun 29 17:00:49 2025 GMT
Subject: CN=eb52fea382c42115a88c8e58f157d322571e8803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f8:ec:62:55:27:6f:fa:a5:43:5a:9b:de:d5:
89:7f:b1:a2:92:df:9d:e6:2e:26:24:c8:63:0b:de:
12:b6:eb:26:f5:9d:d4:70:bb:71:fe:91:08:e4:87:
e1:f0:51:c5:29:65:b2:b4:90:d1:95:bd:5f:eb:61:
53:5e:1c:e9:2c:e8:34:ef:99:17:b0:b6:49:ee:15:
b3:b1:eb:bc:10:cb:f4:86:84:77:dd:a2:45:fd:2d:
a3:3d:13:85:87:84:a4:54:2d:58:33:7b:09:26:e6:
cd:bd:1c:6a:83:02:94:9a:dd:a8:4a:76:ac:79:23:
43:d3:b6:95:a2:33:00:8a:64:2b:48:57:22:e3:18:
08:5c:a5:d9:1d:32:34:43:e5:11:c5:f1:1b:29:40:
44:93:bd:6f:9a:78:ec:52:87:d6:3f:23:e4:df:d7:
2a:2c:ed:1b:e0:4c:ef:a7:77:b2:c9:af:2a:0e:49:
72:1f:7c:d5:61:12:6f:91:bd:32:29:5e:41:b5:fd:
c3:de:e5:88:8b:72:d0:09:6f:37:50:e8:a6:df:ad:
6f:4f:be:9b:25:58:70:2d:5f:1b:01:03:60:2c:0c:
8b:8a:1d:c2:01:e1:c8:36:a5:26:2d:a3:f4:a5:34:
b5:7a:2b:be:39:c4:85:6d:d5:77:67:0c:3c:89:04:
82:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:52:FE:A3:82:C4:21:15:A8:8C:8E:58:F1:57:D3:22:57:1E:88:03
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:03:b9:6a:b6:e1:72:69:79:c3:86:31:da:f3:4b:78:05:1a:
99:8c:a4:86:09:1f:21:9e:10:90:1a:89:22:2e:3d:c9:e8:7a:
84:35:96:9f:1a:fe:48:33:f0:e2:6b:69:11:8b:76:00:34:05:
df:1d:10:a2:c1:e5:a8:92:82:4e:00:16:34:06:bf:5c:96:1f:
30:e6:8e:44:70:a1:e0:7d:5a:f6:71:9f:01:a7:a0:89:36:e7:
a9:0c:ce:2b:67:cc:4e:f6:ce:34:e5:4e:92:a8:b0:aa:f3:36:
18:20:a4:09:2d:9a:af:ab:57:9a:90:21:94:a8:67:f4:1e:8e:
2c:b6:b3:98:16:59:a6:38:53:ce:1a:f0:0b:3b:2f:ff:74:23:
1a:e9:6b:be:a8:90:68:bb:a0:76:ca:e8:a5:6c:4f:b7:c0:fb:
81:a8:6b:bb:ec:dc:59:eb:7e:74:f0:20:69:af:3b:15:f8:ca:
a8:88:8b:dd:8d:0a:b5:f0:8b:68:8f:33:ba:3d:57:4c:4e:aa:
d6:20:be:51:84:f6:7a:bd:47:46:76:8a:e2:c6:fa:f8:b8:46:
a2:9b:05:28:d3:4c:c2:e5:05:69:34:7b:cb:35:31:2d:ee:09:
00:4e:dc:1f:61:f2:7d:b5:67:ea:dd:9a:e9:9f:ea:43:fe:8d:
ca:73:a7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:19:13 2025 by rpki-client