Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: SYquhBNyQ0v5xlxgDwQiytnE1qoqJ4G6vN+I6sgISBw=
Subject key identifier: 15:EF:BD:0D:E9:A1:09:DB:97:38:A3:35:CB:05:CA:E1:FB:3E:50:E6
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 0197DB535CC5C390F00F6797057A8E220E22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 15C9
Signing time: Sat 05 Jul 2025 16:02:42 +0000
Manifest this update: Sat 05 Jul 2025 16:02:42 +0000
Manifest next update: Sun 06 Jul 2025 16:02:42 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: zPAhXecDxrbgkmmItThAycCx+18aRGkthNd58ohmZ4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 16:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:db:53:5c:c5:c3:90:f0:0f:67:97:05:7a:8e:22:0e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Jul 5 16:02:42 2025 GMT
Not After : Jul 6 16:02:42 2025 GMT
Subject: CN=15efbd0de9a109db9738a335cb05cae1fb3e50e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:cd:f0:b8:a6:16:78:7a:ac:b9:7e:ad:dc:
17:d4:5b:4a:79:e4:fd:c4:2d:e9:c5:3d:ee:31:c0:
28:5a:fa:8e:8e:34:8a:8e:8f:40:ae:65:d3:d0:ff:
58:c6:8d:ae:c2:a1:52:22:fb:f0:71:dc:75:74:52:
6e:60:16:4b:f6:62:1c:be:f7:a5:9f:35:66:7f:4f:
20:ac:22:9a:2e:81:7e:8c:96:cf:05:27:a4:28:77:
6d:8c:2b:5e:45:29:ab:2c:a4:f8:55:68:c9:c2:2b:
c4:7e:21:dc:0b:3d:6b:20:fb:9d:8f:2a:c6:19:3f:
bc:1d:21:22:fa:e3:f0:80:6d:8e:3f:e7:c5:fa:9e:
64:35:cd:2c:6c:7e:f1:15:04:38:a7:28:9a:b5:fa:
6a:0d:20:e2:4b:c4:c7:e8:bd:7e:6e:dc:7f:3d:52:
cf:7d:ef:c0:f9:ae:c6:e8:7c:06:38:65:f5:8c:f3:
96:83:87:dc:25:f1:46:9b:ea:9e:cd:d3:87:28:a6:
ae:c7:ec:45:34:b1:2d:a0:f3:eb:db:ec:28:ce:f2:
07:62:2f:0a:90:c5:e0:3d:f8:5b:15:84:f3:26:7d:
b0:22:14:b5:6f:2c:87:5c:81:14:44:60:f4:5a:1d:
aa:72:fc:27:2e:8e:be:63:48:38:57:39:4c:dd:fa:
08:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EF:BD:0D:E9:A1:09:DB:97:38:A3:35:CB:05:CA:E1:FB:3E:50:E6
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:82:11:12:fe:30:fd:75:3b:2e:db:75:64:d2:f0:b8:c8:90:
03:8e:a2:64:52:2d:63:5e:b9:e3:75:10:2f:51:13:68:e3:8e:
4b:cf:0e:3c:08:9d:3b:d6:c6:8a:2f:4d:13:45:ed:e5:b1:eb:
ad:bb:62:f4:a8:fc:b9:b5:7a:c4:5c:5f:0d:54:1c:d3:5a:01:
0a:4e:92:da:d3:85:9b:db:73:12:13:de:91:38:e1:b3:c5:bf:
d1:c9:f3:b8:ae:84:3f:c4:ad:d4:20:47:e0:2f:45:0f:de:9e:
79:39:1a:47:b9:d7:0d:90:b6:bd:78:c0:89:e5:df:e0:8d:2e:
aa:0d:13:47:65:80:fb:2d:0d:87:94:20:09:d6:5b:81:ec:60:
28:03:57:6a:d3:b0:2a:86:37:16:27:35:d4:f2:c3:f7:5d:59:
cb:ef:0c:92:3f:31:30:5a:bb:16:4a:a8:ae:db:e9:a9:f3:9f:
f8:98:78:44:5b:a9:aa:ca:65:ce:2d:80:c7:46:32:f8:e0:ed:
d8:bd:ae:96:77:c0:25:4c:f1:ef:c4:2b:9e:60:b4:73:11:66:
00:e5:d4:77:0e:80:5c:db:7b:f9:a1:e4:eb:b4:66:1b:73:29:
73:fa:e5:7f:82:cc:d6:14:80:be:c4:33:08:bb:61:0a:37:43:
d4:60:68:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 22:11:20 2025 by rpki-client