Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: wM/n/zooqPi6KyQptoAIov2olbRfEgZ22xkjRsPY3d0=
Subject key identifier: 7C:C3:0F:04:65:49:4A:A7:12:F5:32:22:E6:14:59:23:E0:BE:48:79
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 0197B88FCD8A42CAC3ED82D9EB669C1F2BEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 22:02:01 +0000
Manifest this update: Sat 28 Jun 2025 22:02:01 +0000
Manifest next update: Sun 29 Jun 2025 22:02:01 +0000
Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=)
2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: HftxDhP6d6HkH/Co20AXlxm3LEfFjt0QJ9WOuZ4yqFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:cd:8a:42:ca:c3:ed:82:d9:eb:66:9c:1f:2b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Jun 28 22:02:01 2025 GMT
Not After : Jun 29 22:02:01 2025 GMT
Subject: CN=7cc30f0465494aa712f53222e6145923e0be4879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fd:86:d5:46:f9:04:2a:34:8b:1a:f6:13:fd:
2d:d2:08:fb:5b:1d:f9:76:5c:74:27:73:4b:4c:e9:
dd:3e:aa:39:98:75:86:16:c9:1f:a9:e3:5b:0c:fe:
ed:0d:50:0a:48:98:e3:9e:de:61:19:52:43:d2:e1:
10:5a:62:fa:49:e1:74:be:5f:fe:d4:2d:a1:78:ba:
62:a7:83:8b:69:64:3a:31:b3:cc:50:24:18:a1:89:
b2:00:9b:25:9a:5f:6c:45:09:98:5f:06:e1:c5:10:
32:ff:1b:da:cb:2d:9b:b3:f9:95:e8:d8:da:be:61:
a8:79:37:0b:10:40:aa:61:be:02:8c:ea:79:7b:ec:
95:3c:df:34:1a:cc:9a:c6:ff:bb:48:79:cb:8f:aa:
da:2d:fe:25:18:2b:b7:2b:e6:3d:a3:d1:8f:7c:bf:
19:fc:ac:e2:5b:ee:e7:9b:8b:30:f3:9c:56:0b:2c:
40:2c:b0:93:57:c6:d8:0a:d9:d3:15:3a:24:a0:1c:
d6:03:4a:3e:1d:99:3b:d9:65:63:d2:5c:13:ea:a6:
ad:2b:12:f0:97:39:63:aa:1b:65:ac:c4:06:2c:73:
e8:3e:15:b9:76:d7:53:71:04:41:cf:c5:11:e5:d5:
5b:63:21:77:3d:1f:a0:ff:83:df:25:1e:93:1b:57:
b9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C3:0F:04:65:49:4A:A7:12:F5:32:22:E6:14:59:23:E0:BE:48:79
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:16:90:07:29:02:28:e0:6c:41:3f:b0:20:18:18:d3:20:5c:
31:da:c7:8c:3a:68:1c:79:55:cb:d0:db:d0:03:dc:31:fe:dc:
6b:bd:64:d6:a8:5e:93:32:5c:09:8c:f9:cb:31:2d:0d:81:6f:
23:c7:8a:b3:ae:39:68:ab:79:69:46:46:77:d5:a4:fd:ab:35:
37:5a:ec:20:9b:6e:d8:9b:9d:84:00:00:03:3c:d0:3d:ee:7d:
04:0b:38:72:ef:76:f1:4c:41:76:46:f2:61:ec:15:b7:c0:88:
48:63:2a:c0:1c:8d:18:e2:b8:a4:4d:4c:1c:87:5e:fe:c6:0b:
24:9a:d5:bc:19:7b:9c:4a:e7:1e:30:f6:ba:52:62:87:3f:e8:
60:9c:5f:50:8b:4f:a5:80:ad:8f:29:0d:14:8e:ae:c8:c5:fb:
b9:99:e4:91:e3:22:3b:72:54:38:f6:14:ea:05:e3:8f:8d:98:
a7:7a:53:57:48:14:30:09:42:22:b0:7b:32:8d:a5:2f:8c:72:
0f:3c:db:47:46:8c:04:af:66:5e:32:45:35:80:21:41:6e:67:
52:24:82:36:4c:24:b9:27:5f:2e:cf:d4:80:b2:11:17:7c:d8:
dc:b1:54:df:39:30:60:6c:55:8f:3c:39:65:08:dc:46:15:dd:
b4:98:8c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:47 2025 by rpki-client