Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json)
Hash identifier: ymQVkbSfRVfejrvbcem5/3MlDFU2NhRwuTrlx4l7Xpc=
Subject key identifier: 3F:29:5A:C1:45:96:38:FB:AF:F1:BA:39:87:9B:77:7E:40:1A:38:B6
Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Certificate serial: 0197B9D8B4612469BB85BCF040B3CBD19EF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
Manifest number: 034D
Signing time: Sun 29 Jun 2025 04:01:16 +0000
Manifest this update: Sun 29 Jun 2025 04:01:16 +0000
Manifest next update: Mon 30 Jun 2025 04:01:16 +0000
Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: lOpK8/bPOZucO7599JPrLEInKZyKmp5Jz1Sz/BfdL2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d8:b4:61:24:69:bb:85:bc:f0:40:b3:cb:d1:9e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Validity
Not Before: Jun 29 04:01:16 2025 GMT
Not After : Jun 30 04:01:16 2025 GMT
Subject: CN=3f295ac1459638fbaff1ba39879b777e401a38b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f8:03:d2:9e:09:17:9c:c0:9b:e0:95:24:df:
7a:03:a8:23:3a:18:3b:d6:d6:f0:7d:7e:60:b2:dd:
2f:24:1d:4f:d8:94:7c:11:7e:d6:54:fd:6f:ed:56:
af:b3:97:83:d3:41:47:6b:9d:50:57:20:8e:0d:6a:
4f:76:87:0a:41:34:22:35:90:1f:c2:3e:ee:29:36:
47:9c:f5:2d:db:e4:ba:a8:d3:75:48:f8:74:35:bc:
78:9e:cb:ad:f7:32:75:6c:b0:7c:ed:84:d4:67:39:
30:5c:07:a5:76:60:57:05:85:86:8d:55:9e:5c:5d:
f3:28:c1:fc:d2:e0:cb:93:af:f1:f3:15:99:4c:f2:
0f:fd:23:fc:16:ec:d3:a2:e2:46:6d:d5:61:ae:00:
5c:04:56:75:96:b5:86:0c:0d:73:0e:69:b7:de:8e:
5f:60:84:e5:d4:fa:cf:70:52:ca:c5:3f:ab:9a:08:
3b:c1:cd:a1:fe:9e:11:28:e7:6c:10:e9:3a:e6:87:
15:f4:5c:50:00:fe:f4:03:6e:ee:fd:55:bb:e9:dc:
3d:ba:09:48:54:0e:a2:c9:6b:f9:e3:e3:bf:d8:6f:
0d:11:bd:44:97:ab:22:9d:cb:81:3d:f4:50:24:2e:
8e:53:c3:21:62:ad:90:82:f6:06:b1:69:1a:c6:17:
2e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:29:5A:C1:45:96:38:FB:AF:F1:BA:39:87:9B:77:7E:40:1A:38:B6
X509v3 Authority Key Identifier:
keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:75:25:f3:57:9c:07:58:88:5e:09:c4:dc:bb:00:fa:e1:6a:
59:cd:a3:58:18:48:8c:77:51:3c:9c:4e:2a:54:19:a2:4f:91:
e4:6b:45:23:23:84:0b:a0:c8:03:53:dd:70:50:64:fc:0a:37:
c0:41:d5:9b:04:3a:3c:c8:be:ed:e0:f7:42:3a:aa:f5:c2:81:
26:86:c7:4c:6a:9c:0d:fb:94:81:52:89:90:f1:d6:c2:71:e8:
dd:68:cb:7b:de:63:df:bb:91:b3:e3:ed:02:f9:1e:8c:2b:dc:
2b:dc:5e:3b:0d:af:63:76:58:8d:8a:70:0b:4f:85:be:d6:82:
4a:11:d7:57:11:35:ee:5e:e1:36:78:0e:50:7d:65:83:54:17:
be:b1:81:ac:77:7d:f3:2a:bd:ee:4e:02:3e:79:95:0f:b0:8d:
6b:8a:be:7e:72:c1:4e:3d:3a:1f:a6:ee:2a:7a:5c:97:97:37:
84:4a:e3:61:ea:39:3a:98:73:8f:ad:01:85:45:8a:d2:13:01:
95:93:5d:28:70:60:95:71:22:98:33:83:8d:12:c5:c6:04:77:
e5:19:a6:b0:60:77:2a:f0:61:84:7d:4e:08:9e:98:fa:b1:82:
05:9e:81:eb:9b:24:d3:ff:b9:8a:bc:4f:01:e2:c0:b1:1e:58:
4d:40:7e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:33:15 2025 by rpki-client