Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: c+o7zZ2+DFHYuWrZEKXOq6m3yVMiHDnaowhJvKEMVjA=
Subject key identifier: FE:F5:8D:E7:49:F2:3D:52:05:AE:E0:B4:A4:3D:31:6F:35:3B:EB:18
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 0197CBDEBC128FDAE2AEAB80905AA8A08FB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 11F4
Signing time: Wed 02 Jul 2025 16:01:01 +0000
Manifest this update: Wed 02 Jul 2025 16:01:01 +0000
Manifest next update: Thu 03 Jul 2025 16:01:01 +0000
Files and hashes: 1: YR9oUfcPn7hi-EfIp0zPWNgdoLI.roa (hash: gZUlOd3rhYgj7y7iYiifqKrTqOs4vDy8o9fKugEnj2M=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: rKfOByboXW40NjvGhTKcprA+kf1iETYxAn4wizAObQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 16:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:de:bc:12:8f:da:e2:ae:ab:80:90:5a:a8:a0:8f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Jul 2 16:01:01 2025 GMT
Not After : Jul 3 16:01:01 2025 GMT
Subject: CN=fef58de749f23d5205aee0b4a43d316f353beb18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:25:a0:4c:29:53:32:d8:b4:9a:0c:c1:ec:ca:
bf:b7:58:c8:f3:4e:4a:9c:8c:f8:0b:a2:20:b4:18:
03:32:a2:90:7a:ca:a8:dc:ab:2f:b3:b1:ec:e7:94:
b1:a3:ec:14:4a:54:72:2b:4b:f0:d0:e1:06:f8:83:
8a:65:c1:37:8e:91:80:21:70:61:4d:ed:c2:18:98:
34:55:fe:78:a7:8d:d8:59:e0:76:e7:41:3f:e1:81:
c9:a1:91:c7:cd:60:15:f8:30:57:57:05:45:34:76:
03:37:dc:08:4c:7a:c5:00:7e:af:8b:48:90:b1:c1:
53:cb:07:ce:54:08:70:da:39:88:78:54:0a:43:5f:
c9:be:83:ec:9d:fa:b5:7c:98:bf:0f:c2:1e:ba:a9:
c4:0b:d9:69:81:3e:0f:09:16:df:8f:bb:94:9c:4a:
d6:82:a7:83:5d:11:31:44:f8:88:86:66:1d:32:da:
0b:36:dc:6f:ad:37:e0:68:51:3a:01:30:cb:fa:b1:
36:80:95:8b:7e:f3:41:07:cd:44:ac:ae:1c:5f:78:
d2:aa:71:a9:46:5c:e7:e3:7e:fb:3c:0c:ab:21:e5:
cc:c2:9b:91:5d:8d:04:7d:5b:cf:b4:fe:2e:72:12:
99:7c:d6:42:93:f7:99:88:5f:0a:ed:12:e9:84:09:
44:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F5:8D:E7:49:F2:3D:52:05:AE:E0:B4:A4:3D:31:6F:35:3B:EB:18
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:d6:9b:aa:91:81:96:5d:52:1f:66:b3:4b:62:33:94:8c:1d:
60:08:72:72:44:e6:db:a6:0a:db:a4:4a:73:2b:bf:86:1b:9f:
f5:25:c9:1a:67:25:3b:1c:10:81:bf:22:21:97:cd:ee:43:38:
44:e9:5a:5a:91:cf:42:06:23:93:c2:e6:20:0b:0e:01:6d:ef:
b9:3c:e9:ac:b6:39:bf:c9:bf:3e:cb:89:2a:66:48:79:eb:2c:
af:0e:0d:21:a7:0c:36:46:06:fa:2c:7c:76:3c:8e:e9:18:01:
51:f4:d8:6f:87:42:58:61:c0:8a:2c:9c:a4:63:49:5a:f9:d4:
b1:92:35:a0:61:6a:15:f8:8e:be:6c:b7:eb:25:a5:97:d3:7f:
e3:b6:ad:29:b2:f6:64:71:e2:1f:9d:e8:81:e0:23:bf:96:2a:
5f:53:36:65:67:c9:4b:28:9d:da:97:2a:a1:e7:c8:09:fe:ed:
82:26:d7:ab:ae:06:ec:9b:7a:68:fa:7f:c1:07:64:a1:c1:49:
36:cc:c4:da:da:1a:22:35:81:c7:46:32:8d:3b:16:58:91:49:
ac:0c:19:e8:ec:a7:da:92:90:e8:18:c2:1a:aa:b2:53:ed:01:
69:9f:b9:4d:18:04:b2:c1:9d:e9:a8:d6:8e:89:47:bc:f8:2a:
1d:18:af:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 00:24:10 2025 by rpki-client