Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: +1Fyvn5p2HByXJw8XT5Y4mIuLNZTWjuke8+RDDLdDHc=
Subject key identifier: 20:91:0F:E7:96:EA:0B:55:DE:30:D3:17:EC:08:0B:08:E1:6C:82:2C
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 0197B77CAF84A8F1AE1329103DCB2D4A3EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 0F26
Signing time: Sat 28 Jun 2025 17:01:30 +0000
Manifest this update: Sat 28 Jun 2025 17:01:30 +0000
Manifest next update: Sun 29 Jun 2025 17:01:30 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: hNHDeGzAF1KsT2KgaAWi5GHvU8qsdQD/VQM8yMVJdh4=)
2: oYl1-NMXXzEXtTi3L5l80mvOKew.roa (hash: HGKJcqJks4x1KvA9MPs1IeJtaKWdWbE52yFjhD/1Aak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:af:84:a8:f1:ae:13:29:10:3d:cb:2d:4a:3e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: Jun 28 17:01:30 2025 GMT
Not After : Jun 29 17:01:30 2025 GMT
Subject: CN=20910fe796ea0b55de30d317ec080b08e16c822c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:69:ea:8b:08:19:bb:6d:28:88:58:f7:69:97:
2d:9c:04:60:a0:7d:3a:8c:c7:c2:e1:d0:5d:dc:5c:
85:14:32:9e:3e:98:db:7a:f3:40:6c:77:6f:7b:81:
1a:30:a8:67:80:7b:ba:06:ae:60:b3:e9:e7:e5:bc:
db:fb:b5:f4:76:8e:ca:fb:66:d3:d3:0d:71:36:b4:
c6:59:c3:d7:8d:e8:88:6c:b0:ec:92:6d:43:00:ed:
dc:45:59:19:1c:75:12:d2:fd:95:97:2b:a9:a6:e6:
09:3f:89:09:c7:d9:86:c8:fb:7a:6a:69:ec:29:3f:
c1:0a:2a:3e:4f:ec:5c:e1:4b:4a:dd:36:c8:be:34:
4c:e7:60:bf:5c:8d:84:04:cd:16:2c:6b:7a:0c:ef:
94:fc:5c:67:55:e1:cd:58:f9:68:07:15:a4:ff:3b:
c7:20:8c:dc:1f:2c:64:3a:5b:b9:f7:2d:8d:28:6f:
05:8b:77:1b:56:f9:77:0c:11:86:02:b4:7b:d1:e4:
54:79:96:ed:0e:49:a3:e7:6d:ef:71:c1:22:49:08:
0c:73:e2:9e:1b:75:e1:1f:53:7d:d8:7f:ad:a3:08:
4b:3c:3c:41:d1:b1:99:64:63:a0:91:d9:8d:24:73:
91:04:00:bc:f8:4f:ef:e4:50:c9:ba:74:e0:aa:d4:
a7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:91:0F:E7:96:EA:0B:55:DE:30:D3:17:EC:08:0B:08:E1:6C:82:2C
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ea:b9:f5:ac:d7:a9:f4:de:27:fe:6d:db:05:a9:3e:8f:ce:
90:94:bc:92:87:78:a8:bc:8f:84:a8:51:73:16:2d:66:ad:a8:
04:a4:7c:29:92:80:63:02:3f:c7:33:b0:c6:10:15:c0:0e:f3:
bb:0a:ba:7e:19:b4:32:97:31:6e:cc:ce:fa:05:04:d3:5c:c8:
bc:b5:42:7c:29:80:ce:da:5f:b8:0c:2f:42:e6:f7:fa:17:39:
d3:e5:86:8a:d8:1e:51:da:2e:fb:5a:d4:a5:d6:d1:ee:f5:5e:
c1:f5:38:0a:75:01:ab:7b:a2:b2:c6:44:77:dc:2b:bd:3f:9d:
cb:3b:76:db:33:16:9a:39:97:1d:6b:3e:d7:9e:ba:a0:b3:72:
0b:5c:62:94:db:4b:af:46:97:a0:d4:53:98:17:53:12:e9:a9:
c7:aa:89:31:67:ec:60:8a:fd:ec:4c:40:26:f8:2a:f8:c7:8b:
8f:23:4a:ab:59:54:8a:c6:f6:bd:f1:5d:2c:96:5e:d0:f5:39:
ba:6f:b3:31:91:ed:14:f0:c0:50:82:32:2b:0d:37:2b:70:23:
b3:44:9b:a1:cb:fc:a4:e5:1e:c8:a7:e1:14:28:ad:c4:72:2f:
c1:39:1b:8b:f1:79:ae:13:84:bd:4a:70:df:55:5d:b5:5c:ff:
ea:29:5f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:46:27 2025 by rpki-client