Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json)
Hash identifier: W74xG3CTPlQMbYgRyW88/KX+ewBU+timg7na5UsjFHM=
Subject key identifier: 35:51:58:AF:B6:5D:2B:78:54:9A:CD:F2:60:90:5C:07:0A:FF:B8:A8
Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Certificate serial: 0197B8FD0B9AF7BD7C11A0944DB821AB7F0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
Manifest number: 02F4
Signing time: Sun 29 Jun 2025 00:01:20 +0000
Manifest this update: Sun 29 Jun 2025 00:01:20 +0000
Manifest next update: Mon 30 Jun 2025 00:01:20 +0000
Files and hashes: 1: 5ROabaZ0IQjGvjydG24dxkFdbIw.roa (hash: VZzap9WlH6EGkLU7RiUuipaz7yv8laZyaoXJmwbYxFo=)
2: KNoplKbnalbBlNJ0HrGiOS5fwgk.roa (hash: 6g25L6YriR7F4NqmIjLUqgHXTaSIa9NMu6Z6ggsvzHE=)
3: alNy-myxrA734TUoeZ1JVeikh6c.roa (hash: OCkDLXElKJB9eMUhsdq5dMT5WhX6caAwH3DuhC8oZvM=)
4: gdHjw5BAYBUGiQIKDf_rANYjbqo.roa (hash: rBCOEGXMkDk7MH6Epcgax70EgSCg7o0cp931QH6ZEmk=)
5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: 9pY8japdnZz8rzvdkaA8cy+eHbFWTOTCRZmyHsZuQig=)
6: y7BcwDEAXqOJr6z4aNGCsX7xfw0.roa (hash: NHC7ZwJSkEI3d9bNJO6OCWV6hxqIR1IsXwJaROvY2+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:0b:9a:f7:bd:7c:11:a0:94:4d:b8:21:ab:7f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Validity
Not Before: Jun 29 00:01:20 2025 GMT
Not After : Jun 30 00:01:20 2025 GMT
Subject: CN=355158afb65d2b78549acdf260905c070affb8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b7:a9:a3:a4:cc:3b:c6:a2:42:9b:68:b3:fb:
e9:d2:2f:06:e5:e4:4e:c0:ab:0b:b9:b6:24:a8:3f:
72:53:18:36:d3:8c:59:a6:90:d4:5c:4e:9c:17:6b:
53:f6:32:fd:a3:1d:ae:7b:51:e9:a3:93:82:f7:cb:
d8:27:d5:0a:f9:00:1c:55:25:f1:d0:b6:94:16:65:
f0:4f:15:5c:23:3f:0a:84:40:32:e4:6c:7b:f8:1e:
18:98:8e:2a:bd:8c:f5:9e:e3:c6:bf:91:be:50:35:
17:75:6c:72:49:d8:16:95:10:1b:53:5f:6b:96:a5:
0b:b6:1c:5b:0b:05:1d:ae:ab:38:bd:f7:ed:45:21:
54:65:f8:ba:af:e6:2c:70:84:b1:e5:50:5f:79:02:
55:b6:77:09:df:fc:cd:8f:dd:eb:f6:4e:db:52:b6:
a2:e7:0e:d6:a7:ac:cd:95:50:95:b1:34:5f:cd:b0:
bd:8a:58:25:ee:74:c3:d7:4e:d8:93:ba:74:36:d0:
98:fb:3b:8a:d8:e5:d8:be:02:9f:d3:05:c1:91:2f:
36:c0:94:c1:2e:5a:71:eb:f2:6a:9c:9e:fc:50:e2:
ed:00:53:ea:4e:49:62:b5:1d:94:49:29:ad:89:b0:
0c:c7:11:dc:1e:78:03:c4:b8:b2:e0:fb:a7:a8:ca:
17:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:51:58:AF:B6:5D:2B:78:54:9A:CD:F2:60:90:5C:07:0A:FF:B8:A8
X509v3 Authority Key Identifier:
keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:3c:1d:ea:59:7f:02:3c:e2:14:67:0f:c8:c7:7d:1e:e5:35:
84:c3:9a:bd:05:4b:97:23:dd:c7:0b:d4:fa:0f:e6:65:79:e9:
b0:08:48:5d:e7:59:4a:c0:2a:74:0c:ad:3a:91:d2:7b:47:a5:
d8:48:53:fa:7d:fd:1e:0a:b5:92:b9:84:67:2d:63:dd:cd:f3:
09:93:7f:ee:28:05:6e:33:aa:77:bc:7d:7a:34:09:85:28:e2:
8c:13:0a:12:58:f3:02:99:d3:ea:35:0f:f6:1f:6a:76:6b:09:
e2:b8:c5:7f:17:42:7b:3a:0f:f1:92:f8:2d:39:8d:89:9b:5a:
5f:34:c0:a4:c3:c4:a9:d3:a0:97:e5:4e:09:9e:4f:eb:35:5b:
b0:da:99:78:f9:34:ce:35:1b:42:af:cf:cc:59:7a:1a:6d:97:
31:6b:83:55:ea:76:32:0b:5f:ad:74:31:67:79:eb:ad:f2:94:
f3:d5:fb:58:d8:8f:4f:94:ac:90:61:29:54:a1:2c:a8:54:40:
1f:ae:97:60:e7:ee:b8:9e:5e:9f:32:5f:8d:f1:d9:a3:a5:ba:
1e:ce:ad:79:37:37:27:91:3b:92:43:e3:cf:80:bf:20:0e:59:
c3:87:59:f5:20:79:db:66:cc:66:2b:3c:e8:50:a0:9a:85:12:
76:3b:13:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:20:13 2025 by rpki-client