Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
File: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft (raw, json)
Hash identifier: BmJ6f4+jPTIGDXKYzBf9XRxO4POFPUENGmdtnnnMfYw=
Subject key identifier: 65:EC:35:7E:AC:93:71:AE:F2:5E:08:45:CC:28:5B:F4:E4:3E:6F:75
Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Certificate serial: 0197C425AC05AA2BA31A808C0AF2D0B90FF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
Manifest number: 15BF
Signing time: Tue 01 Jul 2025 04:01:32 +0000
Manifest this update: Tue 01 Jul 2025 04:01:32 +0000
Manifest next update: Wed 02 Jul 2025 04:01:32 +0000
Files and hashes: 1: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl (hash: +yt6CtQdOzGwGP77gnRE4oPCtcJ4Qt51OA2KXwBNGw0=)
2: vZncObou1n1Gou3XB_i7Ru4V5WA.roa (hash: iik1zhTFoCIgqbBLWbxX8UR2ffHIMvhG03bvL/Xp/YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:25:ac:05:aa:2b:a3:1a:80:8c:0a:f2:d0:b9:0f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Validity
Not Before: Jul 1 04:01:32 2025 GMT
Not After : Jul 2 04:01:32 2025 GMT
Subject: CN=65ec357eac9371aef25e0845cc285bf4e43e6f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:53:01:33:83:aa:52:72:28:c9:75:46:cf:b8:
fc:be:6f:71:c8:2d:e6:ce:cc:a7:7a:de:cf:c5:e0:
d2:98:2e:02:30:17:5d:28:9b:9e:b6:8f:ca:70:7a:
be:b4:87:b9:6c:f9:43:60:73:b1:c6:13:04:c6:ea:
b6:3c:5c:a6:28:17:c2:d6:93:6c:ea:0c:56:fd:49:
ad:71:e2:17:31:1a:85:09:23:14:2e:3a:4f:3c:b4:
c0:44:51:1b:ab:34:35:8c:b1:c4:09:12:59:2c:a4:
d3:9d:81:c1:41:87:08:a1:ee:d3:71:61:36:f5:a7:
53:ca:54:16:79:31:bb:62:7c:16:c5:af:82:18:96:
2e:b9:96:c8:ab:f5:bc:6e:f2:dd:1d:01:46:d1:eb:
ea:9f:9f:5a:8a:34:c7:19:2e:2d:67:b0:4f:f6:24:
8d:62:cd:74:87:be:b7:06:1c:4d:39:5a:b5:a6:2f:
4a:87:31:32:d9:30:0c:45:7b:64:4e:6c:e0:72:c0:
7c:8e:bd:da:59:7f:de:6d:4d:a2:e8:fc:2c:f3:62:
d3:36:b6:1d:23:a8:c5:0b:78:84:72:10:5b:c3:51:
eb:53:e1:f6:32:7b:38:e2:c8:8b:8f:a1:ac:d7:43:
32:07:38:dc:c2:45:99:88:15:f9:37:3b:2d:9f:db:
94:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:EC:35:7E:AC:93:71:AE:F2:5E:08:45:CC:28:5B:F4:E4:3E:6F:75
X509v3 Authority Key Identifier:
keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:79:71:c8:b1:41:7b:2f:18:c8:4b:5e:cc:04:c5:bd:04:01:
f4:82:cf:2d:48:c5:44:19:0c:ed:e4:05:ea:c5:d3:e9:03:3d:
3d:39:d6:3e:d8:23:eb:5f:55:32:66:51:31:de:2c:65:64:07:
c9:c3:ac:5f:53:af:fb:4e:23:04:37:5e:47:ce:f0:1e:48:a1:
c0:57:b2:22:71:d3:e4:f8:24:e1:c8:c0:1f:64:be:b2:ec:a3:
5d:f2:8a:cc:6e:30:1d:f0:8f:6d:87:1d:95:c9:4e:fa:da:61:
75:f4:97:1e:b8:34:c6:16:67:10:47:80:07:e5:7a:38:5e:09:
e7:dc:bb:cf:28:29:7f:f1:4f:44:1e:16:81:e0:5b:02:66:e3:
6a:fb:1d:a0:41:85:40:9e:4f:be:5d:e1:64:de:1a:36:07:48:
dd:94:ce:08:f7:6b:76:fd:3d:f3:00:0b:c3:df:71:fc:da:27:
df:2c:15:bd:d4:1e:25:b3:d2:86:6d:8a:49:47:5b:9c:9b:c7:
b7:60:5a:fd:f5:c4:2f:7b:37:24:7b:72:a7:51:05:57:b0:10:
33:5f:e2:c3:eb:5a:93:14:c8:c8:94:6d:7f:43:55:d1:5b:a4:
9a:73:0c:cc:12:45:58:4c:54:7c:ca:2a:65:4e:6b:4e:f8:d7:
11:b9:a0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:23:06 2025 by rpki-client