Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
File: IvtSiroBjxQvRETMzJcjc2zU5LY.mft (raw, json)
Hash identifier: 9O7sxuXqjo9pYF+T4iIkF5E8lTrCmOoMsxKopQxCWIQ=
Subject key identifier: 20:95:E7:8C:9B:3E:30:A7:0E:2D:B0:20:38:81:00:82:A4:51:C5:37
Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Certificate serial: 0197B9A16C033B5C4E7B66329A10B380CEB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
Manifest number: 11A1
Signing time: Sun 29 Jun 2025 03:00:53 +0000
Manifest this update: Sun 29 Jun 2025 03:00:53 +0000
Manifest next update: Mon 30 Jun 2025 03:00:53 +0000
Files and hashes: 1: 4Qe9-T0nXWoVHW9lPtNAFV1MJeQ.roa (hash: MEUx9Qe02B/09ozBtbyk47nH68xJFm0Hu6pf18Q/8p0=)
2: IvtSiroBjxQvRETMzJcjc2zU5LY.crl (hash: CJwZJv5ZJv3Eq3FtpBi/c0KI+B32qMtQL9HFnX+BLT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:6c:03:3b:5c:4e:7b:66:32:9a:10:b3:80:ce:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Validity
Not Before: Jun 29 03:00:53 2025 GMT
Not After : Jun 30 03:00:53 2025 GMT
Subject: CN=2095e78c9b3e30a70e2db02038810082a451c537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:0c:4e:83:b5:c4:5d:0c:72:38:ed:1b:02:
dd:0d:df:09:d2:43:8d:8a:0a:61:ed:97:d2:98:2f:
de:53:e1:f5:79:84:a4:bb:9c:3e:3e:00:13:91:e0:
9c:cf:20:e0:46:17:58:71:11:d9:46:e9:eb:7a:c2:
cb:82:d1:34:51:16:99:45:ad:c4:2b:19:86:72:36:
d3:07:9f:41:d7:df:22:b1:39:ab:d0:80:c0:ec:14:
71:e7:d3:a3:c6:79:10:21:10:14:e9:c2:75:14:b5:
bc:e3:34:a2:63:02:ce:21:88:1a:c2:6f:55:eb:fd:
60:18:11:01:33:c6:a5:35:36:e0:54:87:5a:a9:9c:
e1:0f:bd:f8:d0:1c:1a:86:44:b1:ad:37:1f:a5:2c:
bc:d3:e0:78:98:79:c1:85:de:74:d7:6a:82:76:20:
58:5d:5c:2e:c8:83:6d:0e:a7:71:7d:fb:04:8a:a2:
43:5f:74:73:81:28:59:57:31:55:c0:77:1e:6e:fc:
cd:b2:ac:74:12:f2:2f:dc:36:ec:02:07:35:06:c1:
ed:cb:b2:e5:27:8f:a6:8e:d4:e1:89:a5:1e:91:fe:
e7:8c:4d:86:a9:2d:21:57:5b:e8:2e:b6:3e:d5:04:
f9:e4:56:57:a2:84:a4:0b:1b:0d:b3:27:c8:7b:9f:
f1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:95:E7:8C:9B:3E:30:A7:0E:2D:B0:20:38:81:00:82:A4:51:C5:37
X509v3 Authority Key Identifier:
keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:ec:e6:ad:2c:70:1b:06:55:68:6a:fa:78:37:b3:ad:46:c6:
55:f5:00:9b:6d:b0:83:d4:45:e7:98:b5:fa:30:72:52:a6:e9:
59:31:e2:f5:50:55:ed:ef:a2:96:ab:5b:b0:8a:e6:6d:ba:bd:
f6:b6:bd:7b:39:6b:15:3d:77:49:4e:06:85:c1:8a:3a:90:ee:
01:d8:42:1e:0d:ae:3b:b2:66:17:1d:99:7d:2c:41:e3:d0:15:
bb:2e:9e:42:9a:2b:b1:b6:99:9b:be:36:ed:b0:44:ea:61:24:
e4:dc:cb:85:72:31:8e:0b:f8:a6:fb:7d:21:e1:68:13:d9:8c:
d6:5a:ac:98:82:4e:64:a3:90:e3:92:fd:5f:eb:ee:e5:11:89:
6e:e5:00:fe:7b:8c:ea:c2:da:f8:40:70:5b:75:ef:36:f7:67:
8b:c5:c3:e2:53:7c:a1:fe:d7:97:fe:00:94:d3:d8:f3:8b:54:
14:23:ba:f0:33:17:4d:36:35:cf:99:e0:44:17:31:a2:e7:36:
e6:f3:73:58:44:76:a5:18:5f:af:d9:01:50:10:b5:06:12:fb:
20:70:f1:89:be:26:6d:cf:94:13:a1:13:b7:d2:45:38:6b:12:
86:e7:3e:69:c5:ce:99:64:c5:2b:7b:43:74:9b:df:5b:66:4a:
aa:9b:eb:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:46:53 2025 by rpki-client