Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
File: IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft (raw, json)
Hash identifier: v7j97yAp4h2XzNihA+Geex+ZueuWh1F8lZZsrwALnYA=
Subject key identifier: F4:33:17:24:C0:CF:35:90:57:51:3C:A3:72:08:BE:06:48:E8:D0:A2
Authority key identifier: 21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
Certificate issuer: /CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Certificate serial: 0197B6A24792E406A6D005764BF696041DD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
Manifest number: 05A5
Signing time: Sat 28 Jun 2025 13:02:57 +0000
Manifest this update: Sat 28 Jun 2025 13:02:57 +0000
Manifest next update: Sun 29 Jun 2025 13:02:57 +0000
Files and hashes: 1: IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl (hash: +rtir1AqYAtScozRojzXAF6hx3MpNEvqfFwKuAOT25o=)
2: ZXtK8i0ZkTBxTFkF4gT8SCIZTmw.roa (hash: KikSjMlfZMQPJYB8hmRvlc00FrgqM6UWZDTUG/QEicY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:47:92:e4:06:a6:d0:05:76:4b:f6:96:04:1d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Validity
Not Before: Jun 28 13:02:57 2025 GMT
Not After : Jun 29 13:02:57 2025 GMT
Subject: CN=f4331724c0cf359057513ca37208be0648e8d0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:53:8d:2b:cd:ba:a7:2d:0c:56:eb:5f:ca:f0:
41:0b:7c:7e:be:ef:b0:c0:6c:57:3e:55:37:09:cc:
27:2d:31:4d:14:2e:7f:20:75:62:de:81:b7:81:a0:
14:01:ab:0a:6d:3c:30:0f:9e:00:6b:5e:9a:38:1e:
65:5c:6f:a8:59:e0:ce:aa:96:4d:5a:3f:ea:6c:2c:
ec:ba:8e:4d:ad:83:d5:00:9d:eb:61:c1:aa:eb:1b:
67:91:a0:70:f2:21:aa:5a:42:ac:dd:8c:90:1d:d9:
6d:82:e6:ec:1f:4d:f6:38:5b:c9:96:16:1a:9d:55:
99:2b:bb:a3:12:04:ce:bf:cd:63:35:db:e5:16:4e:
d4:95:a9:5f:ec:32:82:39:7d:85:20:95:ff:07:45:
3b:d7:c5:8b:15:ce:51:9f:b5:13:33:cf:d9:6d:2c:
77:25:5c:ea:fa:79:00:a0:c2:23:8e:72:aa:4a:74:
2e:c0:52:36:aa:2e:9e:e9:b9:78:42:a2:67:3e:e9:
47:7e:75:6f:11:2b:26:62:f7:12:21:3a:25:fb:d9:
83:82:6d:0a:5b:3a:2b:f0:a9:4f:0f:55:ad:38:ad:
d5:61:aa:ed:a3:05:81:b4:d5:de:b4:11:e8:58:29:
56:a7:bf:65:b0:f9:fe:49:a5:c7:4d:99:c0:09:88:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:33:17:24:C0:CF:35:90:57:51:3C:A3:72:08:BE:06:48:E8:D0:A2
X509v3 Authority Key Identifier:
keyid:21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:35:f0:1a:89:8e:d9:b3:78:fe:d7:ef:ec:4e:ca:de:1c:99:
5d:e6:4d:02:f7:18:9f:6a:5e:29:9c:90:75:0a:c2:80:e3:bb:
a6:ad:fd:c0:cc:9f:2f:9c:4b:d2:92:fa:2a:26:88:b9:09:b8:
11:d7:37:f5:78:a6:81:e1:a3:dc:51:24:48:bb:56:a7:8f:fe:
e3:96:80:94:25:d3:e9:5c:2d:1c:62:50:ad:f5:ec:4a:3c:35:
5c:32:3a:a4:d3:19:0e:38:b5:ae:3d:1c:40:cc:13:e1:76:81:
76:2f:14:3b:b7:9f:3d:7d:b5:c3:4d:3d:40:15:39:f2:2a:26:
d5:18:2b:2a:42:4c:ff:0d:60:bf:81:0e:a8:27:c0:c9:6c:dd:
1a:77:f1:e0:ea:4e:e3:1e:e8:3d:52:21:68:e3:a7:48:f8:d6:
ef:b3:36:45:db:c0:92:1c:2a:ff:f6:59:fa:69:8d:81:6a:93:
2a:67:55:d9:38:04:1e:a8:52:da:63:81:5b:5b:4b:25:ba:a0:
a0:2d:79:07:95:99:2f:27:c4:56:02:24:f9:fb:61:43:80:31:
3b:ee:ba:a0:30:ab:9f:42:2d:82:3c:2e:dd:bb:96:ef:4e:21:
31:6f:25:c8:2e:bb:f2:87:aa:93:6e:a8:a1:e2:37:b1:4d:ed:
e2:ff:44:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:24 2025 by rpki-client