Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
File: iWkzRGOKywU2WC-rCJh2V472vFY.mft (raw, json)
Hash identifier: 6r1x0QBhPfSbDjEW/botDaERcmuEqYVjQjk1HFe2AWk=
Subject key identifier: D0:ED:37:02:89:06:BC:B2:52:BB:E9:84:BA:7B:81:AB:9E:45:59:24
Authority key identifier: 89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
Certificate issuer: /CN=89693344638acb0536582fab089876578ef6bc56
Certificate serial: 0197B8906B2BC2B33F61CA9354ADD3CA5FFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 22:02:41 +0000
Manifest this update: Sat 28 Jun 2025 22:02:41 +0000
Manifest next update: Sun 29 Jun 2025 22:02:41 +0000
Files and hashes: 1: fCZrKI-6j3JypnfEm5_gs1n5dFw.roa (hash: iZ/p7v8ZHeoQxTyUiH1KnvRb3hj8zk8sCV0wmzxeW2k=)
2: iWkzRGOKywU2WC-rCJh2V472vFY.crl (hash: H4sbTz2PN563u6oNn+V7Ur1M3I8tZm0dIFzEiJAvID8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:6b:2b:c2:b3:3f:61:ca:93:54:ad:d3:ca:5f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89693344638acb0536582fab089876578ef6bc56
Validity
Not Before: Jun 28 22:02:41 2025 GMT
Not After : Jun 29 22:02:41 2025 GMT
Subject: CN=d0ed37028906bcb252bbe984ba7b81ab9e455924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c5:e9:ce:2c:c3:2a:fa:7b:ce:83:39:98:b5:
93:bf:07:9f:e1:fb:e2:5f:9c:9a:49:2b:a5:a3:89:
2e:fc:33:e8:77:8b:b7:89:38:6d:fe:55:72:ad:67:
05:f4:3a:4c:d5:c1:f1:07:84:dc:5d:20:a2:d5:89:
41:4a:1d:f9:9a:e6:a2:12:a1:2f:a2:b7:23:8b:0e:
ce:f7:4b:ad:eb:af:63:c5:06:87:c5:a2:9f:e6:01:
5d:f1:55:cf:10:9a:78:71:f8:94:17:e9:10:b9:e1:
12:12:b6:8b:1c:3d:80:3e:03:94:4d:d5:67:be:6e:
2c:b1:b6:c3:67:01:e9:e9:da:a4:4a:7d:72:18:fa:
72:5d:39:5d:44:5f:7c:fa:f7:36:56:8a:5b:72:7e:
24:f5:ca:f8:e3:b2:07:32:3e:05:31:95:33:6c:ff:
b2:c4:c2:1c:07:cf:47:14:b7:d5:9a:9a:e8:dc:82:
d5:2c:99:07:35:c7:26:9e:42:aa:0b:80:24:23:b0:
7a:75:14:13:40:7b:b0:17:64:b7:f4:a8:73:fc:d2:
e0:42:74:cc:7f:b2:94:11:fa:7d:37:f2:bc:2d:b2:
7f:79:99:da:e2:b1:ad:8b:3d:3b:91:fd:b3:1a:83:
fb:9d:88:ac:04:4a:82:c5:e0:be:86:4f:c3:58:30:
ea:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:ED:37:02:89:06:BC:B2:52:BB:E9:84:BA:7B:81:AB:9E:45:59:24
X509v3 Authority Key Identifier:
keyid:89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:0c:db:f2:43:9b:2e:3b:f7:f8:c7:ba:84:84:2b:c0:9b:ba:
dd:97:c7:40:1a:08:82:27:7a:a1:8b:16:b3:20:0a:b0:d1:77:
b0:6c:b5:f0:8b:8d:83:b1:48:26:89:1f:df:ac:bd:f2:8b:0b:
fc:f6:33:3a:c6:3a:ff:d2:d2:5b:fa:b3:28:dc:a0:83:59:c8:
f7:99:e8:97:fd:ba:5f:e7:ba:cb:81:22:fd:63:b6:4b:7c:7a:
75:76:e9:47:43:13:50:2a:5e:56:22:11:e6:05:11:5b:79:e3:
2f:ad:22:ef:56:5f:88:43:f5:ad:7a:e9:68:1e:cc:7a:aa:d4:
10:c4:85:04:9c:75:f5:3a:bb:3c:dc:ce:b4:29:7a:b3:11:13:
1b:cc:0d:0b:cd:5a:37:8f:78:df:30:c2:ee:3b:bd:77:2f:8d:
0a:98:4a:fc:c8:8d:67:e1:b3:75:1d:b3:2f:f4:09:9e:c7:54:
9c:9c:d8:dd:77:e8:9c:99:a1:91:79:85:17:ee:b8:fd:0e:db:
59:0a:f5:1d:b5:7c:12:61:28:46:65:16:b3:28:7c:31:90:51:
ec:45:b6:02:4a:ff:19:ca:a7:00:b5:5e:c2:fe:a2:5c:01:9d:
6b:c7:7f:67:28:5d:f5:e1:46:4f:a0:87:db:e4:d2:a2:4a:1e:
44:ed:ca:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:46:05 2025 by rpki-client