Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
File: IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft (raw, json)
Hash identifier: 2sUk4CgGQaKNIpFGg1k0Hk9cOE5GzwMa/rIQ5LUn8Js=
Subject key identifier: 91:63:8D:13:0F:A0:ED:00:E1:5F:72:5B:4C:64:48:EE:8D:3C:C0:36
Authority key identifier: 20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
Certificate issuer: /CN=20820f796481ac0e9637c962414597b1fe227c24
Certificate serial: 0197B8FD883E7A1E740E059ADF0D49DCEDCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
Manifest number: C8
Signing time: Sun 29 Jun 2025 00:01:52 +0000
Manifest this update: Sun 29 Jun 2025 00:01:52 +0000
Manifest next update: Mon 30 Jun 2025 00:01:52 +0000
Files and hashes: 1: IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl (hash: pgRxIHlkcIXfoSneif7mgRbiFNmTMHLbyRxFQJwUp44=)
2: iLANhbyVV3zbKcRa5e1j5ys5bQ8.roa (hash: HvIZEmUJodoCUOQJmSLlhYyGWehRd8s2eUB4GrSGatI=)
3: vXv88BHimThnafaryEHozjYrlDI.roa (hash: DV1U9+gs3m5mNc5xoVIc27oNoGuDOyBahRAnw8thlug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:88:3e:7a:1e:74:0e:05:9a:df:0d:49:dc:ed:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20820f796481ac0e9637c962414597b1fe227c24
Validity
Not Before: Jun 29 00:01:52 2025 GMT
Not After : Jun 30 00:01:52 2025 GMT
Subject: CN=91638d130fa0ed00e15f725b4c6448ee8d3cc036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:25:8c:93:36:ff:81:a1:b7:04:09:48:be:27:
65:66:03:ed:9b:9d:4c:ed:8f:80:65:5e:2f:20:72:
b7:42:4d:29:86:f3:2f:65:c7:5c:9f:e3:35:fb:e7:
3b:00:d7:35:00:d0:17:c7:fe:90:f8:1a:4d:7d:ed:
f5:13:e1:4d:67:88:c7:5e:35:17:fc:18:9f:fb:ef:
15:9c:14:17:5a:2a:7f:ad:ae:c0:4d:de:65:93:ac:
df:1c:82:6c:9b:fc:22:35:e6:52:87:d5:fb:98:2c:
79:9c:70:1b:ab:f5:aa:f1:c5:eb:04:f1:3c:39:de:
e9:5a:7e:3f:ea:8a:87:03:c0:1a:93:5f:50:c0:72:
74:72:43:b0:c9:64:df:73:c6:a4:0b:74:59:a9:f2:
c7:d3:85:ca:e3:3f:51:73:7d:82:3b:21:0a:fa:1f:
f0:18:d4:d9:2d:4e:ea:74:e4:68:1b:95:ad:3e:44:
6a:44:40:27:db:2c:e9:2a:5c:1d:20:b0:d6:9d:06:
cf:0b:66:2e:4a:d4:50:93:da:79:b2:09:13:c1:c1:
13:a5:9c:bb:49:ec:57:89:df:0b:c5:9c:e9:36:a2:
45:bc:d1:5d:e5:be:28:c3:78:e1:a2:c5:ef:f1:3c:
b1:37:8a:f1:af:ae:a0:03:8b:af:c3:7c:b0:5e:c9:
5c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:63:8D:13:0F:A0:ED:00:E1:5F:72:5B:4C:64:48:EE:8D:3C:C0:36
X509v3 Authority Key Identifier:
keyid:20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:b5:8a:0a:cb:b5:30:d9:a1:48:8e:e0:ff:2e:04:46:53:f1:
d9:da:79:e1:0e:e8:16:7a:82:fe:c5:84:c6:34:fd:75:6e:ad:
c1:5c:dc:e7:9a:ad:2e:de:8b:85:a1:61:4d:98:6c:93:9b:d9:
c9:d5:ae:dc:e8:c1:74:1d:01:c1:f9:f8:5e:14:21:f8:09:e4:
8c:ca:66:fb:90:fc:5f:c9:10:d3:43:80:24:11:73:ff:1b:61:
9d:9c:9a:eb:47:c1:6e:20:e0:be:e8:d9:4c:31:85:83:f3:7f:
cd:04:f3:95:d7:10:48:fa:5d:f2:37:3f:79:23:f9:e5:a1:e8:
f4:6c:d1:a1:d4:a0:9a:2c:dc:73:7a:54:bc:73:4b:31:6c:7b:
25:bd:63:ae:15:1c:2f:52:a2:05:6c:ee:ec:4b:2d:c3:0a:d7:
d4:9d:a5:6c:f0:86:91:62:90:71:36:46:1b:0b:59:8a:3e:2e:
9a:b9:67:83:d5:3a:51:2f:32:b8:e4:79:b3:0b:51:d2:e3:b1:
38:dd:e3:10:6b:fa:dd:d4:35:e0:49:a1:e1:98:2f:91:fc:93:
ea:ef:6b:df:90:a7:b5:58:5b:2e:13:16:44:94:a8:cb:90:50:
5d:34:91:11:cd:45:7b:c5:73:18:62:28:fe:a9:7c:5e:17:17:
0c:cf:7c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:00:00 2025 by rpki-client