Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: FeSHnNnoWr/XPu85QZkpQtrrm9O10Sd8erGkkl/482c=
Subject key identifier: 90:3C:D4:E2:49:5F:FD:60:D8:47:6F:E5:A4:C6:1B:B3:DF:D6:3D:C3
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 0197BD1079F2A8AB31302A9B4EFD92D12C4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0D99
Signing time: Sun 29 Jun 2025 19:01:02 +0000
Manifest this update: Sun 29 Jun 2025 19:01:02 +0000
Manifest next update: Mon 30 Jun 2025 19:01:02 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: a/rYfX6cuWN6kA9mGKGlC8x5P0wfjeJPtStsQkdKKfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 13:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bd:10:79:f2:a8:ab:31:30:2a:9b:4e:fd:92:d1:2c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Jun 29 19:01:02 2025 GMT
Not After : Jun 30 19:01:02 2025 GMT
Subject: CN=903cd4e2495ffd60d8476fe5a4c61bb3dfd63dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2d:f1:98:fb:d7:e1:f9:57:43:e3:48:17:6d:
b5:d1:9f:08:75:e0:09:77:d2:90:5f:e5:45:9c:c9:
66:8b:7e:83:9c:d3:0e:64:de:5a:ba:aa:80:0d:d9:
2d:78:f0:8b:13:ef:29:81:6b:14:1e:fe:2f:1f:c0:
4b:a2:14:f4:e6:30:03:7f:64:28:bf:3a:46:cc:cb:
67:bf:3e:b4:ae:f7:1c:06:95:3c:20:ea:af:3a:6b:
69:e5:34:58:75:d1:cc:82:00:a7:b2:7d:e7:50:76:
4a:48:ef:1f:05:f4:cd:70:c4:40:15:75:63:71:b3:
f4:6d:1d:1c:44:7d:7f:d5:e7:16:6b:ee:b5:ef:7d:
2c:2d:70:ea:ad:da:12:d2:69:5f:81:f4:5a:3d:b2:
e5:68:6b:90:d7:18:7e:0a:aa:9d:3a:a3:3f:e6:43:
dd:82:69:15:d0:a6:f7:87:30:11:36:15:26:ad:01:
95:86:28:4c:6d:9b:69:87:70:65:dc:1e:d8:57:6a:
f0:77:f6:7a:05:03:93:f5:93:0b:3e:61:c9:52:ad:
d9:bb:71:4e:3c:b0:a0:76:8c:4a:0b:fa:86:5c:78:
4c:b7:ec:92:64:d9:5a:67:45:f3:9f:e3:62:24:95:
9d:22:b4:aa:4e:3b:52:60:db:50:f7:65:73:ca:d7:
6f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3C:D4:E2:49:5F:FD:60:D8:47:6F:E5:A4:C6:1B:B3:DF:D6:3D:C3
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:16:82:b0:2b:74:44:db:25:58:e8:01:dc:74:6b:e7:55:02:
5a:cd:99:9c:4a:28:8c:02:42:d3:c8:0b:95:cc:2b:2a:2f:d2:
71:c4:43:2d:24:95:9c:c8:26:03:85:45:ea:f6:c4:65:c4:c3:
09:15:f0:ea:6f:a9:ba:c7:85:28:56:88:10:a8:1c:19:d6:18:
64:9e:d4:92:a4:38:41:c0:bb:13:6c:99:66:d7:50:72:42:31:
45:bb:85:f6:e8:e6:0c:fc:4c:3e:57:26:fb:2c:50:69:56:df:
a8:38:25:37:56:fc:58:48:55:8e:97:c1:e9:76:1e:2b:f8:0c:
09:fd:46:9a:ed:c2:86:6a:e3:37:8d:52:79:aa:6f:5b:c2:05:
3d:5e:19:40:9c:c6:5b:c4:0b:ba:77:c0:b8:21:bb:f6:22:42:
4c:87:61:c5:e8:b0:b3:05:c5:7e:e3:87:99:3b:54:ed:85:12:
5d:62:58:b4:80:24:fd:52:60:37:18:e0:cc:a2:e9:09:53:29:
d0:f9:19:25:4f:15:d8:24:f7:45:f7:6d:ef:78:ee:1b:7c:a3:
da:0e:3b:d3:f6:9b:b4:6c:e4:04:d1:20:eb:55:98:a6:e7:fa:
1d:da:dd:10:bd:57:ee:7c:21:b3:7a:63:a7:5b:d1:b6:ab:b9:
06:f0:2b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 21:03:55 2025 by rpki-client