Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: NdLIc58bspopCkim0yQuwFgkMIlO7HQ0lHu841EOnpQ=
Subject key identifier: 6F:E0:63:1C:06:1F:E0:A3:7F:0F:95:F1:21:3C:A6:21:15:AF:57:B8
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 0197B6D787DDBE2CA28D1E49EA45AECC2B77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 03C4
Signing time: Sat 28 Jun 2025 14:01:07 +0000
Manifest this update: Sat 28 Jun 2025 14:01:07 +0000
Manifest next update: Sun 29 Jun 2025 14:01:07 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: b1YLvIt4xLS1K4X+ERLHlzbz6i3lleqMuERKqa9JfAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:87:dd:be:2c:a2:8d:1e:49:ea:45:ae:cc:2b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Jun 28 14:01:07 2025 GMT
Not After : Jun 29 14:01:07 2025 GMT
Subject: CN=6fe0631c061fe0a37f0f95f1213ca62115af57b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8f:fd:a3:55:cd:aa:ac:86:c9:2d:1c:84:9f:
aa:8d:81:98:a3:e7:74:e1:3a:40:f5:32:38:fd:b9:
e6:92:53:b8:bc:93:55:12:c1:74:ce:59:04:47:60:
2d:5b:5c:34:87:2b:c5:f7:b6:50:af:52:11:4f:c2:
dc:07:6c:15:5d:d4:b6:60:5b:32:ca:44:f2:c9:65:
59:fc:16:95:25:25:64:b4:52:fb:42:fe:3b:27:44:
0b:ff:f5:d4:a5:7b:eb:a9:0e:46:a5:f5:08:49:8b:
5c:47:0d:04:c2:45:cc:42:ed:39:69:3a:74:22:5c:
f6:c8:0b:95:4d:ca:92:59:41:3e:c8:a6:5d:74:c2:
4d:c6:d3:9f:ef:ce:db:2a:dc:dc:53:24:02:25:a8:
8e:2d:c8:b7:f7:79:43:67:d8:fc:97:ad:21:b8:17:
79:47:53:54:96:d2:b1:cd:26:8b:36:fd:83:24:ae:
cd:4e:be:e6:a9:46:62:20:16:18:b6:96:52:21:09:
e4:e3:19:c2:92:38:72:9d:f7:0d:14:68:d9:14:52:
f5:05:91:da:4e:97:50:7f:0c:34:74:73:dc:95:45:
4f:03:ab:4f:63:a2:25:00:ef:20:e3:10:7f:d7:b7:
a1:60:04:c7:2c:9b:93:19:e1:14:88:8b:69:bb:15:
2f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E0:63:1C:06:1F:E0:A3:7F:0F:95:F1:21:3C:A6:21:15:AF:57:B8
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:86:55:d4:54:0f:f9:dc:dd:17:5b:17:2a:03:37:90:a6:6d:
7e:c3:14:47:b0:6d:d3:00:fc:3e:52:f1:7c:e5:8a:dc:c4:00:
84:18:aa:eb:47:8b:63:a7:fe:06:d6:4f:54:5e:0f:48:10:a7:
37:a9:7d:ba:b6:b6:6b:7a:4c:95:a2:b3:f6:9f:8d:d8:67:0e:
28:21:5b:be:5c:39:79:81:98:65:1a:e8:9e:c0:a1:a2:7d:e1:
5e:40:b6:12:af:af:6c:1e:f4:52:df:df:a3:5f:ae:57:75:7e:
87:b7:22:91:ef:e1:99:db:b9:f4:04:26:76:3e:45:8c:ab:80:
9a:d6:c6:a1:09:47:95:b6:41:9d:31:f1:df:52:19:7a:e7:dd:
f4:a9:d8:2c:d6:52:f5:f6:7e:65:13:6d:f1:6c:03:1b:9a:df:
0b:69:df:2b:bb:59:ab:89:11:05:7d:ab:51:0d:8b:98:4f:46:
8e:4b:db:85:a6:a2:45:fe:c7:01:12:69:e7:c5:dc:da:02:3c:
80:e2:fa:a4:9c:dd:7f:66:d3:ee:1d:11:15:9e:80:61:4a:cf:
67:ff:08:a8:f1:7f:03:af:06:21:c8:01:60:64:17:ca:06:9f:
14:ba:17:ac:6a:47:3c:99:bc:29:4f:a8:5b:2b:43:96:a6:4c:
01:10:15:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:08 2025 by rpki-client