Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: uDDO7W9jWT5uLehQ6tHipPjkfB+7hsQEKMgxPj9AxOs=
Subject key identifier: 83:27:31:C0:B6:F3:AC:4F:9B:FD:9F:F0:D9:1F:2A:04:6D:8E:A0:FC
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 0196C916CD0404D233432EFB67C438BDC2ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1539
Signing time: Tue 13 May 2025 10:00:36 +0000
Manifest this update: Tue 13 May 2025 10:00:36 +0000
Manifest next update: Wed 14 May 2025 10:00:36 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: MwNLXkK6qmT12nWoy3ZWbO7F1y9JUG7+3+bVX6k6htA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:16:cd:04:04:d2:33:43:2e:fb:67:c4:38:bd:c2:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: May 13 10:00:36 2025 GMT
Not After : May 14 10:00:36 2025 GMT
Subject: CN=832731c0b6f3ac4f9bfd9ff0d91f2a046d8ea0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0a:a8:97:19:51:7d:68:3b:12:de:b0:cd:0a:
1d:5a:07:d0:14:4d:c7:fd:2a:e4:c9:12:06:53:e3:
3d:4e:88:88:8a:6f:d1:5b:7d:cb:f5:df:b0:75:30:
45:e1:8f:aa:41:cf:7f:4e:bb:87:2d:7b:6e:d2:71:
c4:bb:47:de:bc:2e:d8:a4:73:c9:bb:e9:a7:a9:9f:
6c:e8:e8:82:78:ae:c4:d3:43:99:f7:b2:7d:ae:30:
12:2b:de:d7:2a:8c:41:b8:e0:22:e3:54:ce:09:4a:
52:71:02:3e:42:65:df:87:c0:f4:5c:44:0b:aa:f8:
3d:f0:95:78:af:4c:3b:63:07:95:12:60:74:7c:2e:
be:84:40:1e:c5:61:4b:4f:d2:87:60:01:fd:de:29:
53:32:d4:7a:4a:36:62:80:e7:68:52:89:3a:34:1a:
75:db:56:32:e5:be:fe:6a:01:1b:39:87:f0:a9:82:
0c:c1:08:fa:e9:81:17:0a:cf:7c:39:cb:37:4f:64:
d2:0f:bd:c4:38:1c:b6:1a:7f:42:55:60:8c:d5:ec:
13:d2:c3:0d:20:de:aa:17:15:0b:88:a0:1f:0f:23:
60:1c:21:90:38:42:19:51:df:2a:81:c2:af:49:80:
68:89:7f:48:45:53:66:f0:59:18:5c:b3:79:c3:7c:
3f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:27:31:C0:B6:F3:AC:4F:9B:FD:9F:F0:D9:1F:2A:04:6D:8E:A0:FC
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:36:1d:27:5a:66:31:17:5e:63:31:e1:60:de:f9:1f:25:18:
a7:dd:b2:99:18:b3:c9:8b:e9:b3:c1:4a:3a:86:9d:e8:92:6f:
46:a3:14:26:9a:db:7a:48:69:ee:ff:a2:00:02:43:14:9f:97:
bb:04:ea:fd:6c:fa:11:f6:f3:07:aa:20:ca:e7:61:66:b1:58:
42:6c:b3:15:53:8c:01:8a:91:44:6b:a3:64:27:58:60:bc:ae:
19:6d:58:fc:c8:a0:86:98:a0:ef:70:77:3f:78:21:dc:dc:85:
d5:52:ab:43:82:d2:b3:55:d5:9a:eb:ad:ae:02:2a:d0:96:56:
d1:9b:1f:a8:22:e1:94:4a:c0:de:2a:10:d2:ab:df:e7:4c:5f:
13:74:e9:d4:7d:a0:24:1e:f3:a1:19:85:87:82:cf:e4:cb:51:
f5:36:4e:8e:61:b2:dc:c3:9d:25:b5:33:fc:08:38:3c:cc:58:
66:80:e4:7e:28:98:21:4d:50:65:e6:81:87:00:90:85:67:38:
e1:8f:b9:83:a2:5d:f5:45:f6:4a:b1:10:73:30:bf:08:bc:a3:
be:5c:d8:ac:aa:8b:80:0b:7a:2d:f4:91:13:17:14:87:d2:ba:
03:f2:d6:9d:38:ee:76:41:4b:38:ee:29:fb:a1:fa:3e:00:e4:
b7:8d:89:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:39:35 2025 by rpki-client