Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: g45QpneqqqKb1Qbn/Sl+iW6ApyDPnOD8S8Uj0nflYpk=
Subject key identifier: 41:6C:2F:00:9A:4D:E7:F4:3F:3D:BA:4C:E9:DD:A6:40:79:2A:EE:5D
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 0197B8901A1DBFC0287C2F173CF171377328
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 0442
Signing time: Sat 28 Jun 2025 22:02:20 +0000
Manifest this update: Sat 28 Jun 2025 22:02:20 +0000
Manifest next update: Sun 29 Jun 2025 22:02:20 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: BVRxUgCwwmT+OlpE3MtKIcrLA3BzjePlXChO8ZB4s8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:1a:1d:bf:c0:28:7c:2f:17:3c:f1:71:37:73:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: Jun 28 22:02:20 2025 GMT
Not After : Jun 29 22:02:20 2025 GMT
Subject: CN=416c2f009a4de7f43f3dba4ce9dda640792aee5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:48:e5:3f:73:76:57:60:34:04:56:5d:5f:a4:
a5:40:44:6b:d7:e8:a3:ab:c3:ad:c1:75:4c:f7:08:
8d:c9:84:2e:b3:e9:16:af:8d:ec:64:74:2b:fe:6a:
5e:7e:7f:3d:b0:90:32:32:c1:8d:40:76:86:d2:6f:
9b:14:36:e5:0d:42:17:6e:a1:6e:7b:af:57:25:10:
36:00:a8:13:90:e8:93:e7:93:7f:3f:57:35:f7:2a:
e6:f4:94:6d:88:01:a3:d5:19:4b:1e:24:5e:14:76:
2e:85:26:34:cb:d3:d4:80:c9:3b:a0:c0:5d:b4:4e:
f7:3c:89:ea:4f:fd:67:42:a7:1e:49:f9:67:d6:b9:
45:56:18:6e:cf:d6:4e:7b:6f:e3:57:37:d9:1a:89:
67:7b:ac:9a:f7:0c:12:89:25:70:b4:e4:3e:31:7c:
1a:0d:70:b2:ec:dd:0c:07:2e:11:01:5c:8a:cb:0c:
cc:d4:6f:7e:7c:f1:01:0c:01:20:e2:6f:10:6f:b6:
36:c4:41:72:b6:b2:0a:e2:c9:15:56:e1:be:8a:cd:
df:fa:e0:43:24:d7:aa:4b:29:c9:32:62:e8:1c:d8:
c8:01:44:29:69:15:da:89:08:03:e8:bf:5c:69:34:
97:e7:a1:e6:00:ed:cb:90:ac:18:6f:a6:73:08:38:
4e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:6C:2F:00:9A:4D:E7:F4:3F:3D:BA:4C:E9:DD:A6:40:79:2A:EE:5D
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a7:69:90:a4:e4:5b:f9:95:40:64:2e:96:9e:eb:04:29:32:
cd:34:2f:13:56:ad:97:df:1e:f8:fa:bf:88:3b:1e:01:42:7b:
49:35:d6:45:5b:7d:f7:a2:91:a4:44:f0:8a:7d:2d:ab:0e:b2:
69:e0:ca:cd:78:d0:63:e5:1f:37:4a:a2:db:bd:16:65:25:c0:
ba:bf:c9:a2:68:68:04:10:9e:3b:56:00:28:b3:44:b7:2a:3b:
ea:5f:d5:d8:dd:1a:33:61:18:d3:9c:fc:38:0d:7e:c1:ce:de:
ff:6e:fe:f7:fc:2f:d2:31:cc:78:a4:12:f5:98:f0:b3:51:66:
61:de:50:d1:3a:dc:34:d6:df:92:ca:ef:f0:d9:44:5c:b4:bf:
a5:88:b7:29:8e:72:79:13:bd:53:e5:b1:e5:a0:18:9b:ad:5a:
03:64:11:94:82:c8:c2:66:15:87:69:2d:de:b1:60:ee:85:85:
5f:3a:6e:4b:55:dd:00:d4:d3:a4:34:1a:e7:c1:5c:9c:39:dc:
c3:18:24:d7:0a:0e:7b:bf:cb:e8:84:9e:fa:fe:94:b1:6c:38:
e5:df:b6:95:2a:6f:cd:9c:d9:e2:0d:19:e0:27:1f:a2:18:93:
3d:f1:9e:72:b9:39:d7:c6:db:99:d2:7b:3d:a7:f7:b2:ea:52:
78:b5:5d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:24:39 2025 by rpki-client