Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json)
Hash identifier: nW8WEWk35doRjP8EoNFmVQXSMlzKQ84rwSlO2RNq1gg=
Subject key identifier: 57:2F:7F:10:41:43:E8:A0:F0:44:AA:B3:04:DB:8E:18:3C:09:C3:CD
Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Certificate serial: 0196A8433AE9C0D03D72647CF174ED70AD51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
Manifest number: 0699
Signing time: Wed 07 May 2025 01:01:40 +0000
Manifest this update: Wed 07 May 2025 01:01:40 +0000
Manifest next update: Thu 08 May 2025 01:01:40 +0000
Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: rh0lwz4ed2/Gh0bmW6K8zY5Px+s0lLrMmzPpT1QpxLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:43:3a:e9:c0:d0:3d:72:64:7c:f1:74:ed:70:ad:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Validity
Not Before: May 7 01:01:40 2025 GMT
Not After : May 8 01:01:40 2025 GMT
Subject: CN=572f7f104143e8a0f044aab304db8e183c09c3cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:25:c5:62:63:0c:7b:f7:f4:9d:3f:a5:dd:
80:37:0a:aa:08:47:8d:19:6e:d4:bd:f7:72:b9:7b:
3f:0f:73:54:30:8b:e4:17:e6:97:e2:ed:33:ce:6b:
25:dd:88:89:43:f7:fc:44:e5:14:bd:f3:15:b0:46:
68:9d:cb:60:83:ba:8c:29:96:56:15:a1:48:20:6d:
f2:10:d6:0a:47:cc:4b:6d:7d:9f:c9:a1:13:15:06:
b0:1c:78:97:ea:5f:ab:cc:85:33:1a:16:6c:1d:72:
d1:f0:00:66:0c:7a:be:4a:17:8d:ea:e0:7b:30:b4:
c7:30:28:8a:4e:01:f2:1e:ac:8c:ed:60:21:a0:9e:
9a:c9:c9:59:d4:ff:1e:68:8c:fd:37:9c:d7:66:44:
aa:2e:21:1e:93:33:c5:a6:a5:84:e9:6c:eb:92:f7:
60:7b:74:01:03:34:16:eb:5a:f7:13:90:73:79:b2:
10:6e:b9:47:ea:02:9f:d0:7a:8c:f4:a1:ef:84:65:
71:62:1a:92:23:1a:38:4a:37:08:2d:6f:28:c0:22:
12:79:f4:e9:35:07:ff:09:ca:2a:83:82:d9:42:1f:
e6:5b:0c:d3:3b:d0:c9:6c:e5:6a:a7:e1:fb:6e:5e:
f5:a9:e7:4f:27:e0:d1:47:c1:59:90:81:8c:3d:a0:
4f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:2F:7F:10:41:43:E8:A0:F0:44:AA:B3:04:DB:8E:18:3C:09:C3:CD
X509v3 Authority Key Identifier:
keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:64:07:91:7f:78:4c:07:93:6d:74:12:18:50:f1:4c:81:f5:
80:6d:c1:1c:e9:88:c1:dd:6a:46:f3:d7:62:1f:1f:53:1f:19:
20:6b:6a:a3:d0:e8:d5:ff:fb:56:7f:aa:0d:b6:d1:f0:73:89:
40:ee:bb:77:b6:e6:13:34:89:96:67:6b:01:42:07:2a:b5:8b:
91:93:2a:dc:df:1a:ff:65:3e:29:86:af:e3:93:5e:8b:8b:6a:
8a:be:c0:e6:48:01:b8:fb:95:78:c5:ca:1b:f8:77:19:43:22:
35:c8:a9:c0:9b:36:27:30:ab:6f:0f:60:34:7b:a1:30:47:6c:
01:eb:8e:b7:14:1d:86:ec:00:0d:cb:07:94:ab:e6:98:89:db:
2e:3b:99:f4:1b:17:ef:15:68:01:9b:1b:ec:da:9f:a6:0b:ed:
23:d6:16:fa:f5:48:cc:17:e0:63:99:21:2e:69:de:38:54:37:
17:f8:4c:04:12:1f:ad:fa:a9:5f:dc:f4:b4:06:b3:cb:07:5c:
c4:0b:50:3c:08:73:03:ec:5e:22:2f:35:7e:ce:a3:df:f2:34:
96:9a:bf:ec:0f:87:42:bc:f2:3a:50:5f:56:9f:2b:5e:26:5f:
38:54:b6:22:ff:dc:00:8a:f2:b4:b3:d1:cb:5d:4c:f6:36:97:
2d:25:14:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:25:07 2025 by rpki-client