Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: G0RUyTpDPBOrcFcIVLSEiWz21TIctrFqjQPk/cVoOds=
Subject key identifier: 59:5C:C9:19:A7:FE:35:07:AA:10:38:5D:C8:7D:C5:56:F1:13:43:33
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 0197B6A1552A6591AA6DBB464FC1BB2A40CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 05F1
Signing time: Sat 28 Jun 2025 13:01:55 +0000
Manifest this update: Sat 28 Jun 2025 13:01:55 +0000
Manifest next update: Sun 29 Jun 2025 13:01:55 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: QDzztlMBe/W6fr/alFNHcP0Ej8qf6CQ4tKyCxwAg1As=)
2: v5LwLHwuCUZrT_0G6r3v0bfLSQs.roa (hash: +ztaiH2S/aHDtgvKfj/YkXPsW58SyJ9uS27Ej7psyFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:55:2a:65:91:aa:6d:bb:46:4f:c1:bb:2a:40:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Jun 28 13:01:55 2025 GMT
Not After : Jun 29 13:01:55 2025 GMT
Subject: CN=595cc919a7fe3507aa10385dc87dc556f1134333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dd:5e:12:63:95:d9:32:59:cf:ad:e3:86:88:
c5:63:1c:64:8d:9b:b0:15:a5:59:34:dd:b1:1a:07:
70:99:01:58:cb:50:54:1d:c1:98:f7:6d:4b:25:d7:
d1:16:59:c2:2d:be:a1:d1:21:9d:9b:1b:e3:5e:d8:
05:4a:0f:ae:74:e2:e2:87:06:c8:35:53:f5:d0:57:
e5:66:6c:21:f9:bf:d7:8f:19:73:1e:02:52:74:b6:
d0:c6:1d:57:06:1e:f3:53:df:7b:70:89:70:65:31:
fc:df:93:f5:ea:94:5f:21:77:0c:52:a0:f7:a9:18:
5a:46:4d:cd:a0:a3:72:95:81:43:b6:67:7a:54:40:
06:ff:86:7b:dd:45:27:b4:6a:08:6d:12:e9:64:73:
5f:78:22:f7:23:cb:9e:07:da:06:05:8f:a0:38:33:
a5:e8:d0:64:7f:8c:18:7d:57:f2:02:ab:e9:48:67:
bd:c8:bd:83:32:36:b5:62:84:70:b4:be:1a:f5:e7:
6f:cc:6e:35:49:73:24:24:41:a5:4e:57:58:37:6a:
bf:9b:f9:b5:b0:ab:44:e3:48:6d:34:e3:06:7c:e3:
7c:0b:0d:c8:49:48:72:81:69:cf:ff:52:d7:0f:14:
70:11:c4:85:6b:e9:d1:21:90:1a:ed:2a:8e:86:b1:
65:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5C:C9:19:A7:FE:35:07:AA:10:38:5D:C8:7D:C5:56:F1:13:43:33
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:65:e8:d0:f3:74:dd:5c:d4:29:3a:11:a6:e2:a3:43:38:5f:
a2:bf:7d:33:22:fe:53:4a:f6:ff:47:70:88:26:d3:ba:1d:f5:
3b:14:3e:db:c8:12:85:3f:4a:d8:df:4f:e6:a8:ff:fe:d4:b9:
fd:1a:2c:ae:fa:89:36:93:ae:51:7f:e8:3b:35:30:94:71:13:
ae:50:b5:22:38:6d:1c:e2:ff:6e:28:4f:94:c2:b6:7a:8d:91:
31:e6:9f:1f:32:e5:3f:f2:fe:18:e6:15:77:20:88:83:f7:60:
c1:5e:89:08:59:4b:1e:40:8e:4a:65:9f:8a:42:53:b1:b8:b0:
46:5e:9b:e6:97:64:e8:89:10:1d:d9:6e:a9:62:99:30:2e:5f:
4b:30:d7:03:10:2f:b0:b8:77:d0:57:b1:d8:c9:2d:55:dd:44:
79:e1:d8:76:63:5f:cd:56:d0:11:e5:7f:2c:e8:07:b4:a1:31:
4d:f5:a5:03:2d:47:53:7c:3b:38:7c:7b:67:f1:8a:4e:82:df:
b5:d5:c3:1e:e2:4d:0a:95:be:b4:ae:5d:55:68:12:6d:fc:9f:
ef:05:a9:04:b5:76:08:de:1d:d0:15:68:f3:80:69:73:41:bb:
a9:7e:30:ea:83:d9:c3:d5:ff:8d:83:70:58:5c:77:4b:ec:69:
e0:1f:0b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:04:02 2025 by rpki-client