Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: yTOxjtlR6nb5/pcgtsGNRn+9r5rgZ/vfH6cI+Q4+2rw=
Subject key identifier: 83:82:00:51:08:3D:2B:50:D4:BE:12:EA:9E:CE:34:CF:DC:65:D5:8D
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 0197B7450851DE2BEACA78A088EDAD2B05EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 0364
Signing time: Sat 28 Jun 2025 16:00:43 +0000
Manifest this update: Sat 28 Jun 2025 16:00:43 +0000
Manifest next update: Sun 29 Jun 2025 16:00:43 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: m9Fi76N7/QroCw0K5/2MYzOR3loOsGV3HAKUzUp3KZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:08:51:de:2b:ea:ca:78:a0:88:ed:ad:2b:05:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Jun 28 16:00:43 2025 GMT
Not After : Jun 29 16:00:43 2025 GMT
Subject: CN=83820051083d2b50d4be12ea9ece34cfdc65d58d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:4a:51:8a:8f:14:f4:79:a9:fb:93:32:35:
af:2a:d4:42:a0:90:53:b0:41:93:aa:30:64:62:ff:
43:e2:82:f1:d7:04:31:e7:8a:46:64:b4:3a:46:b2:
89:0b:65:e6:78:a6:44:f9:36:8e:0f:47:4c:4f:7a:
47:f0:5a:66:28:d5:a8:27:32:16:f6:e0:91:8f:b8:
e7:01:93:81:6a:c7:41:47:3b:14:c7:e5:18:43:79:
89:5f:95:9c:24:37:f5:c2:a5:af:51:af:25:2b:bf:
5a:21:d3:1f:e1:20:ad:e5:c5:78:de:9d:92:db:4e:
51:b1:2c:b3:db:81:e9:1d:c4:a5:1f:e3:2a:e5:91:
75:b0:33:a1:a9:99:68:0c:e7:56:18:a8:2c:69:b7:
e6:3f:38:28:2d:26:40:66:d7:00:9a:17:8b:65:40:
b0:18:8e:15:66:25:b6:4d:5a:30:7c:6f:8b:f7:99:
1d:9b:de:de:b4:cb:14:25:0e:67:5e:db:c8:e4:dd:
2f:eb:57:dc:14:da:ad:53:48:25:85:1b:3e:40:8e:
b4:22:32:2c:e6:c3:cc:13:d0:df:6d:b9:a8:74:4b:
da:a7:32:38:f0:5a:3a:ad:d6:e3:fb:c3:a2:d6:94:
65:d2:59:1a:44:3d:83:57:da:3d:5a:46:dc:b9:ad:
30:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:82:00:51:08:3D:2B:50:D4:BE:12:EA:9E:CE:34:CF:DC:65:D5:8D
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:e3:f9:9d:f5:27:7b:42:1a:3e:5d:02:14:84:09:c7:9c:21:
12:38:ea:8a:4a:cb:22:8b:ee:7f:38:b5:48:ac:da:14:be:06:
44:d3:d9:f2:12:bf:f5:82:92:9b:b6:61:b9:eb:3a:b1:c8:df:
12:9e:01:a7:97:67:e9:8e:35:2f:27:4c:3f:8e:e8:8e:c4:2c:
81:99:bf:7a:48:f8:20:4d:7b:64:12:7c:23:18:b2:cd:60:91:
28:62:84:47:38:3c:49:97:ed:7f:aa:f5:c3:c9:70:23:33:23:
64:3a:2b:1a:86:98:67:00:3a:fc:86:0a:ce:a8:47:36:e8:7c:
42:d2:b8:b0:51:82:8d:f3:54:f6:e8:3a:9f:c0:db:7c:9a:8f:
6b:81:e7:0a:31:87:d5:05:d1:de:0f:24:5a:43:ce:d4:8c:ed:
f3:4d:4a:d3:36:8c:9e:9c:89:1d:92:09:0e:c6:72:3f:10:c2:
6e:ac:58:dd:6b:e0:bc:72:bb:db:c1:54:52:42:31:67:c8:30:
f7:3c:b1:17:dd:ac:b9:0e:fa:eb:99:d2:67:5a:55:e8:5b:ae:
11:1c:b2:c6:bf:dc:cf:01:6d:4d:37:81:d8:be:39:79:5f:2b:
40:3b:a9:da:d1:ee:f9:29:55:b6:46:62:5b:ef:01:a8:c4:7c:
37:bd:c6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:13:56 2025 by rpki-client