Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: DJW1trP1t3E5HIL759IDoyiRt4RywyWLp9BcwPYTZlY=
Subject key identifier: D8:16:F4:EE:AB:80:4B:D2:F3:BE:01:53:C5:39:B8:40:A7:10:AD:4A
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 0196B069907ABBD188E70757769A685D6405
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 152E
Signing time: Thu 08 May 2025 15:00:30 +0000
Manifest this update: Thu 08 May 2025 15:00:30 +0000
Manifest next update: Fri 09 May 2025 15:00:30 +0000
Files and hashes: 1: HbgX7OEx-8g9VTQvYvbD_e0bPJ4.roa (hash: W8tzfEVYuZk67nGO3GJK/wSiRVXk9GPJqQ4Zpo1nq8A=)
2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: vlyOYckxM2amVp5blSK7eTEtMFyiIkEHphvafVysD+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:69:90:7a:bb:d1:88:e7:07:57:76:9a:68:5d:64:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: May 8 15:00:30 2025 GMT
Not After : May 9 15:00:30 2025 GMT
Subject: CN=d816f4eeab804bd2f3be0153c539b840a710ad4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:c5:19:bc:b0:bc:9d:6a:b7:85:a6:e5:12:
ef:cc:4b:4d:04:8f:ba:87:69:d3:8e:5a:bb:4e:59:
0e:52:c8:99:6e:1e:10:f0:0f:62:f6:a3:f4:b2:9b:
a8:cb:c0:e8:fa:74:a1:81:a3:dc:b6:56:34:47:e7:
4d:ac:f6:3f:25:5e:c4:01:e0:49:98:35:b0:ec:e9:
f4:f3:74:f6:ea:9f:93:35:e8:e8:7b:1f:5a:e7:51:
ad:b9:93:e7:90:9e:90:70:79:6d:81:bd:5b:0b:e7:
01:2b:89:9a:ec:2d:72:a7:13:d1:16:2d:4b:28:94:
f3:81:1c:2e:94:27:15:c7:58:1f:40:ac:a0:df:46:
31:0b:0d:27:5f:99:95:3a:b0:f6:eb:d4:93:9f:04:
6c:9a:13:73:7b:02:9b:24:aa:90:43:d0:9b:fb:b0:
46:00:3b:af:52:4b:53:d8:e4:c0:2f:01:0d:1e:85:
83:f7:24:4b:cf:d6:05:df:13:79:fd:4f:2b:b4:54:
20:dc:8f:c3:81:e6:27:11:2c:17:e0:bd:df:36:2c:
d6:c7:9a:b8:ec:4f:15:15:dc:40:c3:d5:59:34:b8:
d9:86:f8:d8:72:d8:8e:b6:0e:0b:12:e0:96:af:48:
b1:5c:ee:19:95:fb:e0:33:c9:63:32:6f:d6:0b:23:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:16:F4:EE:AB:80:4B:D2:F3:BE:01:53:C5:39:B8:40:A7:10:AD:4A
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:ea:c1:05:4e:92:6b:82:75:bc:1a:26:5e:03:58:82:9e:b1:
ee:84:64:db:84:77:4a:f9:22:22:ea:cc:d1:3f:0c:48:6b:76:
74:28:ef:3c:7d:77:3b:70:77:8d:e7:24:94:60:1c:a1:32:65:
75:bd:71:43:0d:fe:c6:d3:56:30:ad:13:a4:6c:60:f0:d2:b7:
64:76:04:26:d8:f7:cb:d6:81:3f:ae:e7:98:2d:00:70:c2:d1:
59:6d:cc:58:9d:ee:cb:48:5b:2d:3a:68:77:80:75:32:79:b7:
8b:a2:4d:52:26:00:f9:df:73:46:48:0a:58:69:df:08:74:81:
f6:eb:3c:6b:dc:21:9f:45:f5:98:64:d3:f2:f6:82:26:cd:4d:
9f:4c:8b:f8:83:df:69:49:92:35:d1:fc:b5:74:28:43:2f:22:
7d:24:5b:31:f1:c9:c1:f6:26:d9:5d:01:da:60:77:d1:e6:ec:
16:a1:7b:5b:3e:7d:bc:43:78:f0:47:88:ef:4f:4c:01:f2:4a:
10:b1:73:0b:94:1e:31:4e:54:67:3a:50:fa:68:94:c0:59:ef:
8e:c8:67:63:2c:6c:55:53:2b:c4:59:96:e8:05:d7:b1:3a:f3:
fe:98:1f:f3:56:95:4e:7a:e0:5a:c4:ad:fd:ad:dd:12:2a:5c:
db:25:08:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 22:14:51 2025 by rpki-client