Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: zEJzDRXZvszp4d+lYQb5qkPT9Cyy9t/oDUqDz1fSu7Y=
Subject key identifier: 5E:1F:49:0D:B0:CD:17:EC:8E:A5:EF:A1:88:E7:8C:F0:F7:65:01:53
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 01974A0D06BF655BF4ABF7D038BF7ECF61DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 82
Signing time: Sat 07 Jun 2025 11:00:57 +0000
Manifest this update: Sat 07 Jun 2025 11:00:57 +0000
Manifest next update: Sun 08 Jun 2025 11:00:57 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: n+C3pKK+DNIfu5aHs4T3zoGa6buVYvlwH3FyQTaOhNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0d:06:bf:65:5b:f4:ab:f7:d0:38:bf:7e:cf:61:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Jun 7 11:00:57 2025 GMT
Not After : Jun 8 11:00:57 2025 GMT
Subject: CN=5e1f490db0cd17ec8ea5efa188e78cf0f7650153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:15:32:45:62:bf:39:e3:f6:f0:78:f0:31:60:
9d:9b:9a:64:30:eb:bd:23:c6:28:96:65:62:4f:e0:
16:92:5e:39:ad:97:91:7d:0a:c3:38:37:2f:8e:61:
78:9b:04:ec:96:d0:e6:a3:2c:b4:5b:27:34:07:27:
c8:bb:95:df:52:aa:b7:f1:03:7d:64:99:f5:75:ac:
ff:47:19:44:a3:d5:88:b3:07:e9:33:1d:04:dd:91:
15:7b:60:06:3c:79:ff:fd:d1:9e:7e:eb:65:a1:3d:
6c:9a:f0:3c:ef:7c:f5:9f:e5:14:61:07:51:2e:d3:
01:9b:2c:ea:e8:09:22:19:01:2f:1d:1d:6e:d2:30:
81:86:49:84:e0:c6:36:2c:b6:fb:f7:ff:87:3b:f9:
36:c0:24:fd:65:28:01:d7:e0:49:38:af:09:94:6f:
f9:0c:6f:0e:95:c8:34:94:f1:5f:32:a9:6c:8e:b9:
15:3a:87:29:72:69:bb:2a:eb:02:01:70:66:9f:bf:
3c:2e:78:34:f1:04:62:4c:61:00:30:f1:d3:9f:10:
77:55:98:8a:4c:69:ab:b6:35:80:61:9d:c8:ef:39:
a9:12:b1:c6:64:ab:96:65:c5:79:3a:e3:01:7d:c3:
74:30:ae:e0:c4:11:8f:60:3f:81:82:e9:79:87:73:
62:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1F:49:0D:B0:CD:17:EC:8E:A5:EF:A1:88:E7:8C:F0:F7:65:01:53
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:a3:8f:47:92:64:17:2d:00:57:b5:98:c3:4a:58:c4:c9:9f:
7e:d2:d4:ca:da:fe:5d:00:37:e5:16:a9:f5:64:53:fb:c9:dc:
8f:45:22:2b:6a:42:db:71:d5:09:fe:85:84:d1:1c:53:d9:0a:
b7:3e:7d:91:9e:72:ef:49:2b:2b:09:a2:2b:ad:a1:a5:f0:37:
d2:43:54:ea:55:dc:b8:c6:47:43:b5:ef:c9:e5:7f:50:ce:83:
6f:07:1b:0d:91:f8:e9:da:e3:0d:e0:0c:30:3f:dc:f9:d4:e2:
b5:21:b3:99:fe:75:6b:36:31:01:8b:c5:d9:32:86:27:f1:c4:
18:6c:6c:69:fd:a9:96:b8:b6:ee:81:65:95:30:0c:d5:1b:2e:
5b:c4:17:41:20:03:e0:00:bc:15:b1:63:8a:78:82:e7:68:4e:
b4:db:bd:6b:ea:9e:2e:20:d1:d9:b8:45:2d:6a:a2:51:b6:86:
f8:26:28:02:36:ea:a4:bf:00:35:15:31:7f:6a:2f:96:c6:5b:
f5:98:fe:22:7d:46:80:37:5b:e3:51:75:f2:f1:6a:5e:14:b9:
34:7d:30:75:6e:94:08:0b:4c:26:79:d0:ac:dd:2b:e6:29:64:
a3:e1:16:6d:8f:29:68:e5:34:7d:33:b1:0f:9b:04:cb:95:99:
f5:46:43:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:17:08 2025 by rpki-client