Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: t9fUFtH9klHmRAeoRMy+mm6h1BFB960fTsOXwKNU1CY=
Subject key identifier: B4:D8:87:FB:FC:B0:CA:B7:BC:F0:CE:F1:E9:58:11:D0:A5:19:77:B2
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 019748C34FC6EA9E0C4ABA0FD253B43EB056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 038B
Signing time: Sat 07 Jun 2025 05:00:48 +0000
Manifest this update: Sat 07 Jun 2025 05:00:48 +0000
Manifest next update: Sun 08 Jun 2025 05:00:48 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: GcCBG2kOaAAoXfW2vTNpwyWiEXXI6+mvKvL4VUxi1ZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:4f:c6:ea:9e:0c:4a:ba:0f:d2:53:b4:3e:b0:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Jun 7 05:00:48 2025 GMT
Not After : Jun 8 05:00:48 2025 GMT
Subject: CN=b4d887fbfcb0cab7bcf0cef1e95811d0a51977b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:4d:9d:6b:0e:5e:a4:a8:6d:0d:4e:b5:7c:d8:
d7:8a:33:16:e3:a0:00:a6:2c:4f:b4:4c:cb:08:f8:
a1:dd:61:cd:f1:00:9b:9c:57:3b:b8:62:be:ac:fc:
88:2e:d5:71:e6:74:93:9a:fe:61:07:a1:8a:54:03:
93:c3:2e:66:49:bd:99:65:15:c4:84:83:4d:c5:af:
74:63:65:b6:71:64:d3:b8:f3:50:e3:78:8c:ee:f2:
f6:8c:6d:7e:4e:35:83:91:aa:8f:c5:41:11:e3:1b:
87:64:93:16:96:54:a4:83:7f:ec:1b:e7:9b:16:d4:
81:64:ec:47:28:78:25:05:18:1b:81:3d:eb:f1:3a:
24:44:44:df:c5:02:bb:1f:e8:df:de:89:02:6b:90:
67:e4:4c:09:ce:51:9a:7b:4e:a5:fc:41:16:d4:16:
91:03:56:3d:84:c5:13:06:a0:39:e7:7c:a9:34:e9:
db:87:40:80:82:96:00:b6:ee:c8:e0:c4:2c:80:2a:
84:77:dc:78:03:7d:47:a3:4e:a4:c1:ba:d7:0a:6a:
1b:86:98:16:a2:d1:95:69:81:a9:f8:55:8a:a1:f7:
ba:93:0c:2f:11:f7:31:d7:90:95:c6:6b:b7:94:d5:
ee:72:14:db:3a:13:9e:08:5c:0f:1c:1c:7a:41:0c:
ae:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D8:87:FB:FC:B0:CA:B7:BC:F0:CE:F1:E9:58:11:D0:A5:19:77:B2
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:44:fa:6f:7c:49:74:9b:9e:a2:ad:97:af:13:81:28:2c:f4:
7e:77:b4:f3:8d:59:35:fb:ae:62:75:95:6c:b7:06:43:a3:82:
fb:9c:d3:88:fb:7c:46:b1:ae:77:90:ed:14:d3:55:5c:8a:db:
8c:1e:64:a0:0f:87:a9:b8:3b:a2:43:8f:05:f6:5b:0b:1e:07:
4f:d8:23:da:e2:3f:c8:53:91:af:74:a4:f1:ab:d6:c9:c3:17:
28:cf:2e:71:02:77:8a:6c:5c:d7:67:ef:17:ac:be:fe:29:b4:
23:29:f0:03:c1:17:e5:30:fa:a2:04:8c:1a:1e:75:4e:fe:b1:
39:c7:98:6b:5c:a9:b0:67:92:49:f9:05:3e:b3:cc:8d:75:54:
cf:5d:d8:c1:e1:00:93:4c:89:74:67:c4:2e:56:9f:39:53:df:
99:36:ab:3d:5d:29:5c:ca:18:0b:3e:c6:cb:94:95:2e:28:3e:
51:9d:35:d1:72:00:b2:75:15:45:8a:ca:6c:d1:80:0d:87:89:
f5:e2:ca:07:04:42:35:d3:4f:04:9b:30:57:9d:ee:78:e3:fd:
a4:8f:37:76:49:4b:49:ad:f8:31:89:10:c3:38:ed:52:19:eb:
19:fe:33:d5:a7:6d:e4:08:ee:56:ec:9a:25:98:cf:a7:bc:6f:
a4:1d:0e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:37:18 2025 by rpki-client