Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
File: IG0YKjtEp74F0-5w3JCoXVer-40.mft (raw, json)
Hash identifier: H/Y/t9jmMW7CDVMgv86wb59RL3cX4T2oPgL2mhJiKLg=
Subject key identifier: E2:58:8F:A4:57:58:C8:A5:B6:BD:45:A3:03:BC:59:E9:FE:BE:70:8F
Authority key identifier: 20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
Certificate issuer: /CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Certificate serial: 019749316D418B9A811127CC1BBE5B69261E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
Manifest number: 14DE
Signing time: Sat 07 Jun 2025 07:01:05 +0000
Manifest this update: Sat 07 Jun 2025 07:01:05 +0000
Manifest next update: Sun 08 Jun 2025 07:01:05 +0000
Files and hashes: 1: IG0YKjtEp74F0-5w3JCoXVer-40.crl (hash: uvuk3zBxxmV/rbxK1QeGHiYmohcyH4EMS7Ft7wJw/5o=)
2: oL5s4daZ2-CvSDbZedMFWpoaJg4.roa (hash: rBJTh0rRi4HBxgXoejT0Pcmh+tBjyPVq1RYIy0Ljiec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:6d:41:8b:9a:81:11:27:cc:1b:be:5b:69:26:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Validity
Not Before: Jun 7 07:01:05 2025 GMT
Not After : Jun 8 07:01:05 2025 GMT
Subject: CN=e2588fa45758c8a5b6bd45a303bc59e9febe708f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:24:e2:72:9d:a3:5f:2b:c7:0a:cb:e6:9c:fb:
2d:c3:ea:8f:e9:4d:8d:3d:5c:0d:43:fb:1e:fd:10:
9a:e9:65:bb:2e:91:99:e1:36:6a:93:a3:2b:cb:e2:
86:a2:ea:28:da:90:a2:09:d3:6e:76:76:3e:bc:0f:
23:2e:0e:66:fa:ee:f4:cd:b6:1b:c8:68:11:bf:69:
c5:34:ee:8d:dc:7f:bd:c2:62:7d:29:9a:76:d2:1f:
7d:eb:94:63:5c:79:d4:ec:a9:01:67:43:a2:75:30:
ee:3a:80:cb:51:5a:1f:63:88:17:ed:9b:34:6a:d1:
fe:45:3e:2e:68:55:4a:d7:63:5f:f3:4f:d0:b6:93:
87:a5:53:26:63:58:c7:a4:65:0f:b2:e2:93:0b:56:
c6:d9:90:15:b1:3f:e0:1d:e6:53:87:41:aa:0a:23:
06:21:e8:c3:46:be:dc:a9:16:3c:75:cf:b4:cb:91:
6a:a3:a5:23:d6:37:02:8b:eb:c3:45:dd:e5:3f:4d:
72:0d:59:e0:14:57:86:37:6d:06:23:21:61:1f:12:
8f:33:75:6f:37:c4:31:0a:99:64:ab:ac:38:34:6c:
73:f8:20:1d:25:62:b8:4c:bb:c5:fb:94:83:18:bf:
7c:e6:53:ec:4b:2d:2c:bf:b4:3f:63:24:ef:eb:84:
82:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:58:8F:A4:57:58:C8:A5:B6:BD:45:A3:03:BC:59:E9:FE:BE:70:8F
X509v3 Authority Key Identifier:
keyid:20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:59:0e:ba:6f:de:35:43:2c:7a:17:16:39:aa:28:79:54:cc:
fb:3f:fd:f0:08:b5:0e:5b:c1:c1:da:1b:79:8d:83:30:9c:73:
0f:a0:8c:b1:75:31:cc:5e:38:2f:c6:9f:51:fc:8a:dc:e6:0b:
d4:7c:49:fe:7e:b8:e6:71:a9:41:67:c6:3b:e0:3a:34:7f:8f:
e4:e9:f2:4d:9e:f8:25:2a:f2:a4:29:11:e0:17:53:2a:64:42:
0c:39:6d:2b:c6:91:11:dd:4c:c7:1b:3c:c2:18:b5:78:f3:c6:
54:9e:93:9b:89:cd:c0:77:71:b9:76:d4:44:d1:3e:e3:2c:98:
0d:8e:5c:30:1a:35:cd:85:da:02:1c:1b:62:a5:fb:85:7e:27:
3c:ef:f8:cb:21:05:74:fc:48:70:fa:6d:6a:32:4a:81:9b:e0:
f9:ca:0b:0f:ec:b0:3d:f9:18:fe:ae:b3:24:c6:49:bd:7c:a1:
e9:fe:69:0b:bd:f7:61:f7:b4:41:3f:dc:4a:06:d8:a2:d9:9d:
5f:43:b7:85:8e:81:1a:39:98:66:4f:3c:ef:9d:47:4b:6d:49:
70:1d:d6:b2:08:98:35:18:e4:b7:db:68:83:a3:4e:fc:4c:6b:
a8:c3:27:83:80:b1:da:c0:1d:e7:80:dc:42:58:b7:c9:77:09:
d2:75:f3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:51:12 2025 by rpki-client