Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: uBFY+yywyJsOCi3yjaYGMjIHaMM3Nzg5IX4m+9QYYkA=
Subject key identifier: 8C:42:17:23:AA:D9:ED:5F:97:C5:48:D3:8A:47:CE:A6:A0:C1:E0:58
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 01974B8D3DFDF26153B560EACC26736AE7F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 12C3
Signing time: Sat 07 Jun 2025 18:00:36 +0000
Manifest this update: Sat 07 Jun 2025 18:00:36 +0000
Manifest next update: Sun 08 Jun 2025 18:00:36 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: 56OepWoZnq1whJj4kLWRyZcWaJxktl535AL7gJlXANw=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:3d:fd:f2:61:53:b5:60:ea:cc:26:73:6a:e7:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Jun 7 18:00:36 2025 GMT
Not After : Jun 8 18:00:36 2025 GMT
Subject: CN=8c421723aad9ed5f97c548d38a47cea6a0c1e058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4e:fb:30:1f:f1:03:b8:fc:32:95:44:24:48:
ab:ce:94:f4:fa:36:83:be:af:a3:2f:ba:55:fe:76:
43:7d:d2:dd:72:19:5b:d6:5d:e7:e4:03:5e:0d:8b:
19:b2:89:dd:b2:f9:3e:25:8b:25:a9:8c:fb:b4:46:
e0:76:4c:5a:ba:02:8f:c2:ee:2e:99:2a:91:89:58:
2c:21:0d:2f:14:65:79:40:98:46:9e:27:06:29:b7:
2d:e0:28:17:cc:3a:26:32:81:58:d8:1a:9b:52:49:
14:e4:7b:92:01:15:fc:02:c8:63:ce:e1:50:51:5c:
bd:c9:42:a1:00:a9:2a:ba:99:43:65:0e:a4:ab:81:
92:b0:7f:7f:fd:6b:c7:70:7b:12:2b:25:81:3b:4e:
d5:44:9e:bb:37:b2:4b:4f:cb:50:5a:cd:f6:0c:99:
0d:c8:27:0c:93:80:fe:6c:b0:c8:ec:01:4c:7f:f4:
19:c6:2e:ee:d9:96:77:e0:10:aa:12:ee:07:81:dc:
80:44:51:54:5b:78:d0:20:c0:e2:0c:b6:8e:92:cc:
3b:90:7f:61:5a:99:75:83:69:a1:08:55:00:1a:7d:
50:2e:80:c4:a0:a2:95:08:50:03:a2:ba:c5:52:ef:
f5:99:58:de:49:89:68:a8:eb:f8:06:e0:8c:9e:cd:
ca:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:42:17:23:AA:D9:ED:5F:97:C5:48:D3:8A:47:CE:A6:A0:C1:E0:58
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:56:3e:fb:a1:ae:cc:e3:ec:37:41:ed:cb:7c:9c:58:4a:b0:
7a:21:5c:ad:30:52:c7:82:8e:f0:53:29:71:0e:4c:be:3c:d9:
56:3c:35:dc:a8:0b:70:d2:73:8d:b9:a8:19:47:ef:98:b7:d3:
97:9a:17:e3:a2:de:02:7c:dd:8b:97:a0:eb:87:d5:40:33:3b:
71:50:7a:19:c4:60:7b:cf:bb:7e:71:27:46:02:1b:fb:86:64:
35:00:d2:e7:e4:67:88:3a:2c:2d:24:80:44:b1:4b:81:d5:8f:
16:a0:b2:84:c3:f0:50:16:07:fe:66:db:e0:66:6c:46:5e:0a:
16:a6:83:9a:d0:e2:4c:72:3a:90:c8:5c:d3:2b:17:c8:97:62:
b7:3d:c7:15:54:06:f4:91:be:90:7f:aa:8d:09:19:4a:7c:36:
18:d8:f4:43:0c:e4:c0:95:8f:bf:2b:cd:a0:4f:b5:ba:58:ff:
6d:6a:06:3f:db:e0:42:10:09:59:c9:63:47:4f:77:33:3e:d8:
3d:3e:de:a6:78:46:bd:e9:12:38:c7:bb:2f:5b:bf:2a:d8:b7:
b6:28:60:2d:0a:09:64:a0:59:b9:96:fe:80:04:4d:17:6f:a9:
0d:6c:21:54:13:3f:6a:f0:a1:c7:25:a6:85:1d:e2:26:25:54:
2a:43:5e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:05:26 2025 by rpki-client