Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: ucF7jlW/TYMI9WyV0z2nUzwlouqx2n+01YoKElxNqrg=
Subject key identifier: D0:E5:8C:6F:83:B4:59:96:3A:66:9C:57:55:32:FC:26:98:F4:46:5E
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 01974B8DC7986A07026198B03E545A5D2CB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 1558
Signing time: Sat 07 Jun 2025 18:01:12 +0000
Manifest this update: Sat 07 Jun 2025 18:01:12 +0000
Manifest next update: Sun 08 Jun 2025 18:01:12 +0000
Files and hashes: 1: 2ttxDr4pGnjxuFL3h06WTGhjE60.roa (hash: gb8hbvNo/pcY/swamzsbRwiOgi4eH7YRN51AtOhEfsU=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: FlSCHtHmt/db7/Ah+scCag1wwsUaEygMERdnOROJQxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:c7:98:6a:07:02:61:98:b0:3e:54:5a:5d:2c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Jun 7 18:01:12 2025 GMT
Not After : Jun 8 18:01:12 2025 GMT
Subject: CN=d0e58c6f83b459963a669c575532fc2698f4465e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:e0:85:c4:fc:c5:3a:3e:6e:49:61:42:1c:
53:0e:91:7a:2f:c4:ab:f1:00:d5:67:95:57:8a:09:
89:1b:ac:d5:00:38:1f:00:8f:05:83:6d:9b:66:0f:
de:0f:eb:68:dc:5a:86:c4:a2:92:59:d3:74:1c:29:
88:7e:4b:cb:e4:f0:76:ee:0d:72:94:7e:d2:35:ba:
ba:ad:88:e1:62:fb:61:d2:7d:bf:4b:02:c6:8d:62:
ac:8d:5b:4d:2e:6f:c6:8f:87:a7:dc:2a:3f:f1:76:
39:2d:ae:8c:53:9f:ba:d4:82:ff:56:ec:20:93:a5:
e9:fd:d1:dd:3b:7d:c9:01:72:e0:ad:79:dc:f2:7f:
e4:4c:38:08:27:de:e5:1e:ec:18:f0:92:9e:49:13:
ac:d2:74:8b:42:fb:f4:4c:d8:ca:41:0d:7d:96:56:
e2:c4:92:fb:e4:75:90:14:fa:43:cb:f0:06:63:67:
0b:9d:2b:57:b1:4a:07:5c:8a:33:82:e5:0d:b4:c0:
6a:06:2c:3a:c6:fd:1c:14:39:b8:bc:1c:21:34:99:
72:68:b8:a9:6c:de:6d:66:91:19:56:7e:7b:0d:c7:
85:23:f8:de:c2:0c:b4:3a:49:30:16:01:e3:c5:55:
5e:b9:7b:90:2e:d4:c4:7f:93:e9:65:0c:31:ca:0e:
8e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E5:8C:6F:83:B4:59:96:3A:66:9C:57:55:32:FC:26:98:F4:46:5E
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:6a:1a:05:dd:fd:70:0c:a2:57:51:ce:36:34:ab:c0:e7:d3:
39:94:22:16:8b:95:d8:db:cb:04:04:f3:ae:34:da:a8:9b:b6:
59:8a:99:ad:7b:76:53:ac:3e:22:82:53:00:9c:10:1c:47:01:
8e:64:01:56:47:f7:6d:43:ce:f1:d2:7d:82:26:a5:db:0f:53:
f3:41:44:79:a5:86:72:25:ee:55:f5:84:71:62:03:f6:f6:e2:
c9:85:79:1d:ef:d3:8c:25:9e:ba:c3:b8:84:c6:34:ca:68:c7:
cc:2b:9a:7a:12:4f:b6:17:fa:06:4c:e5:53:45:f5:fa:a4:d4:
c4:88:a4:87:41:52:cf:62:02:c9:b7:aa:ae:08:3a:13:d0:db:
c9:ef:55:32:82:0c:a1:33:38:ad:2a:75:d5:c7:14:15:40:db:
4f:dd:1b:3e:a2:27:cb:b7:b1:31:c1:d6:d0:84:22:5e:44:ff:
0e:67:3f:31:e7:95:7f:93:94:88:7a:3c:e3:3d:67:56:1b:68:
11:5e:b6:3a:c8:bf:e9:e2:20:a8:22:ab:5a:5a:8e:22:ab:f0:
30:bf:cd:1c:67:a2:10:45:49:b0:fd:8d:1b:17:72:bd:4c:f8:
0b:72:58:f6:3b:8e:06:e9:74:31:1f:48:f4:92:1b:9a:6e:87:
d5:83:02:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:41:01 2025 by rpki-client