Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: 4LKKsfGOFrjsA0vRs9rBy6iV/9ZgrsW6PY1Xg7shDhQ=
Subject key identifier: 5F:7D:52:5C:89:2C:DE:85:8B:7C:ED:48:58:C5:F2:17:9F:BB:F2:47
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 01975234CB4379C98ABE209090BF4E45FCF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 1581
Signing time: Mon 09 Jun 2025 01:01:20 +0000
Manifest this update: Mon 09 Jun 2025 01:01:20 +0000
Manifest next update: Tue 10 Jun 2025 01:01:20 +0000
Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=)
2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: Ie53zJlwVgwPSQb2aY9vHKF1D4H1uNFaq3skRns7ecg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:cb:43:79:c9:8a:be:20:90:90:bf:4e:45:fc:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Jun 9 01:01:20 2025 GMT
Not After : Jun 10 01:01:20 2025 GMT
Subject: CN=5f7d525c892cde858b7ced4858c5f2179fbbf247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e7:98:a0:ce:1c:7c:37:d9:4a:80:39:22:fc:
e3:66:49:59:dc:ca:97:08:62:77:ba:d4:25:b9:ee:
44:1e:76:08:49:ab:b1:c9:7a:ae:1e:12:54:61:ac:
e4:e6:64:c6:6d:3b:f3:f6:f9:53:03:40:f5:8e:2e:
9b:fa:6c:2a:14:54:9f:d5:bb:7a:51:68:89:c2:c8:
3b:0d:45:ce:28:f0:c1:10:15:ed:50:f0:85:4d:00:
3a:6d:44:09:04:46:c9:a3:39:08:93:6f:48:2d:07:
f8:61:e1:d8:0f:ac:0c:68:c2:b2:be:a3:78:60:4b:
6e:4a:42:b2:ef:82:01:51:1a:53:c6:3b:f8:2e:5d:
0f:57:74:93:ad:df:c2:49:4b:8e:55:ad:04:8c:98:
3d:23:1d:4d:ab:f4:63:93:9f:8d:e8:fe:36:14:06:
87:a9:c5:0c:f9:9b:92:21:0d:fc:c0:11:d9:36:8b:
e8:5a:30:8f:7a:b4:90:2e:59:9e:c2:63:e2:ab:f3:
6a:c7:d8:4a:92:31:cb:37:7b:6f:6a:ab:53:5d:d4:
d5:68:98:2d:bb:55:d4:ca:c0:d5:2f:19:6a:d9:ed:
e9:25:33:36:73:35:0a:e0:10:68:2a:fa:2f:ad:b6:
31:0d:9f:df:b5:76:4b:00:6f:cd:14:28:2f:0b:bb:
85:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7D:52:5C:89:2C:DE:85:8B:7C:ED:48:58:C5:F2:17:9F:BB:F2:47
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:2e:a1:75:65:55:9b:d8:5d:4f:3f:87:da:51:2c:6c:fa:1e:
73:d0:2d:d9:51:80:2d:1b:92:ab:f4:97:ae:f5:0b:44:00:4c:
07:7c:7a:8a:90:b9:72:ee:ab:d9:6f:d6:0f:c7:7f:db:4c:f5:
f2:53:20:3c:4f:df:dd:c5:16:9d:cd:b9:29:a6:d1:d4:a4:8b:
fd:f1:72:a8:c8:3b:69:de:33:c3:fb:cb:65:c8:d8:1f:fa:70:
b5:7c:a5:d4:3d:6b:16:d1:1e:f1:86:59:ca:a8:9e:3d:ce:4e:
f3:ad:bf:53:a2:1f:02:fc:60:c6:0f:84:f1:f1:5d:38:9a:4f:
15:ce:78:9f:8b:2e:e1:f4:1a:55:11:fa:25:3d:f9:24:45:c0:
4f:f1:f8:b4:0f:da:23:f9:5d:e3:df:14:12:4e:ea:c6:55:c6:
f4:b5:cd:e5:a5:f6:ca:82:79:0a:e7:69:78:a2:60:f3:99:5f:
46:50:4e:6a:b0:bd:af:55:13:1a:35:8c:7e:8b:90:da:56:08:
30:6d:70:81:1a:74:bd:9f:ea:9f:03:b2:8b:66:a5:4a:8f:6f:
85:1c:c3:b2:07:cb:ba:92:84:cb:db:fc:75:99:e8:ba:41:81:
27:d5:25:40:e2:67:f7:37:51:da:2c:f1:ef:24:2c:26:ef:40:
13:2a:4f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:08:45 2025 by rpki-client