Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
File: I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json)
Hash identifier: IM9DFYoBUDMJmt9i4KuLNHJg54KxllLefatrqe6jiik=
Subject key identifier: 88:FD:21:CB:53:9B:97:1E:92:3F:CB:54:E2:73:FE:36:69:03:B4:FC
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Certificate issuer: /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial: 01975A24DBCA4C9358FDFA062B7E8042B9F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
Manifest number: 1586
Signing time: Tue 10 Jun 2025 14:00:54 +0000
Manifest this update: Tue 10 Jun 2025 14:00:54 +0000
Manifest next update: Wed 11 Jun 2025 14:00:54 +0000
Files and hashes: 1: 15gQ3l_CTz5DpsQh5tCstrbwJks.roa (hash: NBh6zaBQW3FImxNGTreLJET3gJwOeBKW+FttZU4GhEA=)
2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: 8ve+kxvO2IHNu+f1rx7NrKx3KY2AV9VgUn5q6bGhtZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:24:db:ca:4c:93:58:fd:fa:06:2b:7e:80:42:b9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Validity
Not Before: Jun 10 14:00:54 2025 GMT
Not After : Jun 11 14:00:54 2025 GMT
Subject: CN=88fd21cb539b971e923fcb54e273fe366903b4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:46:e5:81:c9:e9:5d:1d:82:fc:ca:0d:1c:b2:
57:48:76:11:6f:1a:c0:00:47:e6:06:92:84:1c:98:
f1:04:8c:85:0c:e6:45:ff:f8:a1:ae:25:d5:c4:27:
0d:d9:6c:22:b3:58:0c:45:4f:a2:2e:17:75:b7:10:
fe:4d:00:f6:ab:93:4c:d3:7d:ff:ef:e4:4c:6d:a1:
2d:1f:0d:4d:8a:17:bf:0b:29:63:13:d6:92:63:e6:
09:64:a9:f0:8f:b1:5e:81:ae:ae:df:56:31:96:d3:
44:e8:2c:76:ce:36:70:a4:bf:63:43:5d:95:ef:38:
c7:69:99:a3:7c:df:38:ae:6d:a5:0e:54:62:22:c5:
bf:eb:8d:0b:6a:8c:96:26:96:dd:e9:0b:38:a3:b8:
d9:6d:92:7b:d9:98:3b:41:1f:e1:56:33:ee:79:76:
08:7a:20:c3:5f:16:81:fb:06:85:f5:96:52:e4:4d:
a2:27:2b:63:7c:dc:c0:70:7b:3f:c9:9b:b1:7e:cd:
d5:0c:63:64:7f:2c:44:51:b0:47:dd:97:08:ae:50:
5c:f1:8e:52:ac:eb:5f:11:28:2a:f8:80:69:e1:44:
0e:2d:73:74:a1:9e:40:c7:6c:16:ce:c0:f0:99:fb:
d9:7b:2f:6a:dd:ba:de:2e:3a:ff:fd:e0:3c:c0:e1:
d2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FD:21:CB:53:9B:97:1E:92:3F:CB:54:E2:73:FE:36:69:03:B4:FC
X509v3 Authority Key Identifier:
keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:e0:cb:aa:01:cb:98:11:79:f5:eb:c6:45:76:4b:3a:fc:ce:
2c:95:94:26:b1:bc:ba:ab:23:fa:09:5c:9a:90:e5:c6:bb:e5:
9f:c8:2a:9e:dd:4d:58:d9:2a:d8:80:9c:d8:ef:e5:39:51:bf:
30:71:67:39:28:3e:7d:49:b5:95:30:a8:97:3e:2f:15:73:e9:
c9:02:c8:d5:3a:fa:06:82:3b:74:fa:c8:82:a0:43:6e:52:f5:
74:1e:4b:93:8a:aa:5a:34:8e:41:2a:1d:39:94:8d:78:66:75:
17:8f:5d:b7:cf:3e:cf:bf:cd:bf:45:7a:2f:89:2c:ed:f2:a2:
bf:c2:fa:97:69:aa:3b:bc:fc:e8:65:4b:8b:3c:ab:bb:c0:a2:
bc:05:c1:90:46:ad:b0:f1:29:cc:4d:35:e3:32:75:9f:30:54:
bd:86:73:3b:a1:de:27:42:16:9e:83:c1:42:93:fd:61:32:94:
ff:02:3d:75:a8:3c:98:3b:d9:01:af:c8:69:08:3d:6c:5c:79:
f6:ed:a5:cc:be:74:a5:3c:20:ba:e0:1b:68:50:89:85:72:09:
aa:5c:09:c0:d9:d4:f5:0d:69:be:9b:49:5a:8b:72:50:04:be:
95:98:8b:cc:4d:c3:f2:db:b6:52:87:54:d7:a7:94:31:9b:ed:
70:42:ae:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:03:50 2025 by rpki-client