Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: xgY3uTFzBnCBbgGihH316IXXsFDjaFnMiHO9AeMwNDw=
Subject key identifier: 34:D7:4C:62:15:79:27:E8:1E:48:0A:A0:A9:47:D9:78:74:88:30:6D
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 019921B271EC2E17ACD72FA436E16574326C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 04FD
Signing time: Sun 07 Sep 2025 01:02:46 +0000
Manifest this update: Sun 07 Sep 2025 01:02:46 +0000
Manifest next update: Mon 08 Sep 2025 01:02:46 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: z3Mm24P16FieHP5MBO9RV1MS7NMn8oZdMt21Vb4BdRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:71:ec:2e:17:ac:d7:2f:a4:36:e1:65:74:32:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: Sep 7 01:02:46 2025 GMT
Not After : Sep 8 01:02:46 2025 GMT
Subject: CN=34d74c62157927e81e480aa0a947d9787488306d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d5:a8:27:08:ec:13:16:58:22:76:8b:61:b6:
1e:99:0f:64:29:46:4f:8b:57:69:44:79:04:00:f0:
12:99:96:f8:c1:f7:69:27:f1:2e:f3:f5:65:56:57:
73:d3:87:a5:09:d8:0f:15:ef:e6:da:bf:ba:20:ba:
cf:e3:04:13:01:55:3c:a2:c6:1a:68:eb:c0:8a:39:
3b:ae:38:2a:aa:33:7c:a2:fe:12:fd:3f:a5:75:69:
91:59:84:18:db:98:1f:83:42:d9:ed:8d:7e:69:8c:
97:8b:3a:01:fd:57:b4:86:3d:58:1c:2e:3d:3b:66:
e4:8d:32:6e:38:11:a9:b0:34:2f:8f:41:d1:e0:65:
3c:d1:e1:38:f6:1a:33:58:51:bd:1e:7f:22:46:ae:
56:02:03:10:80:e4:47:e7:54:61:10:a5:89:80:ab:
31:9f:bb:c1:5b:02:c4:e9:13:f8:f1:e0:5a:a7:33:
c6:f0:2d:b9:e3:e1:fa:4f:86:18:8d:55:fb:f2:ce:
ee:2a:43:51:bf:20:38:27:f6:bb:3b:ad:d1:66:d5:
ea:16:0d:57:52:19:b9:2a:2a:16:af:ec:05:a1:e4:
86:8c:d1:69:b1:21:86:fc:07:36:12:e5:1c:f2:dd:
c9:c7:af:92:3a:eb:03:98:db:5a:7d:d1:8f:87:d3:
5c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D7:4C:62:15:79:27:E8:1E:48:0A:A0:A9:47:D9:78:74:88:30:6D
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:1c:4f:14:15:0e:b9:c7:9e:10:76:6c:64:cd:54:2b:ff:06:
50:4c:09:9a:bb:f6:31:bd:2d:57:fe:2c:4b:93:e5:fe:79:cf:
6b:64:1b:eb:68:73:54:c3:36:6a:10:2f:21:74:40:35:32:fa:
0e:1a:de:57:fd:3c:16:5e:a2:da:24:af:a3:c0:51:88:2f:0e:
5b:7e:50:4a:84:e8:1a:0d:37:97:1f:2a:48:ff:6c:2a:39:71:
cb:d3:01:f2:f8:91:bb:62:fa:e3:de:d1:d4:22:0d:99:35:69:
ed:a4:23:1a:a4:6c:82:cd:77:a6:64:65:f3:3e:44:7c:6e:e3:
d5:64:75:dd:55:a2:57:d8:a5:70:2c:60:a6:cd:54:0e:47:1d:
e9:59:fd:ba:ed:38:9b:85:e3:69:c6:ff:3b:5c:06:00:cf:85:
be:16:36:dc:fe:17:b7:f2:b2:84:39:ce:a0:7c:81:5f:c4:84:
ee:04:6b:c8:24:9b:dd:5f:fe:8d:96:4f:3f:96:1c:7d:ec:4f:
1d:5d:a6:f8:61:04:ba:bf:be:b5:dc:28:be:c9:bf:27:b4:ac:
e2:17:26:bf:ad:6b:8e:7c:96:b2:3e:7c:6d:e1:2c:d4:7d:86:
b4:73:25:8a:b0:dc:ed:b2:92:df:54:17:dd:4c:23:c7:d7:c4:
a4:ec:5a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:32 2025 by rpki-client