Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: JdfFf96p4w+nEnwa9eea952BRKNo6L/+3ww0gGrENEE=
Subject key identifier: D5:DE:0B:B7:09:64:26:E6:D1:F9:47:51:3C:1F:FB:F4:59:F7:9E:F5
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 01974D452AB8968DD46A624A49FEC0470B55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 02:01:07 +0000
Manifest this update: Sun 08 Jun 2025 02:01:07 +0000
Manifest next update: Mon 09 Jun 2025 02:01:07 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: pJU6qEtyNByBJipOX9x/Vxshv62J/Qp0HFW7YrcK1Zc=)
2: Oic624JnJmz9lkyUCkfkxynrzXU.roa (hash: reuQNdNLE9OYq59c7HheLuUPxQ+GdUmZR0j+FA5WU8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:45:2a:b8:96:8d:d4:6a:62:4a:49:fe:c0:47:0b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Jun 8 02:01:07 2025 GMT
Not After : Jun 9 02:01:07 2025 GMT
Subject: CN=d5de0bb7096426e6d1f947513c1ffbf459f79ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d4:b5:b8:24:59:4f:85:ac:a3:47:7c:c6:8a:
e7:a9:fb:92:97:57:0d:e5:93:2d:c4:02:cc:5e:41:
f4:4b:cc:48:73:33:9b:d0:a9:1b:50:0f:82:4d:47:
c4:2c:92:12:e7:63:de:10:26:cb:44:79:bd:d3:42:
43:9a:f5:c5:66:25:aa:35:8f:1a:29:ab:f1:57:d4:
65:43:df:bf:3e:f7:08:d6:27:84:25:09:6c:1e:a3:
ee:65:77:7f:3b:6f:73:b6:90:22:04:26:85:da:b3:
61:44:af:02:5c:e9:8c:89:55:40:ef:e7:9b:7d:d3:
43:ff:1b:3c:ee:07:50:ce:d6:19:54:2c:68:46:01:
77:79:ac:7b:4d:bb:25:db:40:ba:98:02:51:de:86:
d9:25:71:62:b5:ec:cb:a3:fa:91:08:e4:12:15:4a:
83:4c:f7:77:e1:9a:51:78:ce:1b:d8:75:8e:21:5d:
56:17:ff:31:56:55:cb:b4:26:3f:3d:47:14:e8:93:
23:c8:25:b7:99:d0:0d:28:bb:22:37:d7:da:10:ea:
80:f2:25:00:c3:32:5c:85:d2:6a:59:0f:d7:b8:37:
bc:61:fb:99:b3:67:3d:dd:62:b9:a0:e9:85:e0:a1:
1e:41:f1:8c:15:32:ae:0a:c2:1c:97:a3:78:52:2c:
a4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DE:0B:B7:09:64:26:E6:D1:F9:47:51:3C:1F:FB:F4:59:F7:9E:F5
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:1f:30:71:13:6c:34:67:5c:59:9b:0b:fd:cf:d6:6c:bc:d3:
61:01:15:b0:f6:01:d2:bc:37:04:12:e9:d7:e4:e2:0f:75:cf:
ed:da:b9:a0:37:28:7e:e9:0d:38:cc:a1:0e:9b:32:82:58:95:
a2:c9:af:69:6b:3f:a5:a9:c5:0e:fe:86:7f:72:c2:1e:0f:d3:
c8:a2:80:c9:ef:53:1b:d9:40:a0:e2:de:06:94:1f:fe:1c:0d:
f0:6e:c4:92:f4:1a:7d:c1:cf:2f:b1:2f:80:5a:02:40:39:10:
6d:5f:20:7c:75:18:f4:c2:2d:fc:ca:66:77:4c:14:fd:37:5d:
2c:16:fb:7d:3f:41:71:55:e1:4c:b2:aa:98:e8:0a:71:e9:c7:
88:97:df:05:5d:8f:66:4f:54:8b:98:64:bb:76:0a:81:bf:2a:
fc:0a:f2:04:94:25:a3:f0:6a:c0:46:42:14:63:e7:8b:32:23:
3e:2f:29:6c:67:cb:4c:c3:50:02:ab:60:4a:f5:d8:8a:bb:86:
84:a2:c7:83:b6:b8:90:22:cf:72:c5:c1:18:59:91:ff:75:10:
a8:da:4d:4d:11:cf:f8:d6:ff:e2:5f:5c:24:99:2c:7a:21:4f:
f3:e8:8d:83:7c:5f:6c:2a:96:51:e9:3e:82:c2:03:ff:51:29:
01:03:2d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:15:16 2025 by rpki-client