Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: /1bqrtIWJ7LoYucj4DJ2cvf+8OeIuNZg/0pXiR/PWZU=
Subject key identifier: 11:86:4D:C5:D4:2A:A7:C8:E5:E0:56:B4:A3:3C:A1:F6:80:5B:21:F5
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 019750B373100395477917C5F8E533E70131
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 087C
Signing time: Sun 08 Jun 2025 18:00:27 +0000
Manifest this update: Sun 08 Jun 2025 18:00:27 +0000
Manifest next update: Mon 09 Jun 2025 18:00:27 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: /FG0DZt/xsYZngYUz/3M/+GzHcLcIVPgPcD14h31Q0Y=)
2: 4Eso2GRh3TFlocCc5lcI1-kD4Pk.roa (hash: ZZWcQEmA2vmSeltVrHKBZfPJ+X7E/tLB/wKbTZ0f8BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:73:10:03:95:47:79:17:c5:f8:e5:33:e7:01:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Jun 8 18:00:27 2025 GMT
Not After : Jun 9 18:00:27 2025 GMT
Subject: CN=11864dc5d42aa7c8e5e056b4a33ca1f6805b21f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:a6:d4:02:31:fd:34:ed:08:77:a1:af:5a:
c4:18:71:40:47:cc:22:7e:d8:7e:81:7d:15:b6:2a:
a8:48:0c:8f:cf:9a:68:f5:22:c2:28:ca:91:38:4c:
48:71:0b:14:b2:29:3d:b3:f8:a3:18:11:23:bd:82:
5f:45:c5:16:04:8d:f8:fa:8d:68:53:4a:f7:2e:31:
ba:59:1d:5e:3c:1a:f8:55:85:ff:17:fd:54:9a:11:
2b:5f:39:1a:1b:cb:2f:94:ab:73:b4:c5:40:06:9c:
27:55:e4:46:d6:db:7e:64:51:49:56:42:c2:1c:dd:
d9:71:d3:76:27:ca:b8:46:b4:5e:48:f7:79:85:50:
31:bf:a4:ee:62:c4:0a:af:23:99:df:51:b1:50:c3:
ee:2a:f2:74:e5:c1:90:de:b9:9a:84:e9:17:b1:8a:
41:e9:2d:13:c6:c9:50:24:51:e2:9c:5f:b7:03:4d:
3a:03:e8:f1:f3:60:9f:58:d1:ce:15:8f:69:8b:bf:
6e:27:12:37:15:4a:3c:4d:98:62:10:b9:e9:af:40:
05:18:5d:fe:1c:23:dc:ff:7d:2d:73:64:39:8c:73:
00:a3:ce:07:38:dd:9c:83:41:e7:1c:98:6a:2f:42:
5c:56:4a:16:4c:79:30:54:ff:8c:a6:77:e9:79:39:
0d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:86:4D:C5:D4:2A:A7:C8:E5:E0:56:B4:A3:3C:A1:F6:80:5B:21:F5
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:f4:17:17:20:92:b7:ff:ed:44:5a:43:c1:9c:42:6d:7d:87:
11:e4:e8:67:3e:75:cc:aa:29:ec:a4:12:e5:f9:44:ca:4e:66:
61:15:66:aa:6b:c0:3c:49:67:dd:69:22:3c:d6:a9:86:80:0c:
bc:a4:45:98:24:e5:39:aa:f3:2d:2d:1a:ac:c6:18:bb:97:11:
1a:9c:9e:78:cc:58:28:2e:09:08:71:09:6b:d2:b8:2b:16:ca:
95:2d:a8:15:04:a4:0a:4c:58:d4:d4:b0:70:fb:0f:13:0d:52:
95:76:e4:5f:fc:f6:23:ab:cc:d3:dd:ed:c6:10:d4:57:59:d3:
a4:ec:71:50:ef:a5:4e:b7:2a:52:fd:43:28:49:2e:a8:cf:95:
d9:fd:93:32:62:e0:85:0a:5e:6d:e6:a0:59:b7:d0:60:8c:fa:
7d:1a:f7:79:61:0b:31:fa:e9:86:04:80:37:5b:eb:66:51:f4:
c5:b1:d4:aa:f8:13:59:a3:15:ff:da:d6:a0:0e:89:6d:59:d6:
32:fd:ad:af:0e:b6:45:7b:23:8a:4b:3d:c7:1c:0c:cd:6a:c8:
fa:02:5a:26:f2:58:e0:dc:d0:43:a2:7b:6e:f3:8e:f3:c0:c1:
2f:32:29:26:4f:89:13:df:5d:ba:2c:5e:3b:a6:e5:5f:16:b8:
5a:27:76:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:50:01 2025 by rpki-client