Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
File: IOagEH1ompNwtiKVGkSWRsw4tZA.mft (raw, json)
Hash identifier: k3r4VzI00yX+Il0tQLAvBtV50kUFfcklO/9gLPDzLgs=
Subject key identifier: 09:A7:C0:65:9E:5C:CC:6B:EC:AE:A0:0D:73:D2:BD:1C:44:F1:48:9C
Authority key identifier: 20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90
Certificate issuer: /CN=20e6a0107d689a9370b622951a449646cc38b590
Certificate serial: 0197488C9FD9DA530BC74C9C2AC4F2FA1C47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
Manifest number: 10FC
Signing time: Sat 07 Jun 2025 04:01:04 +0000
Manifest this update: Sat 07 Jun 2025 04:01:04 +0000
Manifest next update: Sun 08 Jun 2025 04:01:04 +0000
Files and hashes: 1: IOagEH1ompNwtiKVGkSWRsw4tZA.crl (hash: yuTQCSROxfCJvhs9ALh7LvjP9jF8qWoqd21CChf0nPk=)
2: g2AkX7o9HPLfXDUc9lLxF0hd7Tw.roa (hash: GtbK3C6ImbkCxUfm64Bkm+DP0kf7OaLjUPRMxP6pI/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:9f:d9:da:53:0b:c7:4c:9c:2a:c4:f2:fa:1c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e6a0107d689a9370b622951a449646cc38b590
Validity
Not Before: Jun 7 04:01:04 2025 GMT
Not After : Jun 8 04:01:04 2025 GMT
Subject: CN=09a7c0659e5ccc6becaea00d73d2bd1c44f1489c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8d:b4:7b:2e:64:5e:b9:5e:ea:9d:75:32:e4:
77:7c:86:8f:da:41:ab:2b:2b:14:5e:38:c9:cb:57:
4a:cc:d3:1d:10:51:eb:83:05:45:88:fe:90:dd:fe:
31:3b:31:76:13:11:33:f3:d9:0b:7f:f3:6a:60:e2:
39:34:d6:ee:69:7a:16:e2:c4:a7:7a:53:e0:ac:d4:
ae:3e:57:34:d1:bd:f9:45:5b:80:a8:f8:27:ac:54:
d9:32:2f:50:5b:9a:21:7a:8d:ad:2e:92:aa:1e:00:
da:0d:a1:f2:52:68:b3:d4:80:d8:f9:b7:72:cb:6f:
e9:ce:3d:57:3e:8f:19:4d:8f:27:21:7f:ee:d7:74:
a3:c9:32:87:4f:50:73:96:fc:6c:17:7f:0e:e6:1b:
44:c7:4d:03:a8:36:af:ba:32:63:f8:ce:d8:b8:88:
03:9c:8f:61:26:2c:7f:de:f1:fe:f0:44:a0:75:22:
18:8f:f8:c5:63:23:2e:26:39:bd:1c:0a:eb:26:7c:
91:81:af:65:4f:8a:3c:95:97:5a:fa:07:82:44:17:
eb:ef:3b:7d:ae:f7:39:55:2f:cb:3a:8f:b4:ea:40:
97:b5:44:c0:63:0f:1b:c0:97:23:78:62:80:b0:c6:
b4:1e:d5:40:97:b6:56:8e:44:ce:b0:6a:3c:f9:a4:
85:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A7:C0:65:9E:5C:CC:6B:EC:AE:A0:0D:73:D2:BD:1C:44:F1:48:9C
X509v3 Authority Key Identifier:
keyid:20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:7d:87:20:a3:d6:2c:95:cc:15:ea:25:71:c1:05:69:70:53:
61:e1:b6:5e:1b:54:1d:5a:3d:4c:2d:b2:7a:14:92:de:dc:7d:
fe:12:c5:d3:9f:81:10:87:64:80:93:91:68:7b:93:e9:d2:05:
c4:df:bc:47:ee:b2:16:85:e5:82:19:25:98:fd:14:c4:6c:7e:
3d:4b:8e:eb:eb:b3:93:a0:2c:aa:cd:11:a8:33:6d:19:6d:8c:
86:0d:23:1d:39:7f:fd:27:0a:ec:8d:60:75:c9:c4:26:67:39:
df:cd:25:66:a2:32:dc:17:20:42:70:d9:a7:e2:06:53:53:5c:
0f:1e:3f:52:b8:4a:b7:c6:cf:96:d2:30:ee:78:fe:52:ec:56:
1b:f3:f5:7c:27:15:51:d1:d2:f9:06:7b:c1:d6:e3:94:74:99:
0c:a6:69:c9:da:89:37:94:71:12:f7:c5:90:33:36:b1:53:eb:
94:1c:15:a3:42:86:83:20:6c:76:85:a0:5e:3a:5b:db:6f:45:
73:95:05:e6:47:f2:b0:38:af:d8:69:13:73:f9:ad:56:70:52:
b2:8b:c6:a7:e3:e5:57:4a:47:6b:e4:83:25:f4:ec:bf:97:8c:
9a:40:27:39:1a:90:25:ad:cb:00:cb:d8:21:72:67:d3:ae:37:
88:27:db:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:53:26 2025 by rpki-client