Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier: 0Pyz2MKNOwN8H2zrkmZ43vXLDQ8BCL1gucXcLiha5Oc=
Subject key identifier: FE:A2:BA:89:58:BA:5D:6B:99:6B:CD:80:B7:47:BB:54:1A:FD:5B:F4
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 019748FA699CD3B461F1D529E104B7403028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number: 15AA
Signing time: Sat 07 Jun 2025 06:00:59 +0000
Manifest this update: Sat 07 Jun 2025 06:00:59 +0000
Manifest next update: Sun 08 Jun 2025 06:00:59 +0000
Files and hashes: 1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: VLiE/rJ54HpXeA8QdgQstkFbzUl0GMoPeispb2zRcX0=)
2: N9Zb2hxl4VqsmU3i0xGDA1x2cBY.roa (hash: bj11HyE9bQVpgK8+L49310uUI7++HSDAwFbYXm4t87U=)
3: bXnDK3FrjmreLx1RNLHjlK6yokA.roa (hash: 9KnhQYqvA+XwDxuEoTB3PjhKHhHecpLOEmyBwf4FrSA=)
4: jNg6vqzUy1VgyEygCa4DvoqjfIY.roa (hash: npuJNuYtC10xnW9UN6NXfDz60ESb4bhdw7EsN6BY2Z8=)
5: ttxltNG2zQjIJW6GFa8ByUupTIM.roa (hash: X+Rp7cCbU+AQt/6HVOu55hwFlooIOfWp0xOq7PMcuDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:69:9c:d3:b4:61:f1:d5:29:e1:04:b7:40:30:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Jun 7 06:00:59 2025 GMT
Not After : Jun 8 06:00:59 2025 GMT
Subject: CN=fea2ba8958ba5d6b996bcd80b747bb541afd5bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d3:f0:3f:4a:71:4b:d1:4d:8a:f1:7d:bd:fc:
82:a6:d0:70:13:18:93:3b:72:e5:6e:d9:df:f9:c0:
e7:b8:e4:07:6b:4b:50:50:00:77:11:59:e2:5c:53:
84:50:53:23:9e:e8:4e:8e:e5:27:00:85:b4:ba:b8:
e6:03:0c:ae:5a:7b:e7:04:0a:b1:4b:da:08:51:1f:
43:19:20:65:21:15:6e:f6:ad:f1:88:55:bb:af:52:
51:77:cb:69:f6:e0:27:10:63:a6:a2:2d:fb:a4:12:
3d:cf:50:41:78:3e:21:7d:fa:e5:56:84:7f:18:ca:
93:98:d3:52:d6:47:29:cd:95:34:9a:db:67:af:24:
a6:3b:7b:6e:86:02:2f:10:f2:c1:6f:f3:e3:e5:d7:
20:c8:c1:f3:41:44:dd:a7:0f:95:b8:ae:c9:fe:b0:
f3:65:e1:f8:4d:b3:21:d6:c9:9a:88:97:a3:fd:90:
4f:8d:ed:20:1e:ce:73:e6:99:ad:25:6b:d2:ee:92:
94:45:ea:30:d0:df:20:b8:cb:a6:79:ad:04:12:64:
73:b7:f4:63:09:75:0f:de:c0:3b:97:ea:d7:a0:c5:
eb:8a:8c:be:dc:8d:b3:c2:1d:6c:7a:a0:bb:cf:c3:
98:ec:c0:1b:0e:a5:66:94:51:33:10:1a:f4:06:c1:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A2:BA:89:58:BA:5D:6B:99:6B:CD:80:B7:47:BB:54:1A:FD:5B:F4
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:a9:d7:5b:a4:3b:43:a3:3c:4e:a5:6c:17:ac:ac:06:ff:26:
8b:6a:5e:6f:e6:66:47:42:54:b9:14:be:d2:8a:7c:a3:12:f1:
da:ac:f7:c7:83:be:5e:f1:6a:91:d3:93:f0:c3:7e:34:fb:0d:
0f:91:f5:a4:22:61:b0:90:29:26:b9:48:09:5a:03:6a:1b:49:
11:c6:79:72:b0:d4:aa:78:d2:af:06:69:1a:4f:cd:09:76:3e:
36:11:7c:11:2b:65:50:c1:2f:8f:a7:84:90:fe:f1:bb:dc:20:
71:5d:72:60:28:2c:d7:6f:7e:f2:f7:ab:ce:ad:16:ae:57:34:
6a:cc:9f:0b:3e:d3:f5:02:31:96:1a:c4:fc:55:7d:cb:49:63:
1d:e3:46:1b:8d:f0:e0:10:90:36:20:41:60:88:4b:12:d5:aa:
45:53:15:11:df:24:a5:2a:55:44:a7:b8:69:b8:8e:fb:43:7d:
23:bb:52:59:a7:f7:c1:62:36:02:25:a6:5e:ed:cc:27:ae:97:
00:f4:83:6a:ac:f0:e5:39:ab:8e:24:58:ab:b7:6c:ee:35:8a:
39:95:69:01:f3:7d:29:e2:2d:c4:90:e6:a4:28:b7:9f:c2:b4:
a0:e2:b7:4b:f9:57:6d:f6:29:9e:b6:4c:08:b3:f2:c1:5b:bc:
17:55:57:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:31:10 2025 by rpki-client