Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
File: Ihm1ncLp80slUjDlYqPMph2usVU.mft (raw, json)
Hash identifier: KzxGM6BfphNo1ry9sNlo08HzvFmEb5g9MJYat+lbSHI=
Subject key identifier: F7:E7:CE:46:FE:8C:3B:F1:18:79:F9:63:69:7A:62:04:9E:7C:7B:68
Authority key identifier: 22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
Certificate issuer: /CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Certificate serial: 019749D5E88D0CE6065AD09ACF6E55D645F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
Manifest number: 124E
Signing time: Sat 07 Jun 2025 10:00:44 +0000
Manifest this update: Sat 07 Jun 2025 10:00:44 +0000
Manifest next update: Sun 08 Jun 2025 10:00:44 +0000
Files and hashes: 1: Ihm1ncLp80slUjDlYqPMph2usVU.crl (hash: P/M10/ss6jCiDZTlL9lDre8ALO3QIdh96+2fB+sJ/2Y=)
2: Nk1hjqrpzwcKxMs_ejWJ395qXXo.roa (hash: uRWV+NR8DLzCaelMu4ig9EBtvA2PkzEXB7bjRzj91IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:e8:8d:0c:e6:06:5a:d0:9a:cf:6e:55:d6:45:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Validity
Not Before: Jun 7 10:00:44 2025 GMT
Not After : Jun 8 10:00:44 2025 GMT
Subject: CN=f7e7ce46fe8c3bf11879f963697a62049e7c7b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:5c:3a:5c:a4:fb:c8:90:a0:b3:8d:4f:94:
8c:63:ee:df:48:e3:ad:7b:dd:e8:05:cb:cf:4d:be:
56:d0:5c:4e:18:76:41:a8:50:25:e0:80:df:75:1b:
7f:8a:78:42:ab:28:c5:93:88:8e:3d:6e:bb:80:a2:
cd:44:04:ea:73:ef:39:d3:9f:81:0b:4c:6e:bb:a6:
d4:84:c7:be:97:dd:bf:ef:c9:3a:2f:3f:52:77:50:
64:d8:04:1a:cb:6e:88:66:c8:c0:fe:cc:0e:f8:7e:
2a:d2:7b:60:e6:01:f7:ba:fa:7e:31:5f:99:e1:b7:
b5:90:b3:3d:9c:ae:f2:14:d3:65:7b:ed:4b:8b:43:
b7:5b:ab:4d:80:ec:15:9c:cc:c0:b9:0c:a3:c3:71:
8f:ec:be:a7:f5:a0:f3:b9:d7:90:6e:c8:b5:54:01:
34:3d:e1:7c:a7:6b:76:18:ad:d2:3d:1f:35:75:e3:
f4:e5:62:b1:0b:40:c3:31:b0:48:5b:bb:fa:b9:4d:
9e:db:b5:55:d0:0f:f1:40:9c:52:3e:8a:b1:56:13:
cd:b5:e0:2c:ce:84:d5:11:ef:e9:da:5b:35:ba:36:
a5:c7:b3:eb:f9:6d:b9:bb:fd:4b:14:61:dd:bb:f3:
77:a8:24:3e:04:62:ab:30:b6:0b:31:33:17:5a:4e:
3b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E7:CE:46:FE:8C:3B:F1:18:79:F9:63:69:7A:62:04:9E:7C:7B:68
X509v3 Authority Key Identifier:
keyid:22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ec:3b:19:13:28:59:ce:57:a4:e7:fd:19:70:81:7d:5b:72:
20:09:36:36:6a:8c:f6:69:13:05:86:66:3d:69:ff:3a:33:c7:
99:e4:cb:b8:d4:52:75:1c:4a:54:33:0b:fc:9e:c7:48:2a:51:
e5:27:7a:c2:d4:8b:80:02:32:a8:86:39:d1:eb:c4:c7:6b:49:
8f:79:6b:b7:a2:e6:95:3a:e9:b3:66:9c:07:0e:97:ec:81:e3:
8a:b8:62:fa:47:a2:58:2c:a6:6e:b0:89:f9:02:dc:c1:7d:e1:
bc:c0:44:c2:11:83:3b:be:78:ff:eb:8d:47:75:26:1e:87:91:
86:86:af:14:3e:84:7e:51:da:d2:da:66:43:48:23:b6:26:38:
9b:82:1e:8e:33:81:e7:2b:6e:ef:8e:d2:eb:44:75:35:7c:f3:
9b:00:eb:08:0f:d3:1e:32:01:c5:f1:ff:24:29:95:c8:15:80:
fe:d3:6e:c4:0e:95:de:87:39:1c:1a:3b:9d:8a:85:fd:8c:b9:
32:72:1b:74:1c:14:ea:29:a0:57:3a:38:8c:e9:72:e8:c4:c0:
a4:6b:96:da:15:b0:25:86:22:d5:e5:05:9f:91:c9:aa:88:dd:
c4:33:18:6d:3f:96:9e:cb:1e:d5:7a:f3:b6:d6:79:bf:b1:20:
f2:13:21:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:16:48 2025 by rpki-client