Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: M588u3U3fS9vjbAhnm4w5Ac8L3uc41feLQsCoJCJDIM=
Subject key identifier: 51:CB:17:31:72:E5:7C:FD:DD:18:EF:A2:31:72:04:0A:EA:37:93:F1
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 01974C68BCE58DF31A93780F976D47DF1B0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 05BA
Signing time: Sat 07 Jun 2025 22:00:21 +0000
Manifest this update: Sat 07 Jun 2025 22:00:21 +0000
Manifest next update: Sun 08 Jun 2025 22:00:21 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: AbyC67EdNkDsmbSMDruLGyUWUe6tBz1EWV4pW3UJ5/o=)
2: v5LwLHwuCUZrT_0G6r3v0bfLSQs.roa (hash: +ztaiH2S/aHDtgvKfj/YkXPsW58SyJ9uS27Ej7psyFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:68:bc:e5:8d:f3:1a:93:78:0f:97:6d:47:df:1b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Jun 7 22:00:21 2025 GMT
Not After : Jun 8 22:00:21 2025 GMT
Subject: CN=51cb173172e57cfddd18efa23172040aea3793f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:db:a8:8a:6e:a3:af:96:f9:81:c1:f1:6c:8d:
29:55:90:1a:d8:4d:72:52:e0:e5:d8:d0:8a:70:a0:
b5:c8:97:c6:b8:aa:8e:14:a7:01:50:cb:28:55:4d:
f1:9c:70:3f:03:83:db:4b:df:19:36:5f:c3:ae:36:
7b:5a:54:f7:d8:64:25:08:a9:2c:34:fa:cc:dc:5e:
10:5d:92:57:89:b9:11:47:8d:81:84:e0:f5:0d:ad:
8a:28:9f:83:20:b7:f5:a5:dd:da:d9:ac:7b:05:2b:
b5:fc:d6:d2:79:ae:04:34:d7:b7:96:41:0b:dd:f5:
9e:ac:4c:8f:44:2c:de:5a:9c:f4:22:0a:14:d9:57:
f8:70:1e:da:f7:08:d7:87:8d:c0:60:13:ed:98:6e:
44:a2:c9:9f:e1:2b:45:5f:ab:e5:33:23:38:bb:fd:
c3:1d:be:b2:08:12:12:6c:c8:f2:d6:84:a1:3c:2b:
a1:ed:d2:7f:53:9e:05:46:35:30:0d:43:3c:28:c5:
ec:c9:e0:2d:25:b9:1f:c4:52:9c:64:8f:8d:b5:09:
fb:cf:95:69:5f:41:51:6b:f5:29:8a:0d:37:8e:5a:
f4:e8:cb:f7:66:0a:0a:7d:b0:ea:bd:75:cb:d4:08:
24:bc:a5:bc:23:2b:8c:4c:db:73:72:a9:0b:b2:cc:
29:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CB:17:31:72:E5:7C:FD:DD:18:EF:A2:31:72:04:0A:EA:37:93:F1
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:1b:21:e4:d3:01:18:8c:08:cd:af:e4:ab:03:67:7d:f4:76:
d0:2a:e9:cb:bb:6c:4c:22:8e:1f:4e:66:b3:9e:3b:7c:fe:ed:
9b:af:84:07:50:84:34:70:f1:9e:a4:22:58:68:03:2c:e2:45:
d9:1c:c1:2d:89:ff:95:32:00:47:a0:fa:e4:50:95:5c:4a:2b:
75:a3:cc:84:3c:66:cd:c4:87:77:42:f3:88:96:07:f2:67:6c:
7a:86:28:1f:7a:10:5a:be:15:3b:be:80:05:fc:ca:d7:02:ae:
0a:5f:3e:ea:39:0e:e9:a9:6d:7c:22:38:96:47:ea:1b:5c:10:
d0:67:30:6c:68:27:66:56:01:64:93:a4:4b:ad:1a:8e:a3:a2:
58:c4:30:83:20:34:84:c7:1d:94:c0:26:b4:17:8e:2d:94:3c:
47:88:58:f6:00:49:fa:ad:20:6f:39:f0:e9:ad:b9:ff:68:09:
c0:d9:ca:c3:96:ca:2f:37:c3:2d:0e:b2:8a:b2:10:e5:a3:d8:
7d:25:a5:da:98:e7:c2:82:b7:3c:ba:5e:04:2d:3b:7f:2b:3a:
04:06:87:f7:40:6d:f8:39:18:91:ec:6e:99:5e:ee:be:d0:ac:
dd:7a:b0:86:8f:80:a5:ec:00:f8:7e:60:a2:db:72:a3:6d:5c:
d1:bd:ba:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:33:03 2025 by rpki-client