Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: 46b8z2BZR5TvkPbbVei7iFrmZLxeLLileHRLXkNV1Hc=
Subject key identifier: AE:C1:09:68:5E:1F:45:F7:31:2E:CF:55:BE:0A:6E:A4:10:43:A8:68
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 01974B1F642A893D0008663BF59968A8DB04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 0F78
Signing time: Sat 07 Jun 2025 16:00:37 +0000
Manifest this update: Sat 07 Jun 2025 16:00:37 +0000
Manifest next update: Sun 08 Jun 2025 16:00:37 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: FNzcSIDqsd2+vTl8brg6+ZxnAPpnZC87FUL22Mxv+f0=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:64:2a:89:3d:00:08:66:3b:f5:99:68:a8:db:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Jun 7 16:00:37 2025 GMT
Not After : Jun 8 16:00:37 2025 GMT
Subject: CN=aec109685e1f45f7312ecf55be0a6ea41043a868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b9:6a:b2:9b:f3:9d:4a:42:8f:91:b5:11:14:
bf:37:c2:e2:8e:98:29:94:82:52:ca:21:2e:fd:d9:
46:ed:bf:09:f1:b9:bc:4f:c6:ec:25:49:fe:50:77:
6e:48:a5:68:75:77:b2:33:99:f4:78:46:1b:e5:cf:
74:4e:8c:ac:c4:7a:9d:e0:d3:8c:b6:1a:59:63:42:
1b:7b:5e:ea:b7:6c:02:7f:db:36:8f:f9:2e:46:5d:
7a:95:b0:1b:66:45:6a:96:d0:49:dd:4e:41:0c:86:
b5:66:d6:55:4b:f1:33:0e:53:d5:28:1e:9d:57:3c:
78:c9:65:bd:12:53:ae:82:ed:83:26:58:01:24:0b:
87:a8:b4:fc:7e:8e:5a:14:06:71:41:cc:ea:b6:1a:
ec:29:0b:f4:55:91:e5:c7:28:eb:b0:96:ab:22:8f:
fc:cb:26:70:3e:90:da:10:75:89:a1:14:75:57:fa:
9f:89:a6:71:2f:b2:c3:65:d4:9c:8e:c5:33:55:e8:
ba:c5:6f:51:dd:bc:b7:04:91:f5:05:93:42:61:a8:
13:4f:97:37:65:b7:59:94:a5:94:81:90:6e:39:67:
c8:31:8c:6c:eb:a3:b0:e4:47:2d:25:24:b4:52:dc:
7d:01:e2:47:36:9a:47:58:ef:57:d0:f4:08:e8:ed:
9e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C1:09:68:5E:1F:45:F7:31:2E:CF:55:BE:0A:6E:A4:10:43:A8:68
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:76:4e:ba:03:62:dc:d3:be:32:d6:f1:af:54:dc:3a:e4:7c:
a8:a6:1f:9d:39:22:27:d7:57:6a:77:6e:0f:ee:2d:04:95:22:
9c:e0:0c:75:09:c2:32:32:de:b6:54:f6:ca:b3:ba:7d:08:70:
6b:51:08:26:aa:4d:ba:0e:f0:78:25:36:e0:bb:de:3d:46:f0:
c7:dd:c7:57:46:99:d0:cf:17:fb:8f:71:47:f8:d5:2e:be:24:
87:47:14:22:b1:05:93:ac:4a:4a:38:6a:79:a0:6d:fc:95:d7:
da:94:39:ce:fc:49:58:8b:f7:12:03:5c:16:2c:03:74:46:fd:
c5:5d:38:44:e8:f4:31:68:c9:c7:bf:00:8a:a4:6b:cd:6f:6b:
a5:55:9c:f0:15:f8:3e:1f:54:ad:6a:84:c2:0a:52:32:bb:5d:
0a:3a:3a:89:d8:57:f2:6e:70:05:1e:58:17:9a:af:c2:3f:b3:
85:b2:81:ef:dd:46:22:74:69:d6:f1:1f:16:55:9c:ab:d8:18:
b6:15:24:ad:91:d6:b8:27:de:cd:ee:58:42:09:e9:07:da:64:
b0:54:27:35:e3:0f:ed:e4:81:9f:e7:ea:60:b1:bc:f5:66:10:
fd:f3:63:2b:8d:1f:dc:b4:59:89:bb:f6:b4:47:d3:f8:7c:bf:
f1:1b:c9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:26:06 2025 by rpki-client