Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
File: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft (raw, json)
Hash identifier: MM7q4IxNjPGYd/PPjPbQHC3Sb06ITyKj1Ic8SznBaIU=
Subject key identifier: 26:3A:AB:BC:65:AE:FB:59:48:C2:51:D2:C0:3A:C5:17:66:2A:BB:51
Authority key identifier: 23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
Certificate issuer: /CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Certificate serial: 01974AE903BDCB1E98C857C3EF3558630F67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 15:01:14 +0000
Manifest this update: Sat 07 Jun 2025 15:01:14 +0000
Manifest next update: Sun 08 Jun 2025 15:01:14 +0000
Files and hashes: 1: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl (hash: FggDfWgdth8/nrwFpViuxsL259r+NdENV032JB3Xg+A=)
2: MTT1Ia9LOAm3voF-tKlGjmgFAPI.roa (hash: 4bP/TTzv7AEu1D5qKcmPGabc7tnqcf7nz+XM5tO/PTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:03:bd:cb:1e:98:c8:57:c3:ef:35:58:63:0f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Validity
Not Before: Jun 7 15:01:14 2025 GMT
Not After : Jun 8 15:01:14 2025 GMT
Subject: CN=263aabbc65aefb5948c251d2c03ac517662abb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9c:27:96:6c:7a:74:b0:07:39:90:98:66:15:
9f:d2:d3:88:f9:e5:83:c2:73:17:48:44:2b:53:db:
bc:a3:8a:fe:4d:00:78:92:1b:3f:3f:16:35:d0:cf:
71:6f:ba:d9:c1:a5:94:b7:b1:fa:52:c3:29:ff:7f:
37:e6:52:d7:d8:48:71:91:38:a5:de:fa:ac:fe:cf:
2c:c9:a4:25:36:79:84:6d:1d:5d:fb:bb:2c:da:93:
ee:85:76:45:21:f5:7a:5c:82:f1:cb:5d:bc:b7:d5:
aa:14:bf:c4:9e:19:bb:82:74:5f:6c:3e:c6:d0:81:
6c:65:96:da:a0:74:b5:7f:70:6e:ff:71:04:41:ad:
c8:a3:a4:fd:d4:31:d0:c7:7e:8b:75:08:09:3a:ec:
39:9c:41:f8:ae:3b:9c:91:63:55:10:92:06:50:f3:
0c:67:db:57:b4:f6:65:38:68:52:11:43:7a:8c:69:
ba:2f:65:52:04:db:65:6d:76:f8:3d:21:0c:7b:4a:
e1:c4:28:c2:bc:8c:a7:ec:bc:dc:ec:af:4a:d3:16:
47:cd:c4:9d:6f:af:56:d1:9e:9e:61:79:c3:e4:04:
f4:9c:d2:eb:80:64:44:05:6c:4a:9b:11:c1:b6:f3:
69:67:ea:6f:df:07:42:d8:cd:2a:2e:41:d7:bd:fe:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:3A:AB:BC:65:AE:FB:59:48:C2:51:D2:C0:3A:C5:17:66:2A:BB:51
X509v3 Authority Key Identifier:
keyid:23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:84:f2:52:fc:94:5d:33:9c:3b:8d:30:1e:e8:ea:c2:d0:cb:
be:b2:69:d8:b4:aa:9a:f7:18:87:88:f5:2f:d2:a9:bf:49:a1:
e6:89:f1:c1:07:73:28:f5:66:12:d3:d3:82:55:bc:11:96:9c:
ec:35:53:06:9b:7a:75:11:d5:d1:00:95:ea:c4:cc:30:f1:7e:
64:40:66:66:bc:cf:99:9a:99:21:2e:b4:9a:79:89:93:d5:a8:
d7:47:4c:cc:60:3c:be:13:11:85:db:3d:71:59:49:eb:e7:84:
c3:41:15:9a:71:a8:f0:2e:75:02:61:a4:b3:19:21:4f:35:8d:
d7:c2:3c:ad:a7:85:f6:26:07:b1:75:5e:30:6c:35:6c:3d:f2:
0f:50:95:b3:ee:f5:dc:d3:48:0b:80:82:98:67:93:fa:13:77:
f2:fd:04:ff:66:fd:b1:47:dd:10:49:d6:55:9d:00:b3:02:c9:
71:37:4d:00:f9:46:47:58:62:42:f0:ac:15:74:3a:07:c7:d8:
7c:1d:c8:48:00:56:fe:e0:75:b8:c2:5e:c4:b1:6d:f9:44:f3:
c9:0d:38:c7:cc:b7:39:73:40:7e:fd:88:0e:9f:d3:7a:df:87:
09:c7:5a:05:26:c9:e9:a3:c9:57:c1:c2:01:f0:43:03:c9:fd:
12:59:61:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:23:10 2025 by rpki-client