Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: zFovJ2IK9qDJG3F8VtzkZt9WFbgXf0e66q8oCJdZdl8=
Subject key identifier: EC:03:6A:14:7F:AF:12:2E:49:68:5D:69:62:06:B9:8F:D2:C8:D9:46
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 019651C8C3167D2E97F76F5ED3489C245713
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 06:00:33 +0000
Manifest this update: Sun 20 Apr 2025 06:00:33 +0000
Manifest next update: Mon 21 Apr 2025 06:00:33 +0000
Files and hashes: 1: HbgX7OEx-8g9VTQvYvbD_e0bPJ4.roa (hash: W8tzfEVYuZk67nGO3GJK/wSiRVXk9GPJqQ4Zpo1nq8A=)
2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: 6uMb0p7XxLoiycRfzEhrnfJqTzFHKIhF67M6SNfHxdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:c3:16:7d:2e:97:f7:6f:5e:d3:48:9c:24:57:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: Apr 20 06:00:33 2025 GMT
Not After : Apr 21 06:00:33 2025 GMT
Subject: CN=ec036a147faf122e49685d696206b98fd2c8d946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:64:f5:1e:5f:fd:f1:66:d0:5e:2e:ad:9d:9a:
15:09:0d:d8:a3:6f:84:3f:be:a7:41:cf:b8:5d:2e:
90:4e:04:62:77:3b:2e:98:b3:40:8b:9f:81:c1:e8:
08:18:07:5d:47:cf:62:00:84:7f:5f:fd:e6:83:7a:
8a:28:61:e9:3d:e9:78:36:00:30:75:ce:84:02:af:
7f:dd:58:59:96:ab:e6:88:bd:37:95:ac:44:64:6b:
ba:91:4a:e8:a0:0e:15:5f:bb:f8:9f:2b:9e:58:2c:
17:ef:56:6e:91:bc:b0:a5:b2:30:fd:43:fd:0a:09:
b5:86:5e:1e:5b:db:11:c7:6f:8a:44:52:b0:bc:24:
17:3f:ab:14:9b:4b:f3:7e:b8:d9:e8:e1:c3:8b:de:
cf:88:8c:c4:d0:12:8e:64:cd:61:de:d2:14:d6:de:
fd:63:8e:34:5f:24:46:95:45:6d:d5:b1:92:63:e4:
8e:bb:99:2a:23:d2:d8:9d:c1:e4:b3:04:9e:bb:1e:
44:26:56:dd:1c:c7:85:a3:51:f9:65:71:79:f2:cb:
df:6e:b1:60:39:ad:1f:59:8e:f7:4c:f8:f0:4e:ab:
6e:9e:66:41:ca:11:14:d6:6b:8b:bb:f5:ba:55:ff:
da:f8:1c:b8:f0:ce:3f:be:d1:57:2b:71:6b:6d:dd:
d7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:03:6A:14:7F:AF:12:2E:49:68:5D:69:62:06:B9:8F:D2:C8:D9:46
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:32:e3:6f:1f:39:9d:00:22:e6:35:e0:d0:b1:96:4c:93:6e:
6e:7f:ae:03:1d:5a:d6:09:8a:91:80:91:cb:b7:22:93:5f:ec:
40:b6:12:a0:65:c8:e1:78:d8:53:b6:1e:65:89:97:8c:15:d7:
30:d9:ab:f2:bf:90:b0:09:51:f7:cb:54:69:d6:ac:fc:96:14:
4b:ce:b7:f0:b3:38:1f:65:36:55:9d:4f:c6:28:76:84:b5:7b:
d7:4e:b4:6b:3f:f3:63:bd:9f:bb:16:41:49:61:5a:dc:f5:77:
ff:d0:bf:9a:06:b5:8d:0b:0f:2c:2f:2a:60:94:fc:52:02:c0:
34:ce:ae:a6:d7:41:de:2d:83:95:09:3b:4b:b0:b9:af:15:4b:
dc:22:97:1f:4c:5d:2a:65:69:9e:83:e6:2c:c6:7a:0d:80:46:
7f:97:60:03:68:ac:7c:aa:04:50:33:46:57:a5:40:52:ea:fd:
1b:5d:9c:5b:c5:8a:f6:11:8e:91:a2:a3:7c:4f:87:d9:c4:08:
4a:96:27:45:e6:af:60:5c:d7:61:12:51:7b:82:bb:14:a3:99:
1f:77:d2:37:d3:96:cb:a6:c7:a8:73:7b:11:2c:3e:6e:a1:55:
7d:a5:a2:09:eb:95:bf:18:23:0b:2d:99:27:f7:dc:c5:ca:b1:
63:6e:6c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:57:30 2025 by rpki-client