Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: oiEUfO8VEGIvyG3ZS/QoQYs93neb+glVsFWa5ZNVPVk=
Subject key identifier: C5:A1:34:3D:75:28:67:FA:84:18:04:DB:C4:7E:91:5E:8C:30:CC:F7
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 019748FA49EDDC45D5201C0156F806F05ABF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 06:00:51 +0000
Manifest this update: Sat 07 Jun 2025 06:00:51 +0000
Manifest next update: Sun 08 Jun 2025 06:00:51 +0000
Files and hashes: 1: HbgX7OEx-8g9VTQvYvbD_e0bPJ4.roa (hash: W8tzfEVYuZk67nGO3GJK/wSiRVXk9GPJqQ4Zpo1nq8A=)
2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: pihSnT7j6EDCDa24K6RKWAVpFqCBRBLjd6ltDOrJLO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:49:ed:dc:45:d5:20:1c:01:56:f8:06:f0:5a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: Jun 7 06:00:51 2025 GMT
Not After : Jun 8 06:00:51 2025 GMT
Subject: CN=c5a1343d752867fa841804dbc47e915e8c30ccf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:24:70:09:b9:aa:a5:c0:4c:8c:b2:ae:ac:01:
f1:47:6c:cf:c6:b9:d2:70:d1:14:21:1d:a4:2a:3a:
d8:67:31:d4:8f:68:95:a1:02:4f:af:77:82:55:81:
ed:1e:e5:91:d4:d0:f4:64:93:41:c8:43:9f:52:9d:
05:b3:ac:81:28:29:1d:77:32:1e:b9:81:14:46:3c:
30:40:27:02:15:26:5f:47:8e:95:21:69:4f:55:39:
42:1b:71:0a:06:c5:09:41:b9:b3:f3:aa:1d:ac:15:
b0:b2:4c:91:b6:07:eb:95:69:71:34:d2:83:2f:2b:
03:35:3c:74:f3:47:af:18:bc:00:42:9e:2a:e3:e6:
ff:3f:1f:79:c3:b4:8c:ec:5f:d0:14:d4:f9:1b:b9:
34:3f:42:72:80:a9:79:d8:ef:a3:c2:81:b7:a4:26:
47:5a:34:94:c9:9b:f8:17:89:e0:11:01:d1:d7:92:
c8:ed:b2:29:ec:42:89:78:f6:5a:97:48:7e:2a:fd:
1c:b7:ec:1a:46:1b:c1:6c:fa:86:c8:50:2f:e5:50:
29:e8:54:5a:82:90:72:1f:6a:a1:e7:d1:1e:e4:ba:
4d:82:29:f5:88:c6:fd:82:fb:01:78:2f:64:3f:c2:
d1:f0:08:34:dd:ec:79:62:d2:a6:af:69:63:68:37:
be:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A1:34:3D:75:28:67:FA:84:18:04:DB:C4:7E:91:5E:8C:30:CC:F7
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:68:06:5e:39:8a:8c:74:b9:4e:8c:bb:62:29:7c:14:70:34:
25:af:ff:bf:51:0b:eb:01:76:65:60:6c:fc:62:c8:6a:4f:ad:
c3:16:3d:55:5b:d8:c8:a5:89:4d:38:bc:bb:df:fc:a2:a4:98:
69:8d:77:db:14:2a:7b:9b:cb:c8:ee:4d:ea:b1:b3:4d:08:a6:
9e:df:ea:3e:31:85:ba:b2:a8:83:12:4d:2f:2c:81:2d:71:9d:
00:94:da:48:aa:72:8e:96:33:5c:0b:30:f2:5d:b8:f2:81:05:
3e:51:6b:ba:5a:f1:33:32:6c:4e:11:94:90:cd:d1:ab:fb:3c:
10:0c:0f:ad:38:15:5f:71:e1:be:02:cb:93:ef:ea:0e:d1:1b:
80:9f:9b:e0:47:54:c6:17:34:a6:f3:60:3f:c9:90:1b:b4:87:
a5:86:d2:7d:50:67:e8:33:f2:b5:6f:88:d5:c6:bf:e2:42:ab:
c9:49:20:ed:b7:aa:36:d7:60:a0:bf:71:e0:4b:fb:3b:d3:22:
6e:e2:7a:21:1f:4f:18:68:5c:9d:17:46:98:48:c6:d6:2d:13:
99:b8:3d:4d:fa:2d:13:a5:45:a9:9b:c9:59:77:eb:3d:46:2c:
5b:11:ad:49:e3:72:da:13:ac:88:b9:ae:f1:99:61:09:ae:b4:
34:be:70:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:03:35 2025 by rpki-client