Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
File: IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft (raw, json)
Hash identifier: ywfxucYCHQL2deUuzX4FsL8DvRwDk9ciJR/i86azodA=
Subject key identifier: 72:7B:CB:F6:07:39:E5:05:EA:99:9A:58:6F:64:9F:D1:FB:EF:01:91
Authority key identifier: 21:9B:7C:14:5E:0A:CF:81:48:41:8D:54:24:7D:FD:DF:FC:19:FA:4C
Certificate issuer: /CN=219b7c145e0acf8148418d54247dfddffc19fa4c
Certificate serial: 01974E8E766DF0B7D271E597B56C3840CBC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
Manifest number: 0132
Signing time: Sun 08 Jun 2025 08:00:48 +0000
Manifest this update: Sun 08 Jun 2025 08:00:48 +0000
Manifest next update: Mon 09 Jun 2025 08:00:48 +0000
Files and hashes: 1: IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl (hash: EWRTYkHVhTCrAZC+DE9ow4pUbCmOgxIMp24cH3fGviA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:76:6d:f0:b7:d2:71:e5:97:b5:6c:38:40:cb:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219b7c145e0acf8148418d54247dfddffc19fa4c
Validity
Not Before: Jun 8 08:00:48 2025 GMT
Not After : Jun 9 08:00:48 2025 GMT
Subject: CN=727bcbf60739e505ea999a586f649fd1fbef0191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cc:a1:12:d7:cc:2a:ce:22:39:3c:fd:5d:5f:
b7:bd:cb:d3:80:28:ce:d2:f9:3b:64:08:c6:c9:ce:
7e:73:37:d4:52:e8:7e:a7:bf:9e:a5:25:09:11:24:
ac:2a:f5:ad:7a:77:d4:cc:54:b3:73:50:0e:5b:92:
25:2b:18:bb:c0:92:9c:b7:c4:b2:c4:d9:a1:ff:b0:
5b:10:ee:df:98:92:56:5c:3e:af:93:7d:f2:22:65:
97:0f:10:6e:0d:18:4d:6e:1f:23:2d:b3:94:3a:12:
b9:78:65:f2:28:03:ed:76:c5:47:bf:d1:26:fb:b5:
34:f8:b5:65:b8:60:57:d5:91:2c:7d:1e:b7:e0:63:
d2:f8:f6:ce:a0:70:d0:24:15:80:d5:b7:6b:fe:4e:
4e:4d:22:14:66:10:2a:d4:c2:08:d5:4e:03:e6:bd:
03:eb:09:9a:f5:70:60:3c:8f:4f:58:87:ad:e4:39:
8f:f5:b5:74:57:b0:ce:58:d9:01:61:ef:d9:e2:a0:
b1:f6:ee:3d:19:a2:87:cd:d2:00:a9:bc:c6:f1:cb:
bb:f8:b6:c8:32:10:a7:ed:b3:ac:15:c0:5c:4d:1b:
e1:07:58:8a:ed:34:15:6c:a3:78:84:12:59:2b:db:
6b:7a:2f:6a:79:fd:6e:70:b9:95:12:75:b1:3a:ee:
8a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:7B:CB:F6:07:39:E5:05:EA:99:9A:58:6F:64:9F:D1:FB:EF:01:91
X509v3 Authority Key Identifier:
keyid:21:9B:7C:14:5E:0A:CF:81:48:41:8D:54:24:7D:FD:DF:FC:19:FA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:db:27:fa:60:40:5d:3a:41:0d:a9:d2:1b:09:e6:c5:83:6b:
95:31:25:6f:23:ed:8c:bb:56:a9:0d:fb:fd:5a:ed:3c:91:eb:
f0:d8:5c:9c:a0:5d:4a:72:0c:c8:08:f1:7a:37:84:1b:e4:b8:
58:d9:a9:2b:87:92:0a:23:56:17:e8:9d:91:bc:3f:c3:59:68:
80:de:94:19:d9:6e:55:49:7a:5e:db:29:9c:1a:2e:5f:d1:91:
85:f2:a4:d5:d7:5b:93:15:12:f5:69:1e:fd:7b:6e:26:23:9d:
78:fa:79:97:6d:13:76:eb:db:94:7c:3a:29:59:c7:9d:9f:c8:
18:cb:fc:76:32:f2:47:bd:3d:d3:0e:9c:ce:db:f2:79:e0:53:
d6:90:e6:2a:5a:c1:94:24:4c:52:15:ff:45:20:c5:16:58:8d:
56:f9:41:3e:4b:ec:9e:12:62:7c:b8:46:69:90:58:11:fe:ec:
7e:4b:ba:bd:7f:bb:e0:22:45:e1:29:ec:9e:da:5b:f7:af:e8:
90:f4:45:2f:f2:f6:30:da:67:51:4e:8f:4c:e0:46:af:e6:a1:
7a:a4:d5:6f:06:8e:a3:cc:4e:7e:ff:4d:15:82:a9:e1:f9:ef:
63:ff:1b:59:5c:4f:c7:85:ad:df:71:5c:11:00:60:32:01:ce:
c1:35:f7:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:50:14 2025 by rpki-client