Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
File: IKo_sAxQTBoJEqNJWo49uvPZako.mft (raw, json)
Hash identifier: aeh5ekdluOAmjXqjgyjfeaap7SysoIgTF2Iv+eTQ8Qk=
Subject key identifier: BB:6A:86:C8:38:40:DE:D2:7A:40:EE:2D:22:7B:F9:D6:5A:5B:6E:D4
Authority key identifier: 20:AA:3F:B0:0C:50:4C:1A:09:12:A3:49:5A:8E:3D:BA:F3:D9:6A:4A
Certificate issuer: /CN=20aa3fb00c504c1a0912a3495a8e3dbaf3d96a4a
Certificate serial: 01976F2C6B2967AFE60C70231868B7D979E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKo_sAxQTBoJEqNJWo49uvPZako.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
Manifest number: 05B4
Signing time: Sat 14 Jun 2025 16:01:11 +0000
Manifest this update: Sat 14 Jun 2025 16:01:11 +0000
Manifest next update: Sun 15 Jun 2025 16:01:11 +0000
Files and hashes: 1: IKo_sAxQTBoJEqNJWo49uvPZako.crl (hash: gc8UtkNg4lHfKqBnlIm56H8kbm9rWhJv7hTeWKA3RS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKo_sAxQTBoJEqNJWo49uvPZako.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:6b:29:67:af:e6:0c:70:23:18:68:b7:d9:79:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa3fb00c504c1a0912a3495a8e3dbaf3d96a4a
Validity
Not Before: Jun 14 16:01:11 2025 GMT
Not After : Jun 15 16:01:11 2025 GMT
Subject: CN=bb6a86c83840ded27a40ee2d227bf9d65a5b6ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:e8:41:85:f4:34:ee:40:b5:39:40:eb:10:
77:2e:3c:bc:c8:33:2a:8a:eb:c0:92:5e:2d:0e:8f:
c8:df:82:75:3f:97:36:7e:39:21:bf:03:2d:fd:66:
20:15:6a:c8:20:d4:43:a1:c3:4e:1a:0c:c2:c0:ad:
2e:e0:fc:55:dc:41:29:31:a2:70:4c:04:8c:80:62:
7b:f3:bf:1d:8c:1f:3c:dc:e4:9d:08:a3:be:6e:48:
e7:64:da:d2:25:fb:3e:fa:17:c6:03:a5:ff:3e:4b:
53:8e:89:e4:81:15:fa:90:70:13:1a:5a:f4:a9:4a:
84:75:c2:69:9f:92:5d:38:ec:50:0e:fd:9d:d4:38:
75:0b:90:26:3f:7f:af:8c:2c:88:c7:f7:7e:61:d2:
da:92:49:06:fa:4b:57:6d:f0:01:ef:9e:c9:ba:67:
8b:94:ba:43:4e:e7:e4:4c:56:57:8c:86:f7:e3:22:
f7:f1:54:3c:0f:73:2a:b6:f8:06:87:7d:d5:9a:20:
2c:a4:31:fc:58:a9:42:71:4f:cf:d0:e9:58:03:c5:
45:cf:57:df:a0:f6:da:d3:f9:88:c8:58:29:00:41:
21:0c:5b:4e:3a:4b:cb:6d:a2:8e:dd:d8:d2:46:22:
39:99:20:18:40:1f:1c:34:35:4c:59:37:fb:4c:87:
5d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6A:86:C8:38:40:DE:D2:7A:40:EE:2D:22:7B:F9:D6:5A:5B:6E:D4
X509v3 Authority Key Identifier:
keyid:20:AA:3F:B0:0C:50:4C:1A:09:12:A3:49:5A:8E:3D:BA:F3:D9:6A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKo_sAxQTBoJEqNJWo49uvPZako.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/67b42a-cac3-4216-b518-d74a4d4f52b4/1/IKo_sAxQTBoJEqNJWo49uvPZako.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:2f:35:71:74:2a:ac:a0:d4:7d:4a:ed:2c:9f:1f:3d:ec:74:
7f:0f:3a:4a:90:a7:ff:76:90:ca:23:b9:14:2c:c5:93:72:96:
7f:86:71:fb:a3:ee:cd:a4:c1:0b:47:7c:19:98:3b:0e:40:df:
a6:50:f5:27:14:81:33:a4:c7:a9:68:bc:33:82:27:7a:24:bf:
3d:93:7a:17:fc:2c:16:59:d5:51:17:7b:fd:bf:71:3e:b9:15:
92:91:1a:1d:26:3f:70:d5:aa:d3:8a:23:e6:d5:fb:25:83:27:
4e:b1:31:57:77:42:f0:e5:bb:aa:4a:5b:03:e1:ce:67:b6:ee:
93:7c:05:0b:57:58:7b:07:a6:e1:d5:58:23:e0:cb:81:af:07:
17:2d:bb:59:fd:4b:b5:e2:e0:47:17:3a:58:53:c4:48:1a:2d:
9c:a6:92:9a:a3:93:19:b3:43:6d:12:c5:34:f5:3c:3c:19:6e:
10:11:08:8e:b1:62:1c:ff:5e:cd:05:fd:13:c3:cc:c5:af:9a:
53:37:40:b3:a7:6c:35:1d:44:9c:08:73:c6:01:c1:8d:b0:19:
ca:c1:f5:98:26:6c:bf:a4:07:b5:2c:cc:23:8d:ad:23:b4:ed:
e7:ac:a5:26:45:66:92:b5:fc:5d:78:70:83:12:86:b2:2b:1b:
96:07:74:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 02:27:51 2025 by rpki-client