Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: Ncx90BoTWIvyaCwZlBDj2av3E/TjlgEnQuOXqIl5BuY=
Subject key identifier: 98:EA:E1:24:6C:5C:95:D0:83:82:4B:D1:69:9F:09:AB:6B:19:43:BF
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 01976C61ECD829C24D17717670E2099037FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 12D4
Signing time: Sat 14 Jun 2025 03:00:46 +0000
Manifest this update: Sat 14 Jun 2025 03:00:46 +0000
Manifest next update: Sun 15 Jun 2025 03:00:46 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: 15obUcVn6pkWIoztX7JzbqAHejDOqDXV21shIfoFLVQ=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:ec:d8:29:c2:4d:17:71:76:70:e2:09:90:37:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Jun 14 03:00:46 2025 GMT
Not After : Jun 15 03:00:46 2025 GMT
Subject: CN=98eae1246c5c95d083824bd1699f09ab6b1943bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6b:e4:c9:33:3c:6b:66:65:23:a5:90:43:21:
07:a6:ca:75:80:7b:57:15:f5:ee:59:f7:e2:fb:00:
71:4f:82:ca:6e:ad:6b:05:df:21:1d:8a:47:08:7e:
df:b4:64:0f:f3:c0:2f:d7:0b:e8:d7:bd:19:59:f0:
9d:7f:d2:78:84:c3:ff:e7:6a:06:98:b2:f7:54:df:
5d:f3:7d:88:a2:11:72:90:95:16:c2:d3:18:da:84:
ac:44:ca:0c:8f:61:2a:cb:7b:c6:b7:f2:05:17:7b:
3b:e9:41:cf:1a:f7:2a:38:45:dd:ba:46:39:b6:ad:
0a:18:6d:7d:4c:50:41:c0:18:aa:d3:1d:b8:31:16:
48:36:b5:10:0b:5f:7f:46:7d:22:c0:eb:b8:c4:4b:
42:4b:8c:3f:fc:72:63:5b:22:31:68:44:e9:4a:13:
b1:c0:5a:66:3a:d6:33:02:12:bd:c9:ec:ad:49:d5:
12:2b:a7:92:c1:d1:0e:e8:f2:fb:67:c0:ee:ba:0e:
57:f8:0b:25:8f:bc:52:35:91:1b:d4:ed:19:b9:29:
43:ca:5b:18:69:1e:b8:c3:b3:09:17:d9:69:0e:95:
e6:50:12:85:da:14:b8:f4:72:98:1d:7d:e5:70:a1:
3b:b0:a9:11:e8:05:c5:52:e8:f3:88:ad:58:b0:9d:
29:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:EA:E1:24:6C:5C:95:D0:83:82:4B:D1:69:9F:09:AB:6B:19:43:BF
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:c6:ff:93:79:50:24:85:35:7b:37:d6:c2:a8:56:15:ca:e5:
40:10:8d:56:e5:1a:3c:03:7b:b2:9a:bd:69:26:13:dd:55:95:
5c:d3:3a:4c:10:f7:22:29:7a:1f:4a:ae:38:fa:7e:35:23:14:
74:b9:2d:61:6b:a8:6e:30:30:d7:b6:18:d5:ee:fd:39:17:a2:
a3:9e:f0:e2:8f:b0:b0:c8:98:75:0e:49:41:44:bc:ac:2e:ee:
de:a2:39:6e:19:1c:5e:06:58:80:da:c4:8c:f9:b5:54:11:3d:
e3:61:03:01:ba:a4:91:0f:4b:95:c3:9b:71:f7:5a:bb:cc:87:
3b:d7:ce:b2:99:bd:88:5a:dd:90:8d:81:c4:8e:33:0c:04:d7:
99:70:fe:f6:61:de:9e:cf:b9:e8:16:f6:0a:27:e7:7a:5b:bf:
45:51:a3:1b:7c:50:f1:eb:ba:44:80:54:85:fd:67:58:85:d1:
77:f4:13:06:fd:10:0b:90:62:96:38:11:ee:57:59:65:3f:e9:
c7:c2:b2:69:27:cb:46:b3:81:26:4e:8b:bb:7f:cf:5a:ac:5b:
5c:69:07:d8:ae:a8:41:74:c6:19:66:c8:af:3a:ab:ea:ab:31:
fa:a0:da:39:e6:31:57:77:4d:bb:1b:64:f0:56:e8:9d:50:11:
75:e1:3e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:50:48 2025 by rpki-client