Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: lfXxUJeu9WyhYOzQgKKFOqHY88Lnby72reR9p4aobMs=
Subject key identifier: 4F:96:19:F1:18:30:88:0F:23:97:90:FD:32:17:9B:D5:71:53:43:45
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 01976E506A3BFE789ED01A852EF2517C2D64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 156A
Signing time: Sat 14 Jun 2025 12:00:53 +0000
Manifest this update: Sat 14 Jun 2025 12:00:53 +0000
Manifest next update: Sun 15 Jun 2025 12:00:53 +0000
Files and hashes: 1: 2ttxDr4pGnjxuFL3h06WTGhjE60.roa (hash: gb8hbvNo/pcY/swamzsbRwiOgi4eH7YRN51AtOhEfsU=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: JM/Veynt2/4O0pRHh9fdRsulHv8agQKaOCilcCy8RVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:6a:3b:fe:78:9e:d0:1a:85:2e:f2:51:7c:2d:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Jun 14 12:00:53 2025 GMT
Not After : Jun 15 12:00:53 2025 GMT
Subject: CN=4f9619f11830880f239790fd32179bd571534345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e5:52:ee:42:15:1b:82:8d:c4:30:2c:fa:52:
90:a6:9d:9f:be:16:fa:6a:fe:42:80:7b:4b:37:5a:
e1:02:ee:10:ca:67:cb:47:a9:0a:d3:f1:61:13:f1:
eb:e3:dd:63:a8:b1:a6:7b:ec:25:f5:43:b8:76:1f:
8c:b5:03:bf:99:b5:8e:c0:c5:ec:eb:65:f6:7a:93:
ed:d4:10:5f:63:bf:4d:c5:8e:e5:ff:a6:b8:d6:11:
90:12:1c:20:b4:90:e1:0e:4b:94:03:a1:5d:d5:95:
70:78:d3:b2:04:3d:6a:a7:74:4d:5c:76:6f:c2:5c:
b4:95:1f:14:f9:d7:cd:f9:7c:d9:f0:7f:89:6f:14:
e3:0c:b5:4f:15:80:2e:0f:83:3f:55:bc:23:c5:1b:
0a:92:9e:83:db:c3:a5:eb:52:ea:6b:75:97:24:52:
29:66:3b:50:e4:4d:d0:84:f9:65:0c:d9:71:3e:8e:
6c:0c:8f:8d:4e:c7:58:f2:19:23:00:bd:a4:b9:9d:
05:41:7d:46:35:3a:b9:d5:90:50:49:b9:ec:2f:cb:
58:8f:13:71:05:90:8d:3b:f8:a8:f7:54:ed:92:7f:
40:81:e5:0c:27:4a:5f:3b:c4:5f:61:2a:25:30:65:
9e:5b:2b:cf:4e:54:9f:eb:04:1d:28:48:bf:ef:14:
5f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:96:19:F1:18:30:88:0F:23:97:90:FD:32:17:9B:D5:71:53:43:45
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:12:ee:cd:d8:4d:4e:42:a3:48:b8:79:60:0e:65:60:34:28:
be:90:98:d4:d9:c9:35:de:fc:39:0c:0b:92:c7:3e:3b:66:0e:
7f:58:6a:6a:21:82:73:2d:8b:14:ef:7a:dd:8b:6a:dc:07:61:
f1:19:b8:8c:c2:14:b2:e2:77:34:d7:88:2a:a1:06:66:79:12:
10:18:48:8c:9e:f3:26:5f:06:06:7c:fe:ad:2c:96:75:40:84:
c0:61:b9:f6:5d:3e:77:79:9b:74:f3:d9:f7:7b:89:5e:ad:3d:
7f:60:78:7e:9b:d5:78:97:13:1c:4f:f0:6c:a2:1f:8d:67:1e:
ed:b5:21:85:74:0d:a7:a8:d0:d0:42:99:27:bf:ad:7d:ec:e1:
01:bc:58:94:1d:e0:85:b2:30:3d:07:ab:ad:5f:8d:ae:9b:ff:
26:b3:d0:49:9a:bd:a2:14:2e:fc:f2:0a:63:83:39:bf:3d:5c:
a4:a2:f3:ea:9c:30:f5:df:41:24:9d:a0:77:1e:8f:d2:36:d0:
42:3d:02:6e:3e:e5:60:e3:f6:b1:85:e8:7b:9f:f1:31:12:3e:
7f:57:01:3c:48:c4:4a:e2:32:11:a6:aa:45:a6:cf:de:80:e2:
eb:af:92:0e:96:ef:40:70:66:2e:b9:46:07:dd:aa:71:fa:2c:
a3:95:20:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:07:06 2025 by rpki-client