Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
File: lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft (raw, json)
Hash identifier: gAJlv5+xyNourBGkUJEEK6xRNdtkqeHxi3+cxw9KTYA=
Subject key identifier: D9:A6:97:10:10:5C:AA:7C:8B:92:C3:A2:E8:98:B2:F9:E1:82:A8:2A
Authority key identifier: 94:8D:45:CF:E3:48:2B:8F:61:DA:E0:00:B0:07:A4:67:EC:DD:4E:E6
Certificate issuer: /CN=948d45cfe3482b8f61dae000b007a467ecdd4ee6
Certificate serial: 01976BBD15E845A989009079AE5AA1821579
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 00:00:43 +0000
Manifest this update: Sat 14 Jun 2025 00:00:43 +0000
Manifest next update: Sun 15 Jun 2025 00:00:43 +0000
Files and hashes: 1: lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl (hash: MC++IZ4gHQ622MD/osanG6iINFhL+wc0k334BRlrtK4=)
2: qmxsyUbW81VdsinEooDwPTqDgYg.roa (hash: 5mMYBqM+9mhhKL1z8ft7+FIG5whvIdm78M3vwoV475A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:15:e8:45:a9:89:00:90:79:ae:5a:a1:82:15:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=948d45cfe3482b8f61dae000b007a467ecdd4ee6
Validity
Not Before: Jun 14 00:00:43 2025 GMT
Not After : Jun 15 00:00:43 2025 GMT
Subject: CN=d9a69710105caa7c8b92c3a2e898b2f9e182a82a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b2:f1:c5:be:46:62:88:84:e7:4b:43:32:98:
b8:da:f4:60:65:a0:3d:3d:3e:c8:2f:35:b2:e5:b5:
0d:7e:36:18:3f:98:43:28:04:d4:ec:bb:cf:25:57:
88:0b:b2:05:56:4f:52:f6:59:46:af:5c:e8:6b:02:
cc:41:2f:4b:68:3b:13:2d:d5:c6:52:a3:28:65:68:
4c:ad:70:d3:6a:69:49:be:b1:82:e3:53:2e:d9:38:
56:c9:e2:b6:5f:d1:14:bf:af:31:fc:33:ee:53:e5:
b9:0c:9d:25:8e:f7:ff:60:8f:6d:6b:cc:19:cb:33:
dc:ec:b8:1d:71:79:d4:02:2a:6f:a3:eb:0a:d7:87:
07:12:04:5c:ae:3f:42:d0:e2:82:a9:e1:bd:b3:41:
d3:60:a4:3f:db:c9:dc:43:bd:33:f1:1b:9c:32:ec:
18:ce:9d:38:3d:ed:7b:5e:d6:7e:10:ac:3e:4f:38:
38:9d:1c:f7:fc:f7:b9:c4:19:80:cb:3f:0f:94:5e:
1c:51:e9:6a:e0:38:c8:31:95:8c:d5:7f:6b:a6:42:
3c:bb:12:b0:04:8e:5d:13:92:9a:a4:0e:fb:a3:5c:
af:4f:95:3d:dc:90:fa:32:df:72:8e:32:83:1f:4a:
5c:fb:fb:2e:22:1c:09:17:e4:80:62:35:74:e4:fe:
97:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A6:97:10:10:5C:AA:7C:8B:92:C3:A2:E8:98:B2:F9:E1:82:A8:2A
X509v3 Authority Key Identifier:
keyid:94:8D:45:CF:E3:48:2B:8F:61:DA:E0:00:B0:07:A4:67:EC:DD:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:42:db:9f:c1:c1:80:f9:b1:fd:2f:9b:fa:d9:f1:e0:93:da:
79:e5:f6:4e:9a:e3:6d:de:3a:9c:9d:47:c4:92:54:f7:07:a4:
4f:c2:9a:9e:69:2d:88:d2:fb:c4:39:86:73:fe:aa:55:f6:e3:
77:02:2e:63:00:8d:70:d1:ac:3d:7a:e5:da:60:4b:9d:66:f6:
97:1b:bc:2f:38:5d:15:34:52:df:0d:3d:e6:34:c2:36:20:f3:
ee:10:0c:f6:c8:a3:21:11:f1:52:6e:ee:01:11:b0:cd:79:d4:
83:df:cd:c3:b2:96:3e:7f:8b:b9:05:b3:de:49:ac:f2:f4:aa:
16:e8:3c:66:50:ce:6d:de:23:28:87:00:7a:f2:7f:60:80:fd:
13:f0:80:58:f3:17:11:70:e1:e0:95:02:30:4d:78:fc:6d:54:
9a:95:8c:dc:d6:22:47:ea:b0:e5:8b:40:27:6c:1c:51:15:b5:
19:b2:5f:20:8c:fa:b3:46:ae:54:14:19:49:5b:ec:16:2b:25:
2e:84:c2:77:b4:a9:06:c3:f8:1c:50:00:04:6f:bc:86:16:09:
0d:37:00:50:5b:0e:03:f8:e1:1b:43:59:9d:04:9b:62:c5:93:
57:df:aa:b5:ce:b9:4b:f0:98:22:6b:79:bc:4a:1d:6c:41:40:
d1:31:b5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:08:33 2025 by rpki-client