Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json)
Hash identifier: wi2RD3iyotOGscMJW6QBxaKi2IPJOaJnXOaV/KCXWL0=
Subject key identifier: 44:56:5E:09:B0:78:9B:BB:94:77:B9:4C:23:74:A7:A5:C5:9C:49:28
Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Certificate serial: 0197711AB50E0EC4F8B5B0AA0082CA2823DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
Manifest number: 0701
Signing time: Sun 15 Jun 2025 01:01:05 +0000
Manifest this update: Sun 15 Jun 2025 01:01:05 +0000
Manifest next update: Mon 16 Jun 2025 01:01:05 +0000
Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: FR//k4w6jfKNeNYHCSepAZW1pK46Uctpb21TzyeGlXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 01:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:1a:b5:0e:0e:c4:f8:b5:b0:aa:00:82:ca:28:23:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Validity
Not Before: Jun 15 01:01:05 2025 GMT
Not After : Jun 16 01:01:05 2025 GMT
Subject: CN=44565e09b0789bbb9477b94c2374a7a5c59c4928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:33:c2:ee:e4:2f:41:9d:54:9b:14:ba:85:fb:
31:dc:81:15:3f:96:9b:09:ee:3e:2b:aa:08:a2:90:
23:e9:30:30:9a:3f:bc:4c:fb:47:50:e0:c2:e9:11:
c8:70:09:e7:49:ea:27:a1:96:23:83:66:1d:ab:20:
0b:0e:55:93:45:d1:36:b5:b5:19:c0:f9:2d:d8:e8:
f3:19:46:af:6e:3c:33:31:11:bd:15:ef:5f:5b:61:
97:b5:71:d3:79:57:3a:98:a7:de:11:e7:96:01:f2:
c7:27:f5:7f:7a:ea:6b:85:17:a5:e3:bb:09:4f:db:
a5:48:f7:fc:57:05:8f:c7:71:69:5e:3e:f5:19:3b:
1b:90:80:9e:1b:b4:b2:66:79:d7:eb:85:d7:d1:e3:
79:da:c7:51:cd:03:0d:bf:94:f8:97:51:60:c1:f1:
77:de:51:83:e3:29:0e:bd:76:0e:8b:d6:7d:05:33:
2c:07:3e:1c:03:81:05:c7:18:d9:83:02:2e:23:fd:
7a:c9:3c:bc:34:f5:76:77:38:04:46:60:2d:5c:65:
d7:26:ef:7a:e9:df:9d:4a:06:24:4c:86:b8:5a:dd:
54:3b:be:45:ff:c5:38:1a:2b:5d:d7:92:c2:bf:14:
30:4a:fb:53:09:a9:d6:df:0c:eb:54:1c:bb:69:be:
e5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:56:5E:09:B0:78:9B:BB:94:77:B9:4C:23:74:A7:A5:C5:9C:49:28
X509v3 Authority Key Identifier:
keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ab:ba:0c:99:cf:f5:0e:25:39:47:ea:15:cf:be:51:50:71:
f1:fb:58:e4:f8:ba:2c:45:69:7d:d2:7d:2e:5c:cb:14:93:c5:
48:94:50:c7:ef:16:84:83:f6:f3:f9:a6:ee:44:94:6f:73:77:
4a:93:42:7f:09:66:b7:c1:2a:c7:d5:9c:a0:d7:d2:eb:51:79:
9e:b9:fe:58:a3:34:d4:69:d7:43:81:26:12:f6:9b:e8:4c:a7:
1d:fa:18:1a:f1:19:c0:38:d1:a2:b2:8d:55:e6:ac:11:4a:f6:
0a:1b:95:e5:aa:ba:30:ee:20:20:82:43:02:16:ad:ba:d8:f1:
2b:73:74:50:69:26:d0:f4:b6:3a:f1:4b:6c:05:3a:dd:70:0d:
20:ee:83:63:16:11:d2:0a:a8:a9:2c:23:d9:45:5d:74:c8:25:
2f:46:e8:63:69:69:86:d5:3b:28:a9:6c:65:ae:51:fe:bb:63:
8b:25:93:bb:33:dc:5b:3d:c5:4f:80:eb:08:2b:63:fc:01:fa:
87:25:a3:c8:63:f1:e9:8b:3b:24:ce:a0:18:bb:4b:16:21:ce:
16:9d:19:37:05:61:21:78:75:08:f1:d7:cd:02:76:92:ab:d8:
01:71:61:80:fb:40:32:ae:05:93:8d:07:8d:a6:e3:40:33:6c:
38:9b:2e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 11:46:42 2025 by rpki-client