Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
File: Iycd4-AQWavm0aWTxKJP9uGI1k8.mft (raw, json)
Hash identifier: TOm5BZeC342tKlJI08pso4snqEZQT4C9IZgIW+dpI0k=
Subject key identifier: 6B:28:79:24:8D:EB:6E:AA:3D:2F:84:18:80:88:B5:4D:63:7C:16:A0
Authority key identifier: 23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
Certificate issuer: /CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Certificate serial: 019776AE4AADBB8E2EDBD1C63E576606AC47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
Manifest number: 0D94
Signing time: Mon 16 Jun 2025 03:00:23 +0000
Manifest this update: Mon 16 Jun 2025 03:00:23 +0000
Manifest next update: Tue 17 Jun 2025 03:00:23 +0000
Files and hashes: 1: Iycd4-AQWavm0aWTxKJP9uGI1k8.crl (hash: knkH2JRjcG7UoPbcimO6a4MeRzXCJ3vSVS9IeZYBjs4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:ae:4a:ad:bb:8e:2e:db:d1:c6:3e:57:66:06:ac:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Validity
Not Before: Jun 16 03:00:23 2025 GMT
Not After : Jun 17 03:00:23 2025 GMT
Subject: CN=6b2879248deb6eaa3d2f84188088b54d637c16a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:73:89:ee:73:43:c1:90:dc:dd:03:ac:26:
a3:2e:9f:2f:da:eb:16:4b:dc:46:84:c9:43:19:b2:
06:39:88:ed:9e:65:f7:e1:1d:21:2e:fb:c5:1f:b1:
e1:66:0d:a5:85:ef:e9:e5:6c:06:ad:dc:89:e4:fe:
4a:b7:30:1f:33:d9:93:8f:2a:ee:91:9e:96:b8:94:
e4:a7:8a:e3:d1:77:4c:3d:85:dd:2a:e2:55:28:d5:
b4:c0:9b:ad:11:9d:88:2e:e7:9e:9a:05:23:ec:2c:
10:53:eb:cb:a8:a9:95:2e:e6:1e:f6:e0:95:63:60:
e3:58:8d:92:0c:e9:5d:98:73:13:6f:ac:c5:5d:d2:
a2:41:7d:f0:37:59:af:b8:11:61:8f:c9:7d:e6:8c:
9d:fe:d7:13:e3:56:dc:2d:63:63:17:70:d7:87:0a:
5b:b8:67:3a:9a:f6:9b:d9:41:98:96:19:32:f9:c7:
13:a0:8e:f8:f1:1a:78:7a:c1:1e:1f:53:8b:d8:94:
a3:86:f4:51:60:7a:d0:b1:87:05:1a:50:0b:34:d5:
bb:dd:63:36:d5:05:45:94:54:53:a7:ab:1d:bd:e5:
a8:63:e9:93:e8:4b:be:4c:db:d1:6a:a5:9f:fb:83:
db:82:aa:5a:72:25:83:9f:5b:55:52:1f:29:f9:dc:
3d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:28:79:24:8D:EB:6E:AA:3D:2F:84:18:80:88:B5:4D:63:7C:16:A0
X509v3 Authority Key Identifier:
keyid:23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:30:78:ab:ad:4e:4b:f8:13:20:41:ab:86:66:25:11:42:12:
1a:53:91:86:db:bb:fd:c2:0e:13:01:27:ee:5b:c9:02:a4:d1:
53:10:52:0d:7c:21:34:2e:21:6f:e0:a8:80:b6:ca:7d:ac:98:
11:3c:14:cd:57:e7:da:3b:95:ea:f5:7a:1c:28:6a:0d:b6:7f:
2f:c1:b2:38:ee:e3:1f:95:23:63:c9:17:05:a9:07:5a:63:55:
d3:26:cd:f0:4d:ef:8d:e4:b1:aa:52:71:cf:e6:55:77:4e:2f:
1a:9d:46:ca:0d:c1:b5:64:1e:4f:20:a1:76:e1:06:51:92:f7:
56:db:7e:da:96:15:b9:da:13:92:81:02:11:8b:58:88:b5:2a:
cd:d2:50:94:0b:b0:75:bc:0b:57:c5:d0:d1:c1:e6:cb:31:b7:
5b:d1:4c:65:be:16:37:9e:78:9e:c0:43:8f:30:21:13:82:42:
1d:1b:da:79:ea:1f:7b:5f:4d:7d:85:d6:9c:b1:c5:f2:77:92:
2c:a4:54:44:d6:6e:d8:95:d3:f7:62:98:2b:24:01:11:f2:a9:
6f:37:f8:21:dd:7c:70:95:ab:ae:43:c3:a0:a0:77:9c:4a:fd:
7e:83:7b:81:25:4a:f6:03:69:fe:79:6a:38:e8:66:57:7b:b9:
e7:0f:23:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 06:21:44 2025 by rpki-client