Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: PciwSV82W/xhyMsBJkM30d/Siy1sP9RnRLtI06xFTXg=
Subject key identifier: 0A:FF:23:B6:0B:2D:09:06:D0:CA:96:5A:BC:6D:D3:BE:32:38:75:DB
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 01976BBDB0387A87754522BAC3ECACE8DFC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 1521
Signing time: Sat 14 Jun 2025 00:01:22 +0000
Manifest this update: Sat 14 Jun 2025 00:01:22 +0000
Manifest next update: Sun 15 Jun 2025 00:01:22 +0000
Files and hashes: 1: FXy87TSnS3zZKpD3cubdEzL9JTI.roa (hash: ev8YOzfcP94Okj6loLdeokLYKFfF9CSd4o8ZPprNj7U=)
2: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: WEVzQSsWY4Q8VW4ow+95lVB4tj17gZNs1tCNCBWGfVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:b0:38:7a:87:75:45:22:ba:c3:ec:ac:e8:df:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Jun 14 00:01:22 2025 GMT
Not After : Jun 15 00:01:22 2025 GMT
Subject: CN=0aff23b60b2d0906d0ca965abc6dd3be323875db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2a:1d:b8:d7:aa:be:b9:39:0c:60:96:9b:e3:
23:76:3f:f4:7d:0d:cd:a3:47:a7:56:ec:b0:e8:1b:
05:f4:d3:e0:e3:df:91:42:50:5d:ee:2a:9f:da:1f:
c2:35:de:16:84:fe:31:ff:cb:c6:c6:cc:68:10:92:
68:d1:c7:da:b3:bf:00:05:51:69:5f:65:b2:f9:b8:
ba:d9:81:d4:4b:cb:ba:60:e7:f6:99:2f:68:eb:ab:
1b:63:6c:a6:09:54:0b:1f:0f:38:3b:9b:99:61:22:
93:b5:ff:0f:d2:46:f1:2c:a0:fe:6e:35:d7:80:8a:
12:ae:28:46:40:5a:f7:cf:5c:fa:66:61:93:c2:c9:
6f:93:1a:f4:da:ce:4d:7a:e4:80:2f:dd:9c:bc:e0:
46:09:02:b8:9d:5c:6d:8a:63:ce:c5:6d:e1:f8:c6:
7b:96:56:a9:9f:d6:4b:89:5f:83:8e:1f:fe:43:9f:
37:df:67:6e:a3:34:a5:b1:6c:ca:80:57:9e:2d:11:
55:ed:e9:09:0b:cc:d5:9c:19:0a:3c:c0:a9:e8:d0:
39:d1:f6:21:1e:f6:03:cd:66:4d:c4:ae:8c:f9:10:
a3:dd:8d:58:79:04:b4:16:ea:16:9a:d3:26:14:f9:
71:16:72:d8:4b:1f:af:98:fa:8d:1c:f2:ad:36:7a:
94:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:FF:23:B6:0B:2D:09:06:D0:CA:96:5A:BC:6D:D3:BE:32:38:75:DB
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:75:31:c7:bf:26:a9:22:74:86:d4:70:97:80:09:06:50:62:
eb:42:bc:15:f2:db:02:84:23:b4:fe:89:d6:28:61:71:23:d0:
35:e7:4c:d0:7b:49:25:2e:a8:32:b9:1f:7d:5e:14:3d:c7:ca:
b4:82:d6:25:6f:b4:c2:65:ee:9c:73:e3:59:3e:41:64:5b:7e:
c2:1e:65:65:86:32:77:d4:71:59:e0:f8:58:cc:c7:57:af:b6:
75:a3:56:95:70:c1:65:e5:2a:0a:da:b2:61:11:a5:97:52:31:
90:ff:f5:a4:05:35:a3:c8:b0:05:b0:fc:1a:a7:2e:3c:43:1d:
74:5c:79:eb:0c:97:f7:b8:8d:4f:1c:a7:01:de:e7:a3:54:63:
aa:66:98:50:fe:21:ad:28:bd:e4:6d:61:bd:2b:fd:0f:84:4e:
a2:de:e9:13:b6:7e:46:13:4a:98:72:07:2f:bf:15:7e:a3:11:
ed:39:af:44:9b:58:8d:e9:c5:a4:a1:5b:e4:af:7d:66:2b:73:
f1:ac:c7:d2:f6:ed:83:5d:9b:72:91:b0:f4:9d:30:69:6c:9d:
4b:64:a0:20:e1:c0:3b:6c:25:f9:73:2c:46:51:8c:3b:ad:1a:
29:f6:9c:fb:11:92:d5:e7:79:88:f0:fb:92:27:c9:06:fc:65:
f9:eb:ee:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:38:12 2025 by rpki-client