Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: Rht6F/pxWg67RQ6lgJFiUoi1xY5Antav64wGw5LwwJ8=
Subject key identifier: E5:1F:6F:22:8D:85:1B:B2:5E:91:C7:12:F1:05:F3:B1:4A:7F:74:1D
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 01976DAB758C4A65C060D3186AA7757E5EE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 09:00:42 +0000
Manifest this update: Sat 14 Jun 2025 09:00:42 +0000
Manifest next update: Sun 15 Jun 2025 09:00:42 +0000
Files and hashes: 1: HbgX7OEx-8g9VTQvYvbD_e0bPJ4.roa (hash: W8tzfEVYuZk67nGO3GJK/wSiRVXk9GPJqQ4Zpo1nq8A=)
2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: EdDgQG3HXH084PbYcYF7RSkvMc6CUGr6NQ8VYMc8Bfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:75:8c:4a:65:c0:60:d3:18:6a:a7:75:7e:5e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: Jun 14 09:00:42 2025 GMT
Not After : Jun 15 09:00:42 2025 GMT
Subject: CN=e51f6f228d851bb25e91c712f105f3b14a7f741d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:4c:58:f2:73:c7:07:64:61:43:c3:02:05:
d2:84:3b:c6:45:d7:b2:6c:c0:d9:8a:2b:a0:f8:b1:
6b:31:cd:27:0f:4a:ce:03:f3:a0:ac:5a:11:42:ef:
6e:c9:3b:30:dd:b3:6c:fb:22:e1:a6:7b:6f:a1:38:
b9:d3:15:48:a2:1f:b9:e8:46:e6:25:d8:d2:89:2c:
b3:91:cc:0b:53:c3:3b:79:0a:84:4c:0e:b8:de:94:
99:7b:de:65:5d:22:f4:ee:6e:65:5c:ca:83:70:9d:
bd:7b:88:b8:7e:2e:3e:25:21:03:2f:80:c4:b2:99:
3d:bf:1d:f3:19:b0:2e:cf:20:d0:22:be:0e:c3:a3:
36:0b:23:17:27:56:0d:e5:ef:5c:eb:ad:31:42:a3:
6f:b4:9f:1a:81:a9:18:5a:e8:27:56:74:53:7f:32:
02:d1:ba:82:6c:91:93:39:de:21:a9:29:8c:91:e9:
a1:a6:43:ae:a7:90:56:d0:1b:48:e6:73:c6:2c:05:
27:28:60:49:5a:15:61:8b:e7:7b:67:11:11:02:0a:
7a:81:8c:4c:a2:a2:74:7f:34:1e:3a:67:9f:43:30:
52:2d:ba:dd:45:2b:74:04:43:56:ab:61:f2:78:c0:
bc:27:5d:b4:d6:aa:6c:4a:e6:e8:ca:67:5c:d5:0c:
43:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1F:6F:22:8D:85:1B:B2:5E:91:C7:12:F1:05:F3:B1:4A:7F:74:1D
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c1:88:5c:48:74:66:68:af:08:02:16:18:aa:95:8e:bb:a6:
62:e6:a5:57:cf:5b:65:56:ef:fc:4b:9e:14:dc:27:61:20:d4:
b2:d5:26:cc:48:cf:c8:e3:8b:a1:2a:a1:43:ba:2f:a6:94:cb:
df:9e:c8:ef:a5:83:91:02:89:d7:a1:12:9d:12:ce:87:a7:d7:
77:fc:36:da:d3:16:3a:d0:3d:97:b9:f8:d3:f7:a5:39:68:a1:
65:6c:68:42:19:d1:28:0b:d6:73:0f:8d:dd:8f:65:db:42:a5:
ac:a7:84:79:de:8d:8f:29:10:08:66:05:21:b6:7e:24:b1:b4:
7b:4a:9e:43:3c:35:cb:26:4f:10:37:97:7c:42:c8:cb:de:c0:
4d:83:89:0e:cb:29:b0:90:69:a9:7b:8f:27:50:68:a8:15:df:
4a:7b:e7:ba:2e:bd:6c:0e:36:36:f1:e7:48:25:6c:2e:6b:09:
66:0d:ca:f1:0a:13:eb:ac:dd:a0:d4:5f:db:eb:91:97:fe:c3:
26:d6:ab:ce:38:d7:67:33:33:ea:69:eb:41:5e:2b:3e:10:4d:
4f:c1:e0:2b:64:ba:24:1f:27:fc:c9:a1:b3:79:d8:61:fc:15:
32:51:a2:f5:4d:eb:d9:20:65:90:d2:a5:6e:19:f7:d5:c6:bc:
6c:5f:5b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:17:16 2025 by rpki-client