Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
File: IJPjg7LMUtXsow_rEml1k8nHiKA.mft (raw, json)
Hash identifier: r2Mar6FwXK+qrqtRGJO982PkMLqHwdEkegznNGSlFdg=
Subject key identifier: 9B:4A:46:40:FB:D0:4A:63:BF:C4:43:4D:D1:CB:EE:B1:12:2D:6F:69
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 01976BBD302B18D5554607F8B7ED60ACC161
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
Manifest number: 158D
Signing time: Sat 14 Jun 2025 00:00:50 +0000
Manifest this update: Sat 14 Jun 2025 00:00:50 +0000
Manifest next update: Sun 15 Jun 2025 00:00:50 +0000
Files and hashes: 1: IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa (hash: eoMtlnp1ZLGeorMDixEuqh0nobwLwy70mhjbtsKxD5o=)
2: IJPjg7LMUtXsow_rEml1k8nHiKA.crl (hash: eZJsfo/eiLaqabex4O+CSvEaRntHBflJ3QKbuUNDeaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:30:2b:18:d5:55:46:07:f8:b7:ed:60:ac:c1:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Jun 14 00:00:50 2025 GMT
Not After : Jun 15 00:00:50 2025 GMT
Subject: CN=9b4a4640fbd04a63bfc4434dd1cbeeb1122d6f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ad:7d:83:0c:68:a2:93:21:3e:7a:5a:08:12:
57:26:a0:c7:f6:ab:e0:a5:fe:66:4f:0a:17:54:60:
df:2e:50:c8:58:26:fc:c4:e0:e8:07:4d:f3:0c:5c:
fa:3b:fe:ff:19:2c:95:b0:05:38:6a:de:cd:98:b3:
23:77:49:f4:66:25:68:e3:c9:1b:1c:27:f9:fa:c8:
9e:0e:6f:9d:c8:df:61:4a:8c:8f:5f:33:9e:d2:69:
35:db:d0:5b:dd:bf:ef:c5:61:dd:31:c2:a6:f7:d7:
5e:8b:f2:3d:15:f1:65:41:7e:71:db:86:13:d8:a3:
0d:20:5c:ec:d6:61:fa:43:9e:d5:1d:d6:da:40:3c:
c7:b1:35:aa:63:80:ff:72:8d:56:b3:a6:80:ef:5e:
2f:70:42:2e:9d:ef:61:ca:6a:26:8b:eb:0b:1d:12:
d1:19:3d:bc:8c:8b:55:2e:c3:28:7d:8b:e4:cf:c4:
42:57:18:1b:6a:a0:59:b8:fc:45:df:2f:bd:b0:2c:
81:bd:06:01:8a:f5:db:8a:21:e3:89:fd:b4:7d:ca:
bd:6f:4f:85:4c:8c:35:13:94:20:b8:84:c3:29:62:
da:d0:e2:d4:b7:20:47:65:76:4e:a8:36:a4:58:c1:
06:dd:df:ba:54:46:4e:4b:60:be:d8:e1:d2:bf:94:
c8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4A:46:40:FB:D0:4A:63:BF:C4:43:4D:D1:CB:EE:B1:12:2D:6F:69
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:fd:28:69:64:91:e1:25:3a:22:80:b9:ea:e3:ec:fc:b2:ae:
7d:68:bd:7c:b0:1e:bf:88:39:5a:cf:b1:b0:af:b5:cb:63:87:
86:9f:a9:ca:98:92:9f:96:6a:66:a7:48:a9:a9:1a:ac:a3:8b:
72:a4:f1:03:ac:a4:d2:98:8d:79:84:81:98:c2:35:9d:44:2e:
b5:38:a6:9f:04:80:f7:a1:21:ad:73:98:40:90:b3:0a:9a:98:
7d:7e:26:28:e1:3f:e5:86:07:ae:ed:f6:b1:be:21:91:af:24:
4f:ca:a3:b0:35:49:87:37:0e:c0:22:2d:ff:f2:3b:52:3a:dc:
da:7e:64:9b:79:37:c0:b1:fb:12:e7:e7:79:6e:42:d4:6b:b9:
fc:74:12:ff:d8:15:7a:5f:db:aa:be:ed:8e:0a:a0:a5:53:52:
2d:60:a6:5b:3a:f3:44:67:f2:38:6c:a3:06:14:d7:14:ac:ce:
c2:c7:d6:aa:df:1f:c2:c2:1a:cc:c6:97:08:d4:61:e6:0f:1d:
97:85:68:db:0c:d1:dd:f4:ee:a5:e0:d0:c0:43:9e:54:b3:16:
bc:f9:b9:94:7e:03:df:76:41:fe:a4:70:50:de:b2:19:98:a2:
30:f1:86:14:41:cd:29:16:42:d2:32:95:95:69:e8:12:f7:ef:
b5:63:4d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:13:43 2025 by rpki-client