Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: HLSQteHwz1RK9g7M6Kq/HHDZ5+Q+gskHxJZ80doDmlU=
Subject key identifier: 41:E8:D1:7F:76:6D:34:AA:19:69:D1:E6:A9:DF:B2:94:61:A5:43:F3
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 019654C9A1AB79D90FDD57B1F04FABFD961C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 03
Signing time: Sun 20 Apr 2025 20:00:22 +0000
Manifest this update: Sun 20 Apr 2025 20:00:22 +0000
Manifest next update: Mon 21 Apr 2025 20:00:22 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: bMTaX0R/XbZBnz8PaGkOWX5SoW9PAWU2B2j7eQ4iEt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:a1:ab:79:d9:0f:dd:57:b1:f0:4f:ab:fd:96:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Apr 20 20:00:22 2025 GMT
Not After : Apr 21 20:00:22 2025 GMT
Subject: CN=41e8d17f766d34aa1969d1e6a9dfb29461a543f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:28:fb:1a:24:14:e6:c2:00:87:79:5e:3a:52:
a8:af:b3:44:0b:1a:55:24:bf:1a:44:52:12:4d:4e:
fc:7e:3f:9a:05:c6:0d:f9:f3:dc:3a:d1:c6:e2:4b:
fb:1f:76:65:fd:aa:cc:75:f1:79:64:a7:ff:46:be:
86:ee:24:24:16:34:41:80:39:d9:44:9f:71:3d:f1:
bc:14:9a:f7:55:eb:65:5b:15:9f:b6:77:49:9e:48:
68:b4:5b:44:91:40:6f:bb:a7:34:6d:78:6b:47:4b:
7b:ba:cf:ad:00:b2:2c:e1:65:b6:96:e7:49:b5:35:
4c:40:51:be:b7:8f:2c:93:09:d9:a6:33:ae:be:5b:
b8:f0:83:83:7c:d3:62:01:dd:17:73:9f:08:7d:4b:
40:02:35:33:98:92:1f:e6:82:de:28:5c:a5:0a:0b:
6d:96:14:60:65:df:10:34:de:0f:df:05:87:0e:23:
5b:4f:db:65:b4:e6:75:a3:d9:4b:b9:7e:33:b6:6e:
41:8b:c7:3f:1b:09:d4:80:04:25:92:96:b0:e4:77:
e6:aa:8c:8c:01:81:cb:51:3a:7d:61:3f:26:91:15:
b3:c8:a7:17:e0:80:80:e2:09:6e:e3:2c:c4:0e:cc:
2c:89:05:9c:00:8c:2a:b8:1b:77:9a:c4:24:70:53:
5a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E8:D1:7F:76:6D:34:AA:19:69:D1:E6:A9:DF:B2:94:61:A5:43:F3
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:68:47:8b:15:fc:5a:51:07:57:8e:58:84:35:47:f5:53:6b:
9d:af:9a:2e:97:e5:9b:16:76:ab:38:c2:ef:57:81:9e:d2:ed:
5a:61:08:e1:2a:e5:99:5a:b2:7e:1b:07:c5:49:71:4d:1a:df:
f9:07:71:1a:a4:38:86:8a:81:ff:23:df:a7:4a:47:f3:13:f1:
bd:db:9f:27:27:f1:8f:7f:0f:d3:6e:5d:bd:c7:b4:b5:bc:93:
5e:58:33:e1:c6:fa:73:30:79:7a:64:83:42:6c:e3:34:de:3e:
e7:dc:24:43:70:27:51:6d:6d:4f:b2:d6:65:4b:df:ed:02:e3:
14:55:d5:47:fd:7f:79:b6:88:39:5e:48:3d:39:ba:05:70:58:
5d:b0:52:30:21:9b:36:55:20:2c:04:b5:1b:51:32:71:7e:04:
1c:24:da:8d:7b:0c:a2:dd:82:e0:9f:b7:a4:e4:85:25:c5:10:
aa:80:24:0c:de:67:b4:c9:17:0b:6c:b0:32:70:cf:68:61:89:
4b:45:6f:8d:c3:fa:ab:07:d3:a4:79:97:45:eb:4e:66:e9:d9:
5e:6c:ad:0a:92:b4:08:04:4c:a9:cd:1d:13:47:74:94:c0:f6:
60:08:3e:26:5c:b7:d9:19:86:3d:71:7c:84:c8:fb:8a:b6:02:
78:8c:33:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:01:30 2025 by rpki-client