Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: il+C552hyZMCHAGZhq2epixLUb2Py4DTyWDngquV7EE=
Subject key identifier: A7:67:78:4A:43:33:37:46:AB:BD:F2:99:E3:B0:EB:5C:50:51:05:26
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019654C9E31FA2A7199A940635067BC1E7BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 0FD7
Signing time: Sun 20 Apr 2025 20:00:39 +0000
Manifest this update: Sun 20 Apr 2025 20:00:39 +0000
Manifest next update: Mon 21 Apr 2025 20:00:39 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: qxBHwZfIG9OoP7icYl1Mu0izWpbOUS7yjyxEk3IDP5g=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:e3:1f:a2:a7:19:9a:94:06:35:06:7b:c1:e7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Apr 20 20:00:39 2025 GMT
Not After : Apr 21 20:00:39 2025 GMT
Subject: CN=a767784a43333746abbdf299e3b0eb5c50510526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bc:76:bf:e4:1f:20:3d:1d:97:2b:4f:6b:80:
64:78:70:fc:fa:90:d3:f2:3c:b3:ca:0c:0b:1c:c7:
19:a4:f8:45:44:bb:ce:d0:3a:0a:2d:6a:88:8d:f1:
b9:f7:6b:d5:86:3c:c7:ab:ca:61:fd:91:70:35:7f:
1a:9f:1a:07:64:82:6b:57:e0:54:52:bb:93:ef:33:
29:5a:cf:56:78:73:96:f4:9b:25:a5:aa:e3:97:aa:
d2:63:83:76:24:46:4e:84:d3:39:75:be:c2:c0:9b:
63:98:ab:60:f1:4c:34:1a:00:a2:63:d5:1a:70:c2:
bb:17:65:fd:3d:27:f0:f6:12:3b:50:f5:f7:ef:d2:
53:7e:4f:76:55:8a:a1:f1:53:eb:71:da:de:7b:36:
25:e4:ce:99:af:84:48:6c:48:e3:82:cb:2a:9c:50:
3f:4c:e7:de:7a:a3:de:ed:8c:92:c3:b1:86:cd:e6:
7f:bb:28:52:f0:aa:b3:8f:e8:19:13:f8:e1:dd:0e:
4a:03:b3:09:a5:fd:2b:ba:37:f7:8b:45:ec:28:7f:
04:a9:ad:a7:87:31:a1:c7:6c:2e:51:a7:88:9d:80:
46:32:96:0d:70:40:19:44:8d:55:6f:71:00:99:17:
ca:95:db:96:3f:b8:7d:59:af:49:26:61:1b:1c:24:
fe:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:67:78:4A:43:33:37:46:AB:BD:F2:99:E3:B0:EB:5C:50:51:05:26
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:ec:a5:88:48:34:8f:f5:8a:7d:d3:47:c4:e0:06:eb:ad:94:
cf:8b:ab:1d:c1:31:80:ef:cb:d5:2c:ba:bf:b1:2f:2d:2d:3d:
bd:41:6f:fd:24:a6:61:0b:fa:b6:97:e8:bb:48:78:8a:2c:40:
4b:dc:53:2f:b0:fb:2a:00:dc:6e:65:59:53:19:dc:91:5f:84:
c0:02:43:b8:1a:5b:e7:0e:f0:5e:0a:e9:d8:32:95:e5:64:26:
ab:52:dc:eb:3c:56:47:ae:9f:bc:c4:5c:6e:7d:db:9b:ee:11:
3f:53:02:b5:9a:a3:d1:be:95:df:c9:6b:4f:93:40:05:5e:cb:
49:77:7c:f4:11:02:44:28:14:eb:c8:0b:1c:4a:9e:5e:70:56:
37:c9:d9:4c:bc:37:26:6c:ec:18:f0:9e:c2:af:fe:8b:29:c3:
9c:a5:9f:15:3d:f1:7e:4b:98:24:fc:28:86:0c:d2:b4:df:4d:
a7:c6:ef:72:bf:f8:f6:d0:2e:25:d8:b6:24:5c:ea:8d:4b:b9:
20:f8:d0:30:c8:7d:4c:a8:40:e7:96:5d:c1:eb:35:5d:ad:37:
43:c8:a3:24:b2:f5:e5:7b:ee:0e:9c:4d:54:86:ae:f9:25:69:
44:bc:48:f1:b2:f7:50:0c:70:25:b3:c8:64:ff:c2:6a:dd:01:
a7:47:dd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:16 2025 by rpki-client