Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: cCtLGMqsQixmFIHPE4OgUzLMkI++m2FwgPPsLUs0I6g=
Subject key identifier: 33:DA:7D:DC:20:88:7A:7E:BD:C0:33:F4:F8:DE:BE:81:96:3E:2A:6B
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 019655A5918DF01EFE720DD86CCC933F48E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 119F
Signing time: Mon 21 Apr 2025 00:00:36 +0000
Manifest this update: Mon 21 Apr 2025 00:00:36 +0000
Manifest next update: Tue 22 Apr 2025 00:00:36 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: MCLqKd8dozRPtmMmaDa1ta1TKMeeJqTePblWz+eO42o=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:91:8d:f0:1e:fe:72:0d:d8:6c:cc:93:3f:48:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Apr 21 00:00:36 2025 GMT
Not After : Apr 22 00:00:36 2025 GMT
Subject: CN=33da7ddc20887a7ebdc033f4f8debe81963e2a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:b0:a7:de:a3:e6:b0:a4:33:2f:5f:9d:da:92:
0e:ca:3d:ac:b4:31:f7:a8:6d:43:ef:cd:34:44:f8:
c1:a8:28:da:84:ab:0b:4c:a7:5f:8a:86:7f:d8:b9:
01:a9:d2:60:b9:65:e1:0c:c4:cf:dd:5b:2a:4e:3e:
85:ec:d8:d3:20:c3:63:8c:6b:cb:dc:3b:d3:07:ce:
21:56:bd:15:a7:5a:a3:90:bd:a2:cc:a8:31:c8:1f:
d3:ba:81:38:91:ef:d5:95:5c:09:b4:af:7b:9f:1d:
dc:81:d2:be:f1:fe:c1:48:25:6c:45:9d:c0:a7:65:
ba:31:19:ec:51:32:fe:ee:fe:c4:5e:8f:66:6c:2c:
77:8d:c9:c1:81:f4:36:3f:76:0a:3a:c0:29:6f:f5:
4f:ea:fb:50:16:07:7a:75:15:08:a3:2a:22:92:00:
e9:df:d8:f2:79:9b:d5:eb:84:53:f7:98:3d:73:84:
68:a3:05:01:4b:63:15:48:6b:83:a4:93:cc:ce:d9:
3f:b4:d7:e3:e8:f8:bf:eb:4c:7c:c5:72:05:b0:88:
ed:81:66:8e:76:67:a6:b0:1c:54:71:32:69:ac:e5:
92:44:0b:9b:46:4c:b3:f7:5b:24:9b:77:91:25:03:
55:7c:32:5f:29:26:b4:79:e7:c7:4b:71:4f:82:3a:
cb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DA:7D:DC:20:88:7A:7E:BD:C0:33:F4:F8:DE:BE:81:96:3E:2A:6B
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:c5:3d:b0:15:51:6b:5d:86:9e:8f:fe:e1:fb:b1:55:66:c6:
3d:5a:a6:0d:5d:e3:39:a1:95:98:bb:6e:0c:7d:12:41:69:74:
41:72:e2:ab:ee:88:8b:ef:ca:bd:93:55:7e:28:6a:86:f9:71:
e1:11:ab:8e:a1:8b:83:08:55:f8:7b:ce:53:78:67:96:c6:09:
23:b8:0d:e7:3a:87:c8:3f:23:89:56:9c:69:8d:ec:57:b6:c1:
a3:8b:c3:d0:af:fc:f1:d1:98:d7:63:43:63:fe:b4:ea:c8:01:
25:d1:72:e4:52:92:f0:31:fe:c0:dc:80:87:1d:7a:18:be:f5:
c4:4e:16:f0:9f:e4:5d:03:a5:e4:74:b4:68:5a:e1:28:7e:61:
81:9e:51:35:87:16:16:f1:17:ef:75:f8:6d:4b:20:fe:b4:b5:
ad:1d:04:28:c4:3c:9f:f4:95:08:c8:8b:64:c9:73:ef:a4:cf:
e0:e4:02:d1:8f:92:5f:cd:3e:18:10:ff:11:c4:cf:ed:2a:fd:
c6:c4:b2:8c:8c:d0:e9:d9:43:5a:27:b8:f4:3a:ab:fe:e4:dc:
fb:16:61:98:1f:ca:3f:7b:84:4e:84:67:ca:a7:c4:47:ae:2f:
11:8b:c3:67:45:25:cd:96:7d:f3:3e:db:20:9e:3d:7a:46:08:
4e:7a:b0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:51:00 2025 by rpki-client