Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
File: ilUqhuMbaeXVMg7egdNLsSikXO4.mft (raw, json)
Hash identifier: BUsBlwoJ8Jhr1axD29GndagToIxjmx9ssMQaNyVWgmQ=
Subject key identifier: CB:7A:F4:E9:48:CB:48:07:9A:EC:13:81:54:8A:79:98:B6:A9:A2:A1
Authority key identifier: 8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
Certificate issuer: /CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Certificate serial: 0196545BFDD91F7445FFBAE026BAE7DE6E97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 18:00:36 +0000
Manifest this update: Sun 20 Apr 2025 18:00:36 +0000
Manifest next update: Mon 21 Apr 2025 18:00:36 +0000
Files and hashes: 1: gx1SCX17EN8yNFFOaZKqHyy38bg.roa (hash: y86l006aIRQbh6g6sMv1/V04L9sTmUKHfB0xrZAQk4Q=)
2: ilUqhuMbaeXVMg7egdNLsSikXO4.crl (hash: 7sCmYgnzrXSCK4LLdJtzQoMtaUkQC/tHAnWkfi2YXRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5b:fd:d9:1f:74:45:ff:ba:e0:26:ba:e7:de:6e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Validity
Not Before: Apr 20 18:00:36 2025 GMT
Not After : Apr 21 18:00:36 2025 GMT
Subject: CN=cb7af4e948cb48079aec1381548a7998b6a9a2a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:23:46:e3:8f:b7:14:03:5d:33:ae:89:33:6b:
f6:c2:1a:11:75:eb:41:0e:de:40:de:54:cb:0c:4e:
4c:d5:52:3a:80:8f:51:84:4b:c3:f8:8c:1a:dc:da:
96:c6:cb:87:17:a0:a3:70:c9:8b:a7:a4:0a:bb:35:
0c:20:64:a6:f5:e7:24:97:51:da:c8:35:63:7e:fd:
19:67:df:b4:0a:be:ab:8f:fb:f0:f1:b7:0e:e1:30:
f2:e8:92:00:76:fc:fe:9f:0e:0e:c1:3f:7c:6b:30:
00:f0:8a:ca:96:24:ca:b3:ca:ce:7a:69:e7:a9:22:
f7:25:da:19:c9:97:45:76:98:46:90:51:e8:05:5b:
df:99:d3:ce:9b:04:24:e9:0d:ed:f8:95:08:4b:0c:
63:96:a6:2c:93:92:da:f1:64:00:c9:39:3d:78:7d:
a7:78:80:69:ec:e2:4a:0e:f6:1a:cc:52:06:58:c3:
72:21:84:1e:c2:a7:68:4f:ea:df:87:ff:24:12:a2:
29:aa:6b:35:d2:56:ea:75:07:9d:47:5d:12:6e:ac:
b3:77:10:f5:13:36:b1:23:ab:4c:73:60:84:23:a8:
11:56:a4:ad:00:1a:bf:5f:3e:2b:ec:51:f1:54:ef:
8f:79:da:2a:ee:bc:03:57:84:08:1a:69:75:be:51:
8a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:7A:F4:E9:48:CB:48:07:9A:EC:13:81:54:8A:79:98:B6:A9:A2:A1
X509v3 Authority Key Identifier:
keyid:8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:cb:06:41:8e:fe:9a:8a:68:90:ad:77:db:28:d9:10:e8:f3:
05:1f:61:f4:77:75:a5:d6:64:cd:3b:bc:2c:f0:79:af:f8:81:
58:03:68:94:5f:42:89:42:67:d1:e4:43:b5:24:b4:5e:59:96:
02:f8:71:13:47:1e:1d:04:92:36:b4:06:fa:e8:e4:e6:d7:6c:
c4:84:a0:83:c4:51:cd:fa:be:a8:31:e7:95:1d:48:bb:81:58:
10:62:03:28:ae:ff:c1:4f:1f:ad:9d:ef:c3:3e:d9:3e:11:06:
c9:fe:13:22:17:4c:ea:97:96:0b:fc:6c:59:46:bb:f6:58:14:
ee:51:bd:98:28:49:75:11:ed:83:b3:d8:12:b0:38:54:79:70:
4e:8a:44:1a:75:6d:c1:3a:2e:74:44:bd:8a:a6:e8:77:0f:e2:
10:19:bb:b8:db:dd:47:9f:2a:70:c5:d8:f0:51:93:50:55:f2:
37:3e:74:ee:30:04:56:e8:f6:f6:00:80:c0:4b:e1:64:64:dc:
3c:c9:c8:ac:1d:fc:16:1b:fa:ff:8c:bb:fa:99:56:43:1d:60:
da:e5:61:14:ed:92:ef:a5:f3:29:39:c1:94:24:8a:38:e2:6b:
a1:a5:81:c5:01:2e:29:05:d8:3f:7f:27:68:b1:43:d5:66:75:
3e:19:5d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:40:12 2025 by rpki-client