Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
File: io-pkrwKYdssvnhuHFnTYMzlRIY.mft (raw, json)
Hash identifier: 3uhSWXDOrySUuxeAxQ9e/D8IdQxv8N0YPPArgvkE4PQ=
Subject key identifier: D0:9F:94:90:91:BD:89:83:3E:AA:5E:29:30:52:6A:CC:1C:A1:1A:E2
Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Certificate serial: 01965681AD155BF75E36120F238CA7574449
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
Manifest number: 0654
Signing time: Mon 21 Apr 2025 04:01:01 +0000
Manifest this update: Mon 21 Apr 2025 04:01:01 +0000
Manifest next update: Tue 22 Apr 2025 04:01:01 +0000
Files and hashes: 1: UCOQjmQUUOgrTdTJgotuOqOo8tE.roa (hash: LKSVHd9tPQynvxDd2UN8Jk/eJK88GQBFqDbfRDHvZ3g=)
2: io-pkrwKYdssvnhuHFnTYMzlRIY.crl (hash: k+S1rObAQhTef9olv/SRqdv8t7ttJ+MlZzWCGXOzy0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:81:ad:15:5b:f7:5e:36:12:0f:23:8c:a7:57:44:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Validity
Not Before: Apr 21 04:01:01 2025 GMT
Not After : Apr 22 04:01:01 2025 GMT
Subject: CN=d09f949091bd89833eaa5e2930526acc1ca11ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a8:30:81:d4:99:cd:5b:e4:97:ab:be:51:7f:
a0:54:7f:de:de:60:46:a4:f4:cf:cb:be:18:73:46:
72:ba:6f:e7:d7:9f:ec:01:1b:5b:83:84:73:c6:c3:
e6:19:d6:44:84:9a:17:ae:e9:c8:00:f4:8a:63:cb:
bb:76:47:d6:a1:67:1e:3b:46:5a:f6:ba:84:f5:0f:
4f:d1:8d:66:6e:97:be:aa:3a:2b:61:c8:94:ff:3a:
06:b3:fd:f0:5b:5b:c9:93:e9:b5:f5:34:5c:54:3b:
c4:95:16:01:99:a3:c0:2f:65:df:ec:6d:63:f7:38:
c1:cf:1b:99:59:f9:e8:78:ca:2e:18:7b:fd:c5:82:
93:8c:9f:9b:54:e9:b2:d5:8b:ce:18:84:24:35:4d:
bf:b9:dc:90:ea:7d:fa:2b:92:e6:e2:f8:a4:4e:e7:
8d:85:f0:e7:1b:9a:40:47:01:1e:e4:c6:f9:94:64:
f4:2e:f5:cf:a5:e0:53:22:b0:85:1c:85:a8:84:29:
95:9f:3a:1c:00:0c:c0:a8:11:f8:c0:23:92:ea:d8:
e5:e0:54:fd:aa:d1:3a:62:76:3d:cf:5f:ca:cd:76:
c6:82:29:fc:ab:c8:aa:a3:13:2e:6e:6e:58:7c:76:
3a:5f:5c:d3:38:8f:b2:a6:58:db:08:75:60:d5:c0:
85:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9F:94:90:91:BD:89:83:3E:AA:5E:29:30:52:6A:CC:1C:A1:1A:E2
X509v3 Authority Key Identifier:
keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:4f:69:2a:38:38:44:ca:7a:86:54:2d:a3:50:7b:be:02:b3:
b6:db:49:62:49:46:ea:af:1d:45:87:e6:97:64:ed:9f:8d:c0:
54:8b:3f:49:e0:b0:84:95:fc:fa:47:3a:81:45:ad:17:98:7b:
2d:04:84:6a:94:a0:cf:f7:79:dd:aa:75:75:53:28:20:7d:71:
53:c9:07:62:38:10:2e:e9:e8:9a:6a:71:68:fe:20:77:a4:0e:
c4:d2:11:e0:60:00:c7:3d:87:65:bd:b1:a0:eb:19:eb:65:93:
71:d6:6e:7a:e1:c9:9a:7c:06:60:79:a0:55:f8:3e:09:58:03:
39:3c:32:f1:81:3a:06:2a:50:7e:2f:1f:a2:75:25:ba:f2:5a:
27:d0:e3:68:7d:fa:21:4d:78:ae:ee:d8:02:0d:d0:46:1b:0b:
b7:c1:6f:13:37:d5:12:86:13:21:ec:15:95:da:3c:e4:79:99:
6f:9c:3d:30:72:e1:f4:c4:b1:96:3e:a8:b8:b6:2d:59:3f:7a:
e3:be:8e:60:e5:1a:68:3a:48:9a:4e:ba:5d:11:4e:69:49:d8:
11:72:b0:94:1c:f9:1a:c7:60:58:e0:ab:e8:05:af:21:64:0f:
f0:b5:e8:4f:7c:5e:af:ae:2a:19:4f:82:46:4a:2d:78:df:9f:
c8:a6:aa:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:49:14 2025 by rpki-client