Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: viti+66F3So7tHdd5h9m04BiGRan7sCdJpl39hy39tU=
Subject key identifier: DE:ED:65:6A:84:2F:27:FF:A0:C6:28:92:1D:A0:97:F1:8E:4C:38:F7
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 01965123CD08CDE7071DBE86EA65A6CD8049
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 03:00:22 +0000
Manifest this update: Sun 20 Apr 2025 03:00:22 +0000
Manifest next update: Mon 21 Apr 2025 03:00:22 +0000
Files and hashes: 1: FE1p8xqk22ZLL8TtVpBgIJ5HCYk.roa (hash: EEjSbBj9sFsFeIYvGJ66Mb2B5f9wjNh8P6NHIHv03o4=)
2: Nj_g5XagzgChnaGJmyAjIxliPxQ.roa (hash: 2T2yAo36kvnreO/zfmG7HDMPjTZHcC33NYqG6yteeqQ=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: euLrIg/Yr2adL+HSDMtxTqfldLPJRNOfldad2c0/aZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 03:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:23:cd:08:cd:e7:07:1d:be:86:ea:65:a6:cd:80:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Apr 20 03:00:22 2025 GMT
Not After : Apr 21 03:00:22 2025 GMT
Subject: CN=deed656a842f27ffa0c628921da097f18e4c38f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:47:66:39:e6:20:c7:66:08:f7:a5:bb:23:d1:
38:44:63:7b:6d:64:ee:02:7b:9b:0b:7e:76:ea:a3:
b5:5c:20:a5:12:10:f9:bd:83:6d:85:01:18:0b:e0:
b4:d6:e4:b5:d7:59:c0:bc:71:ed:94:54:54:af:37:
9d:57:81:c3:7b:47:1f:8f:31:34:0e:41:bf:0a:e7:
f5:96:c4:23:a0:63:34:d0:1f:3a:7b:fd:a5:0e:f9:
55:b9:41:96:a0:10:60:07:c5:03:dc:d9:45:bc:ea:
0b:1f:34:03:9b:dd:22:26:cc:0f:98:b5:a1:9a:ed:
b5:03:09:55:a9:17:31:0a:3c:f0:ac:2f:e1:ee:97:
88:d2:05:0a:25:45:0a:41:f6:ba:ef:b7:7a:c6:aa:
fd:8a:02:4b:ca:36:f6:9c:19:31:d4:f4:19:4c:ce:
f1:ea:b8:12:88:61:69:ca:af:83:c2:e2:dd:05:9a:
ff:49:d9:ce:bf:1a:6a:cd:26:9e:03:9c:6d:be:40:
b5:62:16:b8:c2:8e:4b:4a:f6:7e:6e:33:2c:08:86:
b4:1a:66:6f:4d:95:db:b7:d2:3f:c3:26:ec:9c:f4:
05:b0:b2:e0:e8:32:45:db:37:9d:23:5c:b8:13:e9:
ba:ed:60:99:22:94:36:f4:c2:8b:f6:63:40:38:01:
44:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:ED:65:6A:84:2F:27:FF:A0:C6:28:92:1D:A0:97:F1:8E:4C:38:F7
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:5c:a1:b5:f2:f0:7f:83:18:63:0e:96:55:c3:9d:e8:d0:80:
26:73:97:7a:9c:fd:aa:d2:3c:dd:d0:19:4b:51:a1:da:63:92:
1b:57:f4:e6:57:12:54:a9:07:aa:e9:05:1b:e0:02:7f:c1:52:
bf:a1:92:3a:9c:34:5a:2e:28:17:c0:60:81:da:7c:27:ef:68:
37:69:c9:66:81:5d:1a:34:ba:15:2c:8f:96:ef:f7:50:e9:ad:
6e:e1:af:91:42:0a:b8:d6:82:a8:38:b6:3f:a4:bc:93:02:e8:
63:c2:a8:2b:4e:06:67:4a:21:31:b8:be:40:32:81:90:41:17:
f7:9e:d7:18:75:39:f9:41:77:c7:8c:0b:8b:d7:3b:3d:d0:c5:
4b:0e:20:02:ce:06:bb:20:7d:d7:6a:fe:f7:30:2f:09:38:0b:
79:31:bf:9b:49:2b:ea:07:49:ab:0f:db:7e:90:d9:7f:63:82:
27:70:90:b7:ee:93:db:e8:1d:4e:44:32:25:e4:28:11:3e:5c:
0f:58:4d:bc:46:19:90:35:06:12:c0:be:91:0e:26:f2:47:06:
30:42:c8:40:2c:7b:aa:3f:7e:b7:09:ac:ae:2b:eb:74:59:2b:
6e:f1:27:69:9a:f8:1a:66:74:91:39:bd:b8:24:d8:8a:e4:af:
fc:57:d8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:11:37 2025 by rpki-client