Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: qCX2Rf2QZL1dkdllEn+ZGQuHtaAuB4zZD7eQnYUn3W0=
Subject key identifier: E4:85:64:09:06:84:A4:3B:B5:CE:0D:19:FC:4B:47:B1:0C:92:46:24
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 01958EBCECA857B88F74970713C4275FA506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0908
Signing time: Thu 13 Mar 2025 09:01:40 +0000
Manifest this update: Thu 13 Mar 2025 09:01:40 +0000
Manifest next update: Fri 14 Mar 2025 09:01:40 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: xMhx0znYaLOn2rBUyOHCbhnrXgOhC5aI+z4raOEOeLQ=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bc:ec:a8:57:b8:8f:74:97:07:13:c4:27:5f:a5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Mar 13 09:01:40 2025 GMT
Not After : Mar 14 09:01:40 2025 GMT
Subject: CN=e48564090684a43bb5ce0d19fc4b47b10c924624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6f:70:60:46:d8:21:4f:30:be:7b:16:33:6d:
93:98:a3:1c:c6:e6:b5:20:0c:1f:dc:37:a8:75:77:
8c:b4:fe:35:1f:39:31:ba:fd:e0:4f:50:97:5f:a9:
fc:eb:6b:f1:4b:a8:4c:66:a4:f7:25:63:0c:99:09:
ff:0c:7e:29:8c:67:8c:aa:70:aa:a1:99:d8:b3:d6:
d1:f1:e0:39:bd:65:c3:ec:1d:d5:54:34:b7:98:0f:
44:90:dd:90:20:14:e3:83:95:79:28:b2:4f:27:c0:
3e:0f:89:20:01:d2:bd:da:83:db:92:62:7b:91:4f:
d2:1d:e3:28:fc:2b:6c:eb:f1:22:15:71:bd:8a:c5:
8c:57:9f:49:c5:f0:b3:d1:71:b3:fd:ef:8c:1b:57:
46:25:4d:e7:34:36:72:70:c1:50:cb:8f:1b:43:49:
0c:d2:51:f6:d7:00:15:b9:77:c6:28:a1:73:40:af:
27:a0:5e:3c:f8:2c:6f:2d:5f:78:85:96:11:a1:93:
62:73:5a:c9:38:ee:d8:3e:45:14:84:97:be:73:b3:
35:99:9e:fe:39:1b:34:c5:6d:8a:d6:ce:47:ad:5e:
7b:31:b3:d8:93:8d:15:f1:c5:7b:43:c1:91:81:72:
d6:0d:21:a0:ae:8a:22:43:95:f9:c0:6f:fe:76:8d:
68:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:85:64:09:06:84:A4:3B:B5:CE:0D:19:FC:4B:47:B1:0C:92:46:24
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f4:42:df:8a:ca:09:61:89:9a:20:19:31:b8:d3:ad:72:02:
74:dc:ec:fa:72:36:33:fe:78:50:4d:e5:b8:f3:5a:e3:4e:ea:
44:3c:c8:8d:17:6f:f9:83:b6:f0:c8:a1:a1:10:40:dd:fa:e9:
f8:da:3f:53:63:b9:d5:d8:3d:1b:42:bb:a9:95:8f:f4:64:a0:
24:c1:b6:b7:09:cc:34:55:db:38:5f:a7:48:16:a8:cf:fc:69:
7d:6b:d3:4d:25:fc:27:59:55:43:e6:0c:a6:7f:6a:f3:b9:6a:
ef:d6:96:7b:aa:5d:25:70:2b:b7:0e:de:18:90:0c:3d:05:33:
cd:fa:4a:8f:20:21:43:30:e7:b7:20:82:d1:39:75:29:57:3b:
d7:f4:0d:21:43:27:49:ad:1d:67:55:35:90:d9:aa:25:c8:92:
d1:8b:6f:6d:9b:de:dc:e6:c6:41:ca:d6:c5:d2:ce:2b:be:dd:
30:de:8a:3b:02:b5:9b:58:32:80:49:75:9d:8f:b6:65:a5:b4:
ba:39:cb:a0:f0:9f:29:66:06:c0:cb:7c:70:c9:84:45:b0:10:
f4:76:d8:d7:dc:42:68:1d:00:cd:11:d1:3e:09:e5:91:4a:81:
0c:7d:b3:5f:71:31:99:ce:39:d1:30:7b:30:6a:12:4a:8c:3d:
cd:21:a7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:30:02 2025 by rpki-client