Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: f8clImyyMaXfzoWGbrGpCEpCByc9KKZsr0M0HLkfLTA=
Subject key identifier: B4:57:5F:ED:19:45:C6:D7:19:3F:82:A2:71:85:E9:F1:CA:DA:E3:DC
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 0196439F2FD5F17CA0D06237FDEC11E46708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: 024C
Signing time: Thu 17 Apr 2025 12:00:27 +0000
Manifest this update: Thu 17 Apr 2025 12:00:27 +0000
Manifest next update: Fri 18 Apr 2025 12:00:27 +0000
Files and hashes: 1: OWXYykmlPDxYaUK6ibOA62-hDng.roa (hash: x4BvE6J+LBS4eTxuz/ILECCYgRYsxbKFwFccG0CtiDI=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: 6tBFOhBDL631FwRWRSHxTOH1L9pinxUSvHcGtgChrWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 12:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9f:2f:d5:f1:7c:a0:d0:62:37:fd:ec:11:e4:67:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: Apr 17 12:00:27 2025 GMT
Not After : Apr 18 12:00:27 2025 GMT
Subject: CN=b4575fed1945c6d7193f82a27185e9f1cadae3dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:96:d9:6d:ad:73:ea:41:65:94:fc:ee:bf:
2d:6a:31:be:2b:40:b4:07:f6:11:46:23:45:3b:55:
cf:bf:12:18:53:57:9a:2b:86:2e:34:42:ac:50:0f:
af:21:d5:ff:30:72:70:48:2c:c1:6d:75:8c:ca:d9:
24:40:79:24:07:a8:e0:f4:45:44:bc:75:cb:c6:99:
9d:e5:b3:44:ab:c6:26:cc:f2:cc:2f:51:c9:57:ea:
49:6d:06:29:c7:41:93:d1:13:43:00:10:99:a2:79:
51:86:56:a0:29:e2:7d:e6:63:d7:27:0e:14:9a:b5:
5b:32:23:9e:de:98:f3:3c:a9:a4:0c:73:00:b6:50:
a3:f5:4a:b8:ce:4a:da:3a:a3:94:a6:f2:0f:1d:57:
0c:d7:ae:fa:c1:b8:56:91:c9:19:2f:bf:34:6b:e4:
e1:1c:bf:2f:21:6a:e9:1b:a9:f5:2a:47:45:31:b8:
14:91:50:e9:6c:30:50:eb:45:82:2f:3e:14:f3:e0:
d7:5a:3c:b9:98:2c:d3:2e:2b:9b:4b:da:f2:87:c3:
7f:c8:ba:d8:65:9a:64:7a:7f:97:b5:62:dd:7e:41:
44:17:59:77:48:0d:59:2e:b3:c6:6e:88:1c:83:a9:
9e:9f:de:5c:60:28:b2:36:30:07:f3:fe:60:6a:d1:
5d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:57:5F:ED:19:45:C6:D7:19:3F:82:A2:71:85:E9:F1:CA:DA:E3:DC
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:7a:30:40:77:98:82:45:19:33:c0:3a:cf:2b:96:79:86:a0:
e8:54:56:34:b8:99:0f:10:6a:d3:bb:69:9a:da:b0:e4:37:08:
ed:8f:e6:b2:85:95:8c:a9:6c:20:cf:dd:68:13:35:93:70:db:
bc:0f:ba:79:30:32:f8:a3:fa:20:d2:3b:c5:c9:23:da:9c:1e:
f6:5f:33:46:ee:5a:c8:15:f2:d1:82:fb:37:f3:01:90:38:27:
5a:5c:a8:a0:82:6a:e3:e9:c8:ce:db:89:77:22:3c:dc:72:78:
78:96:fa:1d:90:c4:14:5e:f9:2f:01:5a:7c:55:76:06:c9:73:
83:07:34:07:ee:93:b4:05:d6:aa:72:3c:c6:23:fc:89:64:94:
ca:43:23:c8:bd:51:f0:7d:c9:c5:7b:a4:3d:1a:43:92:fe:14:
c3:0d:84:55:2f:04:43:3d:57:fe:ec:ed:7c:7e:17:49:e7:22:
67:2a:ce:78:80:ce:b4:ab:51:61:1b:0c:1b:bc:81:10:fd:7f:
1c:11:18:ec:f1:04:35:bf:15:28:f3:ee:70:85:7f:c3:a6:89:
3e:00:22:0e:34:7d:4c:41:70:62:45:42:da:87:59:ab:c0:dc:
bc:60:eb:41:b1:e5:5c:ce:a9:17:c4:e1:c1:c6:b1:38:3f:10:
b0:1b:1f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:43:12 2025 by rpki-client