Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
File: bTi1QIMcnNXfSAhRpygGZ-181kc.mft (raw, json)
Hash identifier: 3cr62fqG2qMAIpUtLnUhUU8gZFLDfinSolt1O6TEI/c=
Subject key identifier: 22:7C:41:5A:1B:54:AB:96:29:0A:CB:2F:A0:41:11:DF:2D:8A:32:A5
Authority key identifier: 6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
Certificate issuer: /CN=6d38b540831c9cd5df480851a7280667ed7cd647
Certificate serial: 0196523727778204BA820F1345744C198882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
Manifest number: 091C
Signing time: Sun 20 Apr 2025 08:01:08 +0000
Manifest this update: Sun 20 Apr 2025 08:01:08 +0000
Manifest next update: Mon 21 Apr 2025 08:01:08 +0000
Files and hashes: 1: bTi1QIMcnNXfSAhRpygGZ-181kc.crl (hash: h50tggQNIW/+S9iZ0FYl3E2Wbx2OLBWXUBIcedgUkmA=)
2: okBQ3HYZQrL6ORKAHfJHyIzTOqU.roa (hash: 8hx35QaymOBGYmgY5QQuJWW8cF+INO74gqLHBnenUT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:37:27:77:82:04:ba:82:0f:13:45:74:4c:19:88:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d38b540831c9cd5df480851a7280667ed7cd647
Validity
Not Before: Apr 20 08:01:08 2025 GMT
Not After : Apr 21 08:01:08 2025 GMT
Subject: CN=227c415a1b54ab96290acb2fa04111df2d8a32a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3b:80:28:0b:2b:33:8c:24:06:67:a0:67:f1:
36:fc:d7:18:9b:dd:7c:6d:6c:42:b1:06:4a:70:73:
65:29:b7:cc:ad:6e:a6:48:5e:94:0a:f8:54:f0:4d:
b5:c8:52:c4:09:a5:50:84:c8:48:69:8d:91:22:bb:
f5:b1:ff:d2:e9:2b:96:d0:93:ac:3c:be:c3:f6:5c:
54:bf:fa:be:36:b4:b8:c3:01:1c:99:66:e7:80:97:
75:2d:89:69:d6:8a:e8:38:be:28:e4:b7:32:c5:41:
36:8c:d0:3d:56:96:31:e7:9b:8a:90:1c:b9:74:4b:
48:cb:e4:67:b1:ef:14:b1:03:cc:79:0d:09:88:2e:
86:fe:e1:c2:0e:44:6f:bd:6c:32:b3:49:4b:1c:da:
0d:bf:f6:ee:49:f9:7e:9c:97:b2:eb:dc:7c:65:43:
cd:c2:ad:e4:86:4f:6d:9a:8c:46:63:cf:23:49:1c:
a3:bb:ba:c7:31:7a:2d:47:99:ae:ee:de:e9:27:ec:
5c:70:0f:51:11:f4:69:f6:fe:d1:fd:03:70:83:a3:
a9:52:de:93:43:24:42:c2:a9:c5:e3:40:02:4a:87:
0c:45:26:de:f9:6d:b8:d7:e2:31:02:cb:9e:c1:f2:
9a:90:29:36:3c:a1:15:1d:4c:ac:37:48:28:57:2a:
70:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7C:41:5A:1B:54:AB:96:29:0A:CB:2F:A0:41:11:DF:2D:8A:32:A5
X509v3 Authority Key Identifier:
keyid:6D:38:B5:40:83:1C:9C:D5:DF:48:08:51:A7:28:06:67:ED:7C:D6:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTi1QIMcnNXfSAhRpygGZ-181kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f7308a-4108-4acc-b600-3630543b521b/1/bTi1QIMcnNXfSAhRpygGZ-181kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c0:4f:fe:01:44:02:8e:5f:03:71:83:a1:05:61:d4:63:13:
16:ad:7c:da:bc:b5:4c:9a:50:8f:4e:56:b3:71:95:b7:65:e8:
00:ce:b9:20:37:64:34:10:4d:c7:f8:d0:24:3b:f3:a0:20:f0:
70:82:82:5d:d4:b3:f3:6c:75:68:f5:b9:d3:03:c9:17:b5:71:
f8:1e:c2:9b:07:b8:51:f6:af:ff:15:53:d3:fd:15:56:cf:be:
39:4e:66:b1:8c:b3:42:a5:8a:a1:10:41:36:3f:75:f1:ad:da:
e8:dd:e7:3c:ce:29:53:75:74:58:37:68:93:18:56:6f:b9:89:
8b:0c:f2:ae:1b:c1:fe:0c:50:38:0a:c1:a6:0f:78:63:8a:dc:
71:9d:45:25:4c:95:1e:02:fe:2e:e2:b8:b4:79:c6:be:4a:fa:
f7:88:d9:44:3d:f3:50:e0:fd:aa:ae:65:e8:1a:69:6d:2d:9f:
47:f1:c9:16:5f:da:e7:17:81:d3:5f:7b:05:9f:db:26:55:94:
ed:c7:0e:f8:5f:c3:01:3e:ef:03:ad:50:bf:61:58:df:f8:e4:
21:47:cf:ee:24:e6:81:02:52:00:fe:7d:a2:f4:89:f9:c3:5d:
8f:90:61:f8:00:b8:a9:14:a6:cb:fc:95:45:0a:dc:47:da:80:
bc:4e:75:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:55:16 2025 by rpki-client