Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: BvJC/KauUjfY4iX/0xS7x3a9GzbL1oeLAhrDTOqYFfE=
Subject key identifier: 8B:88:BB:08:D2:75:E0:DD:6C:F2:20:26:4B:D1:25:A3:F3:3B:DA:AA
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 01964FA3802CD898162E57E5AC4E83B8F180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 030A
Signing time: Sat 19 Apr 2025 20:00:37 +0000
Manifest this update: Sat 19 Apr 2025 20:00:37 +0000
Manifest next update: Sun 20 Apr 2025 20:00:37 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: 8E75KkZ7NPquMOgajvMT1a0xk/ETklQ3gB5LYWGMb+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:80:2c:d8:98:16:2e:57:e5:ac:4e:83:b8:f1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Apr 19 20:00:37 2025 GMT
Not After : Apr 20 20:00:37 2025 GMT
Subject: CN=8b88bb08d275e0dd6cf220264bd125a3f33bdaaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:78:e5:bc:6f:5b:a0:c4:51:b7:75:90:b2:e0:
93:b0:be:df:9a:96:e2:cb:54:74:f0:14:50:39:e4:
63:57:02:92:dc:07:7a:43:c7:53:13:85:cc:40:e5:
82:94:bc:81:07:89:0c:a5:77:db:7f:71:b4:a8:9e:
f2:ae:82:94:bb:6c:24:ba:95:3a:1e:ef:0e:92:2b:
60:bb:cd:e4:f6:f2:d6:99:6e:22:b6:87:33:f3:06:
1b:57:f6:36:a7:44:10:84:91:1a:75:8c:96:0d:33:
6b:3a:e5:aa:58:91:fa:45:63:73:76:a8:4f:6f:46:
96:3d:69:6c:f2:1f:16:b2:a1:78:fc:7e:de:5d:ba:
da:56:4e:83:a2:9a:39:bd:f6:e8:c5:3e:05:4b:f3:
c8:52:90:99:02:9b:bf:56:c9:75:84:00:10:d6:d0:
20:56:80:a8:14:e5:81:37:9a:30:7b:1d:0b:fd:d2:
0f:5b:49:a1:7f:23:71:53:5a:8e:42:da:f5:53:30:
56:74:5b:ff:83:35:06:4f:7f:2a:a0:4b:81:23:dd:
eb:7b:9f:16:a2:fa:49:8d:95:39:f6:15:bb:60:e7:
e5:b0:36:85:32:24:ef:45:2d:3f:85:5e:33:b5:b7:
fb:2f:5a:c9:a3:95:6d:6b:da:0f:d3:ea:48:34:73:
c9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:88:BB:08:D2:75:E0:DD:6C:F2:20:26:4B:D1:25:A3:F3:3B:DA:AA
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:58:27:5f:b5:14:e5:fe:21:f3:29:2f:12:73:8f:2a:eb:a8:
ca:cf:76:5d:b0:7b:dd:2a:f3:bc:7c:48:0a:16:dc:8b:6b:bb:
f6:0b:4c:2a:0c:dd:78:b6:d0:e0:4b:0b:5c:3c:c0:84:9a:39:
1f:c6:ec:93:37:20:e3:1d:e6:5d:40:4a:34:a5:a7:5d:9b:96:
4f:f3:c4:4e:12:e8:d2:88:bd:6f:92:91:30:52:14:9a:26:fa:
4f:cf:95:e0:3a:c3:55:db:c2:26:75:06:f7:50:8c:0b:8c:c6:
18:b9:b5:11:6f:c7:e4:d8:8b:3f:7f:d9:d4:41:dc:e5:d9:5c:
af:e4:de:7b:88:fd:5b:30:6c:d7:20:12:ec:a7:43:a1:38:cd:
0d:8f:79:50:a8:32:8e:71:2f:4d:31:f5:39:ca:bb:31:ea:03:
db:9b:3a:3d:19:94:dd:e5:f3:76:a3:37:b3:ff:fd:4d:fe:e2:
cb:c9:e5:f1:6e:5c:00:34:d4:8d:b6:8f:1d:e0:70:16:28:34:
84:47:bf:57:d7:d5:d3:6c:f1:d2:60:b2:c5:b5:af:4b:ba:6d:
ef:e6:65:9c:9c:89:c9:d7:29:98:1a:b0:9e:ee:1a:e6:25:86:
3e:cf:d7:bb:19:b5:d5:42:2a:88:22:eb:c9:05:eb:a9:78:a9:
fc:fc:18:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:34:25 2025 by rpki-client