Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
File: iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json)
Hash identifier: fG8q+OOWVtGBj6Xs4jFE0eVLyP1siU5NHFN3hQfky5E=
Subject key identifier: 56:27:29:AE:4E:7F:1D:B4:F1:83:B1:6A:87:F8:30:94:D9:23:F0:25
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial: 01958EF33FF39B213E352B600077505C8638
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
Manifest number: 1498
Signing time: Thu 13 Mar 2025 10:01:01 +0000
Manifest this update: Thu 13 Mar 2025 10:01:01 +0000
Manifest next update: Fri 14 Mar 2025 10:01:01 +0000
Files and hashes: 1: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: Ger0EypXBuJ8UAlhE3LGCJNy3aECYAKQj2fnMvaaHTQ=)
2: uNj0vhcUK_UhfSxrxVZLYp2n6nk.roa (hash: xTRc4Rd4GJsupl0R/CzG6nNJAwdCcx0IPu8T4AbYP1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:3f:f3:9b:21:3e:35:2b:60:00:77:50:5c:86:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Validity
Not Before: Mar 13 10:01:01 2025 GMT
Not After : Mar 14 10:01:01 2025 GMT
Subject: CN=562729ae4e7f1db4f183b16a87f83094d923f025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:02:14:17:9f:5e:70:be:01:d0:7a:3e:e6:94:
44:61:5f:47:cb:5a:7b:a5:79:0a:c5:20:43:c3:6d:
1e:b2:68:ee:5c:c5:0b:91:3f:8c:0f:ca:0d:ea:64:
10:44:41:8c:98:f4:95:8b:b5:2f:c3:44:60:1f:05:
36:08:a3:dc:9d:5f:f1:b8:66:bf:e3:49:3a:42:6a:
67:9e:93:7b:a8:dc:e1:d2:fa:1b:92:40:2e:20:ab:
0e:09:f9:07:0a:bc:2b:bf:06:72:37:a0:24:73:16:
a1:90:54:42:bc:c3:f6:57:4b:47:02:81:3b:64:68:
c9:d3:c7:31:45:e1:6e:d0:91:e7:ca:7f:ad:9e:63:
83:88:06:7d:6a:6d:e6:89:15:d8:e1:3c:a2:8e:1c:
3f:dd:d4:4f:9f:cd:d5:e3:e3:9f:3b:dd:c0:8c:41:
02:7d:cb:3b:05:b7:e2:58:91:93:f9:c9:ff:71:c8:
97:30:73:d5:51:61:14:fe:9b:fd:be:2a:97:9f:3f:
b4:db:af:94:d9:e8:93:50:8e:1f:c4:15:27:80:ac:
8c:9b:14:7f:73:dd:e6:e0:5e:07:fa:e1:17:06:10:
36:dc:b2:81:7f:78:23:59:33:13:60:24:43:6a:70:
5f:67:0b:fa:ae:83:28:c0:13:ed:12:64:42:8b:82:
b0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:27:29:AE:4E:7F:1D:B4:F1:83:B1:6A:87:F8:30:94:D9:23:F0:25
X509v3 Authority Key Identifier:
keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:a8:78:d7:db:c1:2b:34:0b:56:a3:d2:fe:1b:00:2c:cd:7d:
e8:64:47:3f:3c:34:39:12:67:f1:30:b2:95:f5:ed:2b:1b:54:
03:ad:73:d9:c3:28:0b:17:8b:ab:61:44:e2:e2:1b:4b:c0:35:
54:cb:8b:87:13:65:7b:94:f3:76:db:0d:54:0d:57:bd:ea:69:
f6:9f:4b:94:e8:f4:85:25:b4:0f:6c:b4:51:c0:32:3f:3b:c0:
2e:ff:f9:2d:bc:8a:b2:18:2f:0a:30:94:10:af:ad:0d:7c:cf:
41:60:a8:1e:ed:68:22:bd:e2:73:70:44:f2:40:d2:bf:0e:24:
6d:cc:e6:82:65:42:eb:64:b8:29:41:7f:b3:10:20:f9:de:eb:
54:5e:66:ec:43:b0:6e:d0:04:dc:df:d1:15:9c:ce:d9:cc:d8:
22:bc:41:02:53:c3:d0:25:bb:0e:34:90:c4:e3:66:69:f5:cf:
76:46:71:3b:3e:b8:32:d3:de:74:98:1b:fe:60:c4:1d:61:f2:
04:2c:9d:b2:3f:83:f7:a1:57:cc:cf:7b:85:68:ad:2a:6c:8a:
19:6a:a0:97:11:10:30:91:87:c8:f3:dc:5e:df:72:fa:69:56:
23:1d:be:06:76:d8:47:a5:ed:4d:1d:f8:8e:42:ca:5b:d8:f0:
f3:3b:69:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:33 2025 by rpki-client