Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
File: iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json)
Hash identifier: Fn3n3nOAUMkLv3CM4cDgMA2L86ONymI7IJVwNeD9OFg=
Subject key identifier: B9:50:18:1E:9F:23:65:B8:AA:1F:7B:81:7A:53:00:B3:60:C2:71:FB
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial: 01964C3469FBB98DEDA6B55AC6494D3F7916
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 04:00:25 +0000
Manifest this update: Sat 19 Apr 2025 04:00:25 +0000
Manifest next update: Sun 20 Apr 2025 04:00:25 +0000
Files and hashes: 1: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: 3zny54w5Iqa12bpL6y3f+J6Ou2zxGn07Dmss5HBJmpU=)
2: uNj0vhcUK_UhfSxrxVZLYp2n6nk.roa (hash: xTRc4Rd4GJsupl0R/CzG6nNJAwdCcx0IPu8T4AbYP1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:34:69:fb:b9:8d:ed:a6:b5:5a:c6:49:4d:3f:79:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Validity
Not Before: Apr 19 04:00:25 2025 GMT
Not After : Apr 20 04:00:25 2025 GMT
Subject: CN=b950181e9f2365b8aa1f7b817a5300b360c271fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:83:d9:a2:40:3d:a9:ec:e6:93:d7:31:7b:47:
9e:fe:d7:95:f9:eb:6f:2b:2a:73:7e:f2:7f:77:f8:
7c:f3:78:e8:86:c9:ed:d5:97:e0:17:f1:68:c3:59:
e3:06:5b:da:bb:d0:09:63:94:08:6e:46:c1:0f:c4:
a0:23:78:4e:a5:ac:8c:16:eb:ce:11:f1:66:6a:79:
43:1d:39:fa:30:7d:a0:e0:fa:e5:fd:51:07:5c:11:
67:d2:d3:fa:a3:ef:a8:75:b0:76:ad:e6:70:f3:6f:
1f:ad:36:ac:21:a7:17:da:ad:11:19:21:4e:e6:96:
dd:6b:dd:d9:2c:bf:c3:5b:9d:12:05:65:64:b9:11:
c8:33:17:78:1e:45:86:c7:06:fc:7d:be:4e:5b:ff:
34:45:e4:df:32:5c:0c:11:47:bb:57:19:29:61:14:
f3:7d:cc:6e:0a:d8:20:e1:b9:70:9d:4b:bb:e7:c5:
c7:64:f3:46:6e:39:0a:fb:73:3f:dd:13:83:1a:17:
dc:fa:b5:85:ee:2a:c3:bd:ef:1e:d5:c8:65:05:3a:
45:30:22:64:71:e3:90:35:b4:d0:c5:a7:37:1f:a5:
d7:c8:40:de:b9:d2:c9:6d:64:7f:94:9c:66:8f:37:
c6:1a:77:92:c3:8c:b9:8b:07:9f:26:f6:43:71:a9:
88:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:50:18:1E:9F:23:65:B8:AA:1F:7B:81:7A:53:00:B3:60:C2:71:FB
X509v3 Authority Key Identifier:
keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f5:86:ab:1a:cc:d5:e8:ec:ae:50:c8:6d:03:01:da:c1:06:96:
91:61:67:eb:15:43:31:2b:f5:fb:fe:36:4c:70:51:4a:6b:4e:
42:9a:2e:68:01:17:a2:9f:7a:41:1a:51:03:fb:81:e9:56:d1:
8f:93:fb:68:fb:89:45:10:86:f4:43:19:fb:ab:0a:b4:d1:ed:
c4:69:4f:a5:a6:bd:e4:d7:93:d5:1d:38:1b:a6:19:85:9a:08:
4d:82:95:40:2a:ce:10:78:ed:53:ad:9c:5b:d8:14:9f:cf:93:
89:a5:fd:ce:10:aa:34:bb:c2:cb:d0:53:01:13:73:03:d2:c7:
b9:32:fc:e3:51:0f:1a:c8:f7:fd:42:82:38:58:e2:2a:2c:e5:
2c:fb:cd:6a:29:96:18:67:fc:9c:c0:08:87:e9:39:1e:4e:82:
b1:5e:7f:4c:1e:5f:f5:50:64:37:77:69:7d:a4:95:3e:96:6d:
80:86:9d:79:8b:ee:a7:28:33:2c:fd:14:7d:5e:9b:19:29:eb:
b9:a6:97:3a:c3:fa:cf:28:84:7d:9b:52:7c:d5:0e:4f:b1:aa:
6d:50:46:c4:83:a6:56:1b:87:94:3f:16:bd:81:db:f0:37:60:
54:f5:6b:38:12:6d:e5:dc:f8:12:b9:98:c4:a0:f7:d8:8e:fd:
5f:c2:46:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:26:20 2025 by rpki-client