Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
File: IQH0Od66_1iAOV148Lv62Mp2CL8.mft (raw, json)
Hash identifier: 3klBuQpIwgY8clNOoubpJqG4BE+XVb3u8TtzUBUHLkk=
Subject key identifier: 31:2C:C6:B5:3B:A9:F0:10:0D:02:6D:57:1F:72:FD:9B:8E:F4:9D:EB
Authority key identifier: 21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
Certificate issuer: /CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Certificate serial: 0196523688677BF14C9BB1637FCA1DEF97CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
Manifest number: 0BB9
Signing time: Sun 20 Apr 2025 08:00:27 +0000
Manifest this update: Sun 20 Apr 2025 08:00:27 +0000
Manifest next update: Mon 21 Apr 2025 08:00:27 +0000
Files and hashes: 1: IQH0Od66_1iAOV148Lv62Mp2CL8.crl (hash: zxJIs2t+5ZCPXxYxG6XHCeyWQa7I6LiAumMQf8EI8Bg=)
2: maYu8dN9neYyc8DtbRu2KTpDdQk.roa (hash: H5U+8VR9PAI4QlkVpTR8DC6LqpMXq6tJVvxgrK/vIPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:88:67:7b:f1:4c:9b:b1:63:7f:ca:1d:ef:97:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Validity
Not Before: Apr 20 08:00:27 2025 GMT
Not After : Apr 21 08:00:27 2025 GMT
Subject: CN=312cc6b53ba9f0100d026d571f72fd9b8ef49deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:2a:19:90:a8:c7:81:f1:ce:56:8b:df:c6:
69:5b:64:eb:07:1d:94:1a:f1:62:ef:b4:79:72:96:
77:90:8b:89:83:5d:0b:8d:f3:a2:35:ba:72:7d:a0:
c4:5b:03:b2:0f:72:8f:51:4d:95:99:19:66:d3:02:
55:de:f4:7c:7b:22:3a:7a:86:a1:f3:55:88:e4:03:
35:44:f2:8b:a9:fa:dc:5a:64:40:09:c2:42:17:4b:
9c:60:ef:b0:a7:f6:ab:02:29:73:e3:9e:90:c6:ee:
7d:8c:85:35:31:2b:cf:9b:84:a2:bb:05:b2:9b:0e:
07:0d:4b:1d:fd:98:47:18:ab:57:91:b8:3d:13:14:
04:66:18:40:79:99:ae:d0:32:1c:85:49:d1:6b:e0:
06:13:28:4c:8a:a2:7a:52:93:73:9f:aa:76:f4:1e:
06:13:49:1a:e3:eb:ea:b2:6b:6f:30:6e:d7:36:05:
28:1a:d3:76:c5:f3:77:28:5d:96:57:24:aa:eb:e6:
75:67:58:6a:14:9c:ff:3c:24:ad:67:03:b4:2f:d5:
40:d1:0a:4d:ce:cc:42:7c:c3:d8:2c:10:95:40:21:
77:93:d7:74:d4:10:85:ed:01:86:68:64:30:be:e3:
96:1f:26:a1:92:a8:c0:a9:4c:1e:42:e6:97:bc:42:
83:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2C:C6:B5:3B:A9:F0:10:0D:02:6D:57:1F:72:FD:9B:8E:F4:9D:EB
X509v3 Authority Key Identifier:
keyid:21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:85:74:e2:78:36:0a:c9:4e:37:c7:7d:28:f0:19:68:86:4c:
7a:bc:b7:ea:d3:95:49:3d:8d:f9:12:40:ff:d2:aa:c2:7d:7d:
d5:c5:b1:c6:79:b3:8b:cc:3a:3f:e6:19:8e:a2:54:5a:9c:31:
43:05:4c:fd:ef:5f:d9:b7:d3:f5:b3:f3:ac:df:41:f7:c8:fe:
66:54:18:5d:b1:cb:b7:fb:04:71:91:cb:d2:7c:d5:59:71:3e:
58:e8:5d:fd:f5:40:89:90:d0:a8:a0:5b:4b:63:12:ea:6a:11:
95:c0:6e:d6:6c:06:57:b1:e4:bd:50:02:b7:a3:4e:f5:07:6e:
b5:2c:4b:bc:3a:39:3f:b3:18:c3:25:46:59:ef:6a:13:49:12:
d4:49:0a:3f:39:0c:f0:eb:de:fb:e5:dc:ad:89:0f:99:11:e8:
c4:a8:94:8a:f8:04:13:bf:a0:fb:b7:85:47:79:48:9e:77:ff:
b7:93:60:1f:25:e3:af:07:c3:c2:ed:85:bd:f8:bd:15:cb:db:
4f:15:a8:80:0c:1f:cd:0f:f8:9a:8b:c2:0e:53:fc:36:52:20:
cd:e9:f1:bd:cb:1d:01:24:da:dc:66:57:73:b0:6b:1d:23:b9:
93:0c:49:98:a5:f9:3a:99:8d:44:c8:c2:69:c8:10:8e:fd:42:
2d:81:ef:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:01:21 2025 by rpki-client