Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
File: imlbOroepOZUeIxRZBRYzJlXgEA.mft (raw, json)
Hash identifier: nrKoWRdLwHpA1YJP/i5CdxC5I/Iqoo45VcAeA3YthJ8=
Subject key identifier: E4:49:56:24:DA:58:A6:A7:26:9C:0C:DA:A4:79:02:20:3E:A9:E4:67
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Certificate issuer: /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial: 01965B713F63372795473368DAEF2D737738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
Manifest number: 1500
Signing time: Tue 22 Apr 2025 03:01:10 +0000
Manifest this update: Tue 22 Apr 2025 03:01:10 +0000
Manifest next update: Wed 23 Apr 2025 03:01:10 +0000
Files and hashes: 1: imlbOroepOZUeIxRZBRYzJlXgEA.crl (hash: vJvyEHgsYTXme0VB8te2el+/W3867Juz2bPUjxlnofI=)
2: xXvpynv9RLlNuhH_ScFehFzRtz4.roa (hash: QSdQRW1EuXcu0ntbVvgh9fj5LXlqpMEhY2XBCGX6qp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:71:3f:63:37:27:95:47:33:68:da:ef:2d:73:77:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
Validity
Not Before: Apr 22 03:01:10 2025 GMT
Not After : Apr 23 03:01:10 2025 GMT
Subject: CN=e4495624da58a6a7269c0cdaa47902203ea9e467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:88:b3:53:55:05:7b:c7:87:0b:76:c4:cf:94:
0d:d4:de:65:f6:4c:47:0d:f0:e7:96:95:5a:8d:d1:
92:89:7f:3d:f0:27:b0:48:f5:c9:a4:3c:0a:ea:10:
68:33:f8:1a:e6:14:dd:50:d0:66:82:5e:38:49:b8:
26:92:ec:02:50:71:c9:df:bc:ef:99:d9:c5:59:e0:
b1:84:ef:8e:6c:23:f3:10:d7:29:ee:58:b1:d0:4e:
a5:b0:8c:59:8c:4e:e7:e6:12:04:6b:65:f8:22:40:
43:88:30:c2:64:d0:43:0e:2c:dd:9c:6c:92:10:78:
02:99:a9:95:2d:59:05:82:32:d8:09:8c:7b:0b:9f:
4b:8b:a0:12:5d:5f:21:ed:25:77:e5:1a:f1:63:7c:
34:b8:1b:e9:8f:0b:0d:07:0e:c9:2e:fd:2d:89:35:
74:f3:63:95:c1:1c:31:99:6a:d4:7d:b4:57:df:e3:
fb:ca:26:e3:6a:40:70:9a:7b:72:ee:af:db:a9:42:
53:22:bf:fb:f3:95:9a:90:cb:9f:10:66:b7:f8:07:
ea:c2:2a:9b:1e:e4:43:4d:6d:c7:c1:99:26:6a:23:
7f:bc:0c:1f:1a:45:9a:42:f8:9b:d9:88:95:6f:7c:
00:fc:ca:72:d7:70:16:f3:77:fc:19:14:9e:4b:74:
34:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:49:56:24:DA:58:A6:A7:26:9C:0C:DA:A4:79:02:20:3E:A9:E4:67
X509v3 Authority Key Identifier:
keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:cd:f7:e8:5d:d0:23:e2:1a:a4:de:44:36:d5:e6:76:39:27:
86:84:d4:74:df:75:5a:e4:a0:0f:12:5b:ff:52:9c:b5:63:b3:
f0:65:92:0d:b3:e2:44:e8:de:e0:f2:a6:dc:b9:bf:e6:62:06:
c1:4d:d0:a6:fe:75:8b:f3:8c:cb:ab:7b:8c:e7:30:19:ed:58:
f5:1d:17:fa:0f:b3:f3:1d:2e:02:c1:de:c0:3f:f3:51:69:f3:
1b:c6:fa:75:d6:85:b6:34:52:bc:68:b5:6d:c9:db:fa:01:b1:
48:07:4f:c4:1c:34:6f:92:05:5a:61:21:5b:91:85:fb:e9:5c:
2d:12:00:d1:98:9f:02:91:29:ec:00:7a:36:f9:af:d5:17:d5:
ca:8f:a8:df:4c:5a:c6:68:3f:d3:1e:10:92:86:9a:72:b1:7f:
d8:4f:c6:87:45:bc:7a:a6:37:1c:db:26:b0:91:e2:6c:7a:f1:
b2:60:f1:28:ba:a3:ee:e5:e5:5d:03:45:ca:e4:ea:cc:59:63:
e3:0d:63:92:76:a3:b7:75:36:d1:33:bc:f1:bf:27:a7:4e:28:
3b:78:5d:6b:3c:90:42:0e:27:6c:52:a5:50:d9:54:fe:c9:c3:
46:8d:b2:99:9a:3f:6e:06:15:36:53:7c:fc:cc:6f:23:16:06:
f8:39:fd:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:11:37 2025 by rpki-client