Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: YrnjB4HeSaA33numVFP5mDvtO4Z2rOd/FmyIkhvklK8=
Subject key identifier: 2B:A5:B4:93:81:40:0C:DD:21:53:7F:22:96:F1:3C:3D:2E:D3:11:F4
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 01958B1673F97E495C1446269D13BA1A6663
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 0458
Signing time: Wed 12 Mar 2025 16:00:59 +0000
Manifest this update: Wed 12 Mar 2025 16:00:59 +0000
Manifest next update: Thu 13 Mar 2025 16:00:59 +0000
Files and hashes: 1: BkDrM4-atcp10Br--qbvg_yK1zg.roa (hash: OQTXLqdYWvwdj8zXSXiFu8x5dJlCSPxgy4/Qhi1Yohc=)
2: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: Dl1nI4nRAJUFAA8f86qRetKXfi0KxTF9kREDX3+oeBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:73:f9:7e:49:5c:14:46:26:9d:13:ba:1a:66:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Mar 12 16:00:59 2025 GMT
Not After : Mar 13 16:00:59 2025 GMT
Subject: CN=2ba5b49381400cdd21537f2296f13c3d2ed311f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:65:04:21:fe:94:59:16:b5:ed:8a:a6:85:e1:
dd:e8:2f:74:cf:ad:8a:b7:33:fb:49:1c:f7:45:24:
f7:eb:d8:02:c9:3f:41:cd:7e:cd:84:33:ab:47:38:
dc:ac:f4:d6:d0:3d:96:df:39:f3:25:13:20:2f:df:
ea:92:c1:5a:29:fb:11:36:06:c4:3f:1a:2b:fa:53:
69:a2:85:3d:c0:0c:c6:82:dd:ec:ff:b4:39:12:a3:
56:5a:39:45:ea:28:71:d8:ff:ab:81:cc:37:2d:7c:
eb:1b:b1:74:c1:84:35:34:70:48:99:03:3c:3d:17:
54:b7:6c:1a:f1:2a:c1:ca:b2:bf:0e:f2:89:e0:42:
82:d3:21:19:07:e1:de:0a:18:91:5a:4a:09:58:e3:
c7:6f:ba:ad:9d:a8:6a:3b:04:0c:9c:76:c9:81:fa:
79:ad:a8:31:d0:e4:d7:f7:d9:ce:d6:9f:22:84:97:
53:66:9e:d2:db:8c:a7:30:6d:ad:b5:dc:2e:18:77:
67:2c:74:79:90:1b:97:30:7a:36:0c:93:0b:c5:9c:
5a:a4:3c:cc:77:fd:40:d8:a5:e8:81:6e:35:ba:90:
19:ed:b7:06:b3:a0:0c:ca:75:0a:d6:3d:77:51:e6:
be:95:98:8c:a1:e3:62:a2:da:87:97:6a:42:ed:58:
f1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A5:B4:93:81:40:0C:DD:21:53:7F:22:96:F1:3C:3D:2E:D3:11:F4
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:9e:2f:21:25:f2:ff:ce:f8:7f:26:69:ca:ed:0a:27:88:f0:
e1:a8:14:a8:a0:e2:21:3c:c7:dd:bc:df:69:cf:4f:ee:64:25:
63:22:b7:f1:d4:c3:f3:b2:47:c1:c8:09:82:35:ee:c9:33:dc:
de:9e:60:f4:6d:02:41:4c:91:a3:c1:3f:82:59:b6:f9:ed:5a:
1a:09:29:a8:c1:e2:39:5f:a1:fa:c7:02:ff:fd:63:87:50:42:
81:fc:dd:cd:9a:26:b1:d1:1f:8b:e7:24:33:bb:8c:89:93:0c:
46:04:ea:bc:2c:68:dc:96:ad:dc:ad:8d:a7:f6:5f:d1:f8:92:
26:93:57:fa:c6:46:a9:e1:59:b4:70:a2:fd:6b:95:79:a2:75:
57:83:72:ac:25:5a:65:5c:fb:f2:ce:8a:e1:44:30:63:a5:b5:
1f:ec:fd:41:f7:2b:d2:0d:f5:6b:71:e0:40:6d:db:ba:2f:59:
6a:85:1b:53:4a:06:8c:3b:bb:41:2d:22:d5:1d:cf:40:4f:de:
6d:f6:ff:85:28:f4:7a:fe:37:7a:c3:2b:c1:ef:8c:9e:cc:71:
0f:2d:fc:ce:c6:d5:1c:98:2c:91:f4:ce:50:8f:73:e0:0e:b8:
ce:8e:e0:18:fc:67:c1:53:9b:b3:83:f0:7f:0c:b5:6a:53:c0:
f5:aa:e8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:41 2025 by rpki-client