Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
File: ieXrHhIJiXh0XVQNypbP8N5HBNo.mft (raw, json)
Hash identifier: CrslR6ks4GYo8A3sroGW2Swuu9sllW91DdOOfW0dcWo=
Subject key identifier: 42:A2:ED:99:43:05:BD:85:0B:5D:48:4B:74:4C:60:0F:75:E5:6E:8F
Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da
Certificate serial: 019651917A178FEC31CF7E0346A28E2DC3F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
Manifest number: 0971
Signing time: Sun 20 Apr 2025 05:00:10 +0000
Manifest this update: Sun 20 Apr 2025 05:00:10 +0000
Manifest next update: Mon 21 Apr 2025 05:00:10 +0000
Files and hashes: 1: ieXrHhIJiXh0XVQNypbP8N5HBNo.crl (hash: lrdvugOU0RUUgJlGRqoHVC++Sxk6+joCV02XOOb7+sI=)
2: l-HFEGYP57VmF8aDDh7--ZbJBDw.roa (hash: z6foBKVqU7T5Yu/Dwks8ZalWU/MYlRsXoQCU7GPCUOE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:91:7a:17:8f:ec:31:cf:7e:03:46:a2:8e:2d:c3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da
Validity
Not Before: Apr 20 05:00:10 2025 GMT
Not After : Apr 21 05:00:10 2025 GMT
Subject: CN=42a2ed994305bd850b5d484b744c600f75e56e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0a:2a:b4:e8:29:d6:df:68:de:98:ff:98:52:
62:7f:bc:72:94:60:f0:ba:26:17:77:9f:9d:90:22:
50:db:01:3f:82:72:ea:3a:84:d6:f4:63:86:64:8c:
2c:a2:17:3a:43:79:15:40:2b:25:a7:06:fa:d1:88:
0f:ad:57:de:ed:21:77:59:fe:ad:aa:5a:d6:ec:d0:
7d:40:54:ca:18:ee:97:6e:53:93:5d:3d:9b:f3:56:
fa:1c:e8:ff:74:be:2d:30:13:98:d6:5e:df:5a:4d:
64:13:fd:9a:61:04:72:00:0c:96:3b:a3:e6:19:05:
8b:c6:02:cd:4a:4a:1a:5e:60:a9:82:04:49:78:58:
41:64:51:dd:39:bf:71:75:95:2c:f8:63:44:88:80:
c6:ba:4a:27:f7:c8:72:6f:a1:aa:f7:c0:69:7d:25:
6e:64:4a:2e:98:29:5c:19:b3:e3:fd:9b:b9:be:03:
f3:0b:a3:cc:67:1b:34:7b:3b:cb:a3:29:dc:04:ef:
b7:39:0c:18:0f:c5:13:22:1f:a0:c8:32:ed:22:03:
12:38:05:f5:49:fa:9c:df:e6:64:df:9c:23:8c:db:
0b:46:31:c6:c8:66:81:9b:bf:3d:e0:4f:08:3d:7c:
9b:22:7b:b9:db:36:76:84:db:a0:81:e5:cb:89:7a:
e8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A2:ED:99:43:05:BD:85:0B:5D:48:4B:74:4C:60:0F:75:E5:6E:8F
X509v3 Authority Key Identifier:
keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:13:3c:2e:2a:52:a5:29:44:86:93:1e:1f:bc:00:ec:bc:6a:
6e:51:35:c7:98:b5:b9:62:80:2c:09:2b:f9:9c:18:b2:7a:3b:
16:a4:66:80:46:c6:dd:e5:62:62:3d:a8:c0:81:0f:71:d9:b4:
3d:64:d8:43:38:32:ce:c2:7c:47:7a:bc:3d:e6:0a:6c:58:71:
a7:9d:54:5e:7a:16:69:0a:e8:9b:f0:5c:44:bb:9e:b9:30:31:
76:aa:02:e3:34:82:f8:c6:64:0d:5f:ac:3c:a8:e4:7d:89:2f:
97:52:1d:aa:11:ab:aa:d8:16:26:6d:59:0c:5e:ab:66:20:dc:
35:44:13:3d:2e:e5:70:cc:d1:ca:5f:d9:82:59:0a:e5:ad:d2:
63:9a:a0:53:40:61:82:d3:47:e1:99:c8:2c:fd:6b:91:40:4c:
c3:e6:dd:fd:a1:33:49:53:c9:16:6d:44:10:39:52:06:8d:45:
43:6a:00:23:67:29:e9:3a:5f:cc:03:ff:00:5d:ff:89:94:27:
af:b8:32:a8:62:b2:f1:b3:94:72:45:6a:33:01:3a:95:6d:ea:
04:7d:04:9e:bd:41:9a:0b:c9:9a:f7:73:e0:ed:a7:03:a3:10:
93:00:42:5f:b7:b8:55:05:f2:0f:c2:aa:84:79:44:38:d5:61:
ee:de:a3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:17:50 2025 by rpki-client