Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
File: bIkO9qiKsz-logZ2B2jdMlHCOK8.mft (raw, json)
Hash identifier: R7VpJQ3//LQKr7oRIJ5yEguN8Od9iNJ2gLZnEkiA5AM=
Subject key identifier: 33:D2:53:A6:6C:6D:D8:0A:D8:74:32:AB:FC:34:D0:D4:BF:83:55:83
Authority key identifier: 6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
Certificate issuer: /CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Certificate serial: 0196545C5951E3012A35A28E8DB2496B7102
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
Manifest number: 1500
Signing time: Sun 20 Apr 2025 18:01:00 +0000
Manifest this update: Sun 20 Apr 2025 18:01:00 +0000
Manifest next update: Mon 21 Apr 2025 18:01:00 +0000
Files and hashes: 1: Jg3tAly607eUyr5ul8qsb9iYCbk.roa (hash: E+on8KClaRu9XGuipMYBlTB9A2oc11upYWwt1aQCGuI=)
2: bIkO9qiKsz-logZ2B2jdMlHCOK8.crl (hash: OJS55Sd7bSNQMKvJznDPgMVWjDBEZj3hEygCPMeR0T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:59:51:e3:01:2a:35:a2:8e:8d:b2:49:6b:71:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c890ef6a88ab33fa5a206760768dd3251c238af
Validity
Not Before: Apr 20 18:01:00 2025 GMT
Not After : Apr 21 18:01:00 2025 GMT
Subject: CN=33d253a66c6dd80ad87432abfc34d0d4bf835583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:22:6a:7d:dc:58:0f:3c:b8:c5:4c:ee:fc:6f:
16:81:17:00:36:bb:ec:11:8c:f3:e6:e5:14:0f:7c:
49:54:42:47:b1:1e:32:ae:e4:73:3e:9f:07:af:53:
4e:c0:7b:e4:b8:12:f2:3c:50:30:b0:a4:49:88:33:
38:48:9a:e0:50:d8:30:6b:07:6b:59:cd:0c:05:c3:
76:45:9b:b5:e7:f8:a3:a1:aa:50:52:bf:30:2e:84:
57:90:5e:26:7d:d1:8d:62:86:53:bd:62:d8:a6:67:
2f:72:22:ec:96:36:fa:fe:98:0f:c5:59:fe:8c:be:
0a:79:52:5e:50:16:da:c7:26:86:37:08:d1:7b:fc:
22:74:8a:3a:8b:f1:10:b8:db:06:2c:14:cd:9e:b9:
f7:aa:15:6f:d6:90:69:6d:d2:9c:de:bf:a8:65:af:
84:9b:be:b6:80:e6:ef:13:35:3d:58:95:dc:bd:72:
b0:05:66:25:7f:1e:d3:ee:64:8a:b2:95:b9:8e:60:
11:11:2c:52:26:07:23:7d:f4:6c:10:a4:03:59:86:
9c:66:fe:c2:df:b9:c7:cc:ce:31:4f:cf:73:33:85:
26:15:76:04:71:0f:d2:19:ed:e8:f9:6d:ab:be:eb:
8f:03:18:c7:6a:a3:bc:da:71:bc:c8:d4:f2:76:6c:
a7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D2:53:A6:6C:6D:D8:0A:D8:74:32:AB:FC:34:D0:D4:BF:83:55:83
X509v3 Authority Key Identifier:
keyid:6C:89:0E:F6:A8:8A:B3:3F:A5:A2:06:76:07:68:DD:32:51:C2:38:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIkO9qiKsz-logZ2B2jdMlHCOK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2b7cd1-49b6-4921-a5e1-61f91ededf0a/1/bIkO9qiKsz-logZ2B2jdMlHCOK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:b3:3a:f6:33:e1:5b:84:a3:8c:c3:1a:45:5d:ab:22:01:e7:
c8:a6:4b:2d:8e:85:69:b9:3d:8c:b1:f1:05:54:8e:5f:59:8a:
f6:d9:c9:07:65:d2:2d:95:20:65:57:6a:16:49:23:8d:c2:53:
7b:38:7a:f0:00:90:be:15:53:a7:aa:9e:d4:f0:f7:61:53:dd:
21:01:32:b2:23:b8:04:af:c8:3b:6e:a6:78:80:fc:38:2d:74:
5f:e2:6a:d0:1d:2c:85:9e:58:22:32:b7:df:a2:f5:f3:ec:04:
9b:4d:ca:4b:eb:82:a3:9f:4d:9c:24:05:14:1a:29:82:0c:6e:
dc:91:58:c3:3a:83:01:05:69:8d:a3:44:65:c5:04:bb:fd:f2:
6b:d8:92:10:03:6c:25:fe:a9:f2:60:ae:2d:83:a7:87:62:8d:
fc:2b:b5:e1:0c:ad:6b:50:e0:47:94:1e:42:e3:c3:3c:9f:c4:
c0:bf:7e:bb:ec:68:41:7b:42:b3:60:0f:77:a5:cb:9b:8b:ee:
8c:df:37:d3:3f:42:99:7f:6a:7f:91:e8:92:92:5b:b0:53:41:
15:71:bc:b2:8f:24:2a:0b:79:36:51:fc:c1:64:6f:b1:3a:7d:
81:61:11:0a:49:ca:30:c9:33:da:7c:e7:44:93:9b:ec:90:50:
e7:9d:4c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:43:51 2025 by rpki-client