Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: 0JcMD6/txPXj07AJcXjROjd0s5XFEnz8xcbgMXDLrhQ=
Subject key identifier: 95:21:51:92:F9:48:F2:67:6D:D1:71:CA:24:43:A1:B1:B1:55:4A:17
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 01964AB3FDF3E419F10D8CD2EB59C37C672F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 0292
Signing time: Fri 18 Apr 2025 21:00:31 +0000
Manifest this update: Fri 18 Apr 2025 21:00:31 +0000
Manifest next update: Sat 19 Apr 2025 21:00:31 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: Nb8k3ccOYHsViREQanavBB4D1xl9PAgu+V9zDugLtSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:b3:fd:f3:e4:19:f1:0d:8c:d2:eb:59:c3:7c:67:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Apr 18 21:00:31 2025 GMT
Not After : Apr 19 21:00:31 2025 GMT
Subject: CN=95215192f948f2676dd171ca2443a1b1b1554a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:59:43:b5:c2:c4:5e:da:5f:55:17:eb:d6:79:
32:87:60:65:9c:36:85:bf:9c:77:96:9f:0a:ba:d3:
b8:03:ce:b1:f4:91:08:0f:ea:51:08:48:9b:2b:bf:
8c:26:cf:01:76:fc:b4:c3:48:90:e8:fd:dc:b6:da:
6b:bb:e8:a9:b6:b6:ab:eb:44:41:32:ee:19:19:f8:
33:ea:9e:a2:66:20:f4:30:a0:f3:4c:c5:f2:7a:1d:
08:81:17:15:2b:73:88:52:3a:52:16:d7:0e:c9:b6:
ce:ce:ae:00:3a:1d:12:09:66:2b:9f:27:8c:c1:37:
e4:d8:1a:b0:b5:d5:d0:bf:f5:3b:e5:5e:26:e5:9e:
a7:29:49:c6:da:ff:c5:2e:ca:6b:b4:9f:81:95:b1:
c1:13:f6:ea:d7:01:db:c4:27:fd:05:7d:ee:34:c0:
a1:4c:bb:0c:ab:6e:6d:fd:2f:2d:a8:72:ad:56:9e:
59:a7:11:9d:58:7e:02:84:ec:0f:dd:2e:f6:5f:45:
58:69:f0:44:58:10:50:e5:3b:9a:65:c2:d7:9f:1e:
c4:f9:2c:7a:4f:0e:7d:c7:63:e1:28:75:0d:b0:b3:
7f:7a:36:ae:aa:44:69:2c:fb:63:d3:cf:f1:e0:a4:
60:8b:52:5d:25:85:f3:b8:d8:11:cc:d7:3c:23:19:
23:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:21:51:92:F9:48:F2:67:6D:D1:71:CA:24:43:A1:B1:B1:55:4A:17
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:b5:15:54:c2:24:1b:1c:8f:e7:d9:5e:9e:87:4a:d6:cf:ed:
8c:57:39:51:22:ba:b6:3c:71:8f:db:01:8b:a6:69:27:ef:cd:
40:52:77:d3:eb:dd:20:d2:f5:17:db:df:75:9e:88:af:1d:1a:
6f:13:81:87:da:50:2e:11:62:75:f7:f0:fa:53:d2:97:d9:65:
e2:ee:19:99:7e:e8:82:c4:3f:7d:05:15:fa:71:c0:48:97:4d:
33:65:1b:95:d2:d7:82:8f:96:6c:77:c7:e4:bf:ea:8e:ed:cd:
59:ad:23:0f:01:29:ef:8f:25:66:ad:d3:2c:88:22:8f:f6:16:
59:44:b9:73:b1:b2:8b:b5:96:bd:f0:d8:ae:df:9e:a9:e0:4f:
8a:62:59:74:95:9a:b3:7b:34:92:63:76:0c:19:7f:ac:c6:89:
27:4a:49:41:8d:b4:73:f0:ad:38:79:ce:7e:7e:a5:d3:7d:8f:
dd:f9:a2:7a:7c:21:43:75:20:27:fe:cd:46:a8:77:58:25:69:
dd:28:7d:c1:ca:e9:c5:50:51:b2:24:57:ed:99:a0:f5:34:62:
aa:3f:83:d6:0e:79:54:6c:e0:2e:3a:f2:4b:6e:ac:80:ea:16:
fe:54:69:ec:a5:42:69:e0:3e:dc:fb:dd:80:06:52:d6:4b:a7:
af:96:da:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:16:04 2025 by rpki-client