Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json)
Hash identifier: uyz6aLzz40qlZHD5j8OmU4Ax18jwlZeisQz08X1Lp1c=
Subject key identifier: 11:3A:02:FF:FA:A5:D5:84:2F:63:D9:69:6D:C3:A0:AD:2D:BD:DF:29
Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Certificate serial: 01964A0F77715B426CB9358302886E0ABFD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
Manifest number: 0E0F
Signing time: Fri 18 Apr 2025 18:00:49 +0000
Manifest this update: Fri 18 Apr 2025 18:00:49 +0000
Manifest next update: Sat 19 Apr 2025 18:00:49 +0000
Files and hashes: 1: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: ycI6sAZhAl2bSu/4dwlB2X7d3klQnUu8j1VcqfNzE9I=)
2: nqo_O7xWpllnpXWgXV-EBK2yLMY.roa (hash: v3gPcs+xtmwPaPJ3A0/t7F8YEQgyHeonW0dBXWdUhwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:77:71:5b:42:6c:b9:35:83:02:88:6e:0a:bf:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Validity
Not Before: Apr 18 18:00:49 2025 GMT
Not After : Apr 19 18:00:49 2025 GMT
Subject: CN=113a02fffaa5d5842f63d9696dc3a0ad2dbddf29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:38:64:c9:5f:9e:08:f2:25:16:52:d0:43:62:
97:3e:85:d0:e0:f4:42:36:e4:03:ae:54:f4:a3:ff:
e9:9b:bf:93:51:cc:25:ef:0e:55:eb:29:9b:f5:3c:
8b:82:ac:5f:79:2b:42:9f:eb:84:2b:78:59:bd:b1:
07:70:8d:c6:a7:82:5a:7f:ab:bd:2b:fa:c6:07:24:
f7:4e:04:b5:57:d1:c6:b4:70:b0:6c:3c:5f:4d:71:
4d:14:50:2d:93:51:43:38:e8:bb:d0:4d:95:ba:98:
5e:e0:1e:ff:72:5c:dc:fe:7b:30:37:65:09:83:fa:
59:eb:3c:53:5c:0a:a5:f5:16:d6:80:47:c0:0e:ae:
3e:47:87:e0:7e:fa:88:36:32:42:33:5c:d3:4e:51:
1a:67:24:d0:95:3f:80:6e:72:2f:02:74:fe:c1:2e:
69:2a:80:9a:51:06:96:88:82:ec:92:cc:44:65:7d:
52:53:b7:85:08:21:27:28:fe:ab:8d:c0:ed:6f:a5:
c4:c2:2c:fc:0b:33:98:85:09:c1:d8:22:6d:24:37:
fd:17:ac:a9:7b:cd:70:c8:8a:d6:15:8b:b6:66:df:
42:46:d3:fe:1b:3d:d8:c2:92:cb:e6:b9:d8:dc:84:
e6:57:57:c8:73:d1:ba:2a:ea:2b:32:0c:ca:ce:b5:
9b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3A:02:FF:FA:A5:D5:84:2F:63:D9:69:6D:C3:A0:AD:2D:BD:DF:29
X509v3 Authority Key Identifier:
keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:6e:3e:a5:cd:18:25:e0:b9:51:13:14:c5:16:c3:6e:c3:f3:
83:66:79:3b:15:c7:68:0f:52:a7:1e:4f:bc:95:3e:b8:21:14:
9e:8e:b8:a1:e3:e3:c2:44:80:1c:99:e3:ff:9a:dd:1b:89:60:
86:84:bd:3b:47:e9:84:6d:74:8a:a8:63:43:f7:53:6a:e7:1f:
0e:09:c0:70:2f:9a:dc:5d:1e:e9:f1:ac:90:de:b5:7b:f0:e4:
1e:9a:80:45:e2:17:aa:37:83:9d:91:18:4a:00:d8:8e:e7:65:
a9:1a:06:19:c3:fd:77:a3:87:c7:44:24:92:8d:ff:63:72:17:
76:9b:e0:be:c4:1e:74:43:fb:30:24:5f:fa:b9:e6:69:16:46:
c4:6c:33:b3:36:9e:6e:80:46:60:9f:38:17:be:0f:b1:a3:aa:
33:6b:b8:8d:fc:32:60:d8:84:34:e1:6e:25:c1:27:79:5a:cf:
f0:f0:68:e2:0d:11:51:46:42:f8:a6:7b:9a:98:d6:9b:da:46:
1a:1d:40:c8:b1:9a:b7:4b:01:ce:2d:86:67:b2:03:3f:39:9a:
ac:87:21:60:db:3c:d1:43:1b:ca:ce:2a:5a:28:50:36:1e:99:
60:f0:fb:2d:68:a5:7a:36:6b:42:fe:f1:86:56:8a:0f:ea:22:
25:11:e0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:00:40 2025 by rpki-client