Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
File: IO7gXaGD3uK4EYFBlWRiySQNeHY.mft (raw, json)
Hash identifier: jbD9dfgUEU5suMFxZW8kGQo1oJ8XOaPb1Pw/UveObh8=
Subject key identifier: 7F:01:E4:0A:47:52:44:31:10:4D:20:95:2F:24:EB:7A:92:3C:66:6E
Authority key identifier: 20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76
Certificate issuer: /CN=20eee05da183dee2b8118141956462c9240d7876
Certificate serial: 01964BFDCD322EECA87771B74A04E62C8349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
Manifest number: 1304
Signing time: Sat 19 Apr 2025 03:00:46 +0000
Manifest this update: Sat 19 Apr 2025 03:00:46 +0000
Manifest next update: Sun 20 Apr 2025 03:00:46 +0000
Files and hashes: 1: IO7gXaGD3uK4EYFBlWRiySQNeHY.crl (hash: 8d05fgR0Ce/arPx3Z5xQPILIceim90Z9xZ+NmX76630=)
2: UOhBO5tiijOD2pDmpEzGmcmWS0c.roa (hash: xgr3YICoBLMfkC1gTEslMu1vKZNde/9vfYQRW1pAxzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:cd:32:2e:ec:a8:77:71:b7:4a:04:e6:2c:83:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20eee05da183dee2b8118141956462c9240d7876
Validity
Not Before: Apr 19 03:00:46 2025 GMT
Not After : Apr 20 03:00:46 2025 GMT
Subject: CN=7f01e40a47524431104d20952f24eb7a923c666e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:e2:b4:49:9b:7e:38:89:f2:8f:a6:93:1d:
22:ad:58:86:10:6f:e7:51:9e:3a:96:fe:95:60:7e:
46:77:2e:0d:0e:37:ee:a3:7a:f0:47:8f:84:af:8f:
36:0c:a0:3d:3e:61:ce:57:76:c2:a3:a5:e9:58:81:
34:0c:6f:72:f1:5a:91:e2:fa:91:9a:f7:71:3f:ea:
4e:44:a5:07:cf:ec:e3:8e:3a:1f:27:9a:d0:37:53:
f0:1d:31:44:70:c5:d2:09:3a:01:72:14:6e:dd:59:
e4:3f:40:66:ab:03:2e:90:27:ef:b3:f3:ae:43:4e:
f4:fb:7c:7a:e7:d4:f9:53:72:af:2b:94:81:a9:55:
7b:91:01:42:bf:60:c0:ec:56:0c:6f:50:68:f6:0b:
86:04:7d:a8:7b:6e:fc:69:c6:eb:17:8c:cf:be:3a:
de:99:7a:18:7f:4b:78:a7:8e:51:37:a1:c6:95:54:
f3:c9:d2:fd:7f:de:55:88:f5:1b:f5:e7:e7:ef:a6:
9e:4d:41:d5:ac:df:d5:5c:b9:ef:e0:08:f3:2e:b6:
c2:4e:cf:11:2f:58:84:48:20:fe:5d:f1:88:84:17:
db:63:68:59:c2:90:66:b4:e9:ab:66:ee:b5:4c:03:
23:ed:42:8b:04:df:cf:2a:ce:6c:dc:20:50:36:31:
d8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:01:E4:0A:47:52:44:31:10:4D:20:95:2F:24:EB:7A:92:3C:66:6E
X509v3 Authority Key Identifier:
keyid:20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ee:ac:6d:73:b2:a5:80:14:8c:74:5a:20:50:d6:0e:31:15:
f3:7e:a3:7b:78:7f:be:5b:ab:b4:b2:80:37:42:c2:00:4a:ef:
dc:da:b8:e9:48:6b:6a:9d:2d:46:e6:80:fb:3a:d4:a8:e2:4f:
58:c4:7e:72:40:13:a7:c1:95:db:56:3e:50:df:43:e4:f2:c9:
ed:bc:6a:1a:93:95:fb:ba:99:4c:c0:fb:cf:87:ef:35:00:5a:
6f:09:22:1d:17:62:d9:af:02:62:e9:45:7b:64:cf:0b:d6:28:
2a:da:6b:7b:e1:99:7d:60:b8:30:c0:d6:2f:54:fc:c4:91:18:
5d:00:4c:ef:4a:0f:99:06:7e:64:19:93:0c:67:6a:6b:b3:64:
cf:32:01:d7:c4:34:5d:6f:3e:d1:02:42:93:f6:0e:c4:76:87:
3d:ff:d8:12:68:06:e7:a0:5f:2f:4c:a3:4e:76:fa:c5:80:9d:
37:1c:ef:cb:e2:6b:d6:65:47:66:84:8c:30:62:c0:ff:85:cc:
32:8e:dc:02:0a:3e:14:47:37:2a:c0:85:09:1d:cb:86:02:28:
6a:f6:d3:69:a8:e1:75:c6:f8:da:6e:99:17:38:1c:78:b9:04:
7b:75:8d:8e:9b:f1:7c:c6:79:e5:fb:eb:2b:c3:9b:92:da:7d:
ec:26:a0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:19:33 2025 by rpki-client