Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
File: I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json)
Hash identifier: 98DfG2NtwW0Pp52e12ZOg2aBikvMTDj0LtjvqmpwtGs=
Subject key identifier: 2B:55:F3:1B:5C:14:B5:2C:A4:3A:02:D6:35:E3:5C:29:11:64:70:83
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Certificate issuer: /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial: 019638770F47C6B6E3BF3F65B1E8C88C533C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
Manifest number: 14F0
Signing time: Tue 15 Apr 2025 08:00:48 +0000
Manifest this update: Tue 15 Apr 2025 08:00:48 +0000
Manifest next update: Wed 16 Apr 2025 08:00:48 +0000
Files and hashes: 1: 15gQ3l_CTz5DpsQh5tCstrbwJks.roa (hash: NBh6zaBQW3FImxNGTreLJET3gJwOeBKW+FttZU4GhEA=)
2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: 0VIBwAjew7uxWBWLEEr/y76pCqMbRDxW4xQQOez3N8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:77:0f:47:c6:b6:e3:bf:3f:65:b1:e8:c8:8c:53:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Validity
Not Before: Apr 15 08:00:48 2025 GMT
Not After : Apr 16 08:00:48 2025 GMT
Subject: CN=2b55f31b5c14b52ca43a02d635e35c2911647083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1f:ed:f8:86:fe:c2:fc:09:b8:54:66:1d:f1:
10:18:c0:19:83:74:a6:b0:37:2b:cd:22:66:e4:1c:
b1:ec:d0:26:8c:b9:3a:b8:07:06:45:d9:d1:0b:ed:
e1:75:55:39:3b:b0:c2:a5:e1:55:3f:ac:81:7f:26:
c7:7d:4c:b1:29:97:2b:c2:fa:cd:37:b3:56:d4:d0:
e5:56:5a:60:bf:ef:4e:0f:0a:70:9b:50:e5:4d:c9:
61:98:86:57:dd:a3:46:a7:c1:7c:65:ff:2f:7e:e9:
8e:c7:ec:9f:bb:cd:97:e6:71:03:35:5f:fb:df:0a:
b6:36:93:e4:3f:89:4f:80:81:14:db:02:86:f5:35:
2d:5e:1f:dd:b6:58:82:c6:6a:23:7a:1d:8f:a7:65:
5a:c6:89:27:da:d6:1c:25:7c:8d:57:d6:55:aa:94:
af:dc:4a:ea:25:7d:4c:be:a1:47:6e:5c:0d:d3:c0:
2f:58:39:8e:83:6e:b5:4a:cb:35:13:8a:2b:c6:0d:
e0:54:f2:08:9b:db:d2:e2:b9:de:e1:65:b0:87:ac:
59:58:82:e0:a7:ba:f0:f2:d4:2e:ce:80:4e:0a:55:
a2:f5:23:d4:9f:62:cf:ce:fe:a1:5d:e3:7f:46:50:
37:7f:04:50:48:8a:ec:ec:0b:8b:c3:b3:30:30:ad:
cb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:55:F3:1B:5C:14:B5:2C:A4:3A:02:D6:35:E3:5C:29:11:64:70:83
X509v3 Authority Key Identifier:
keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:b7:04:91:ac:09:5e:02:ce:e7:1d:db:a4:6c:42:1f:6e:7d:
22:0b:57:85:a6:50:1c:ea:08:d3:b4:15:da:dc:7a:99:28:c2:
bf:ed:41:dc:d8:e4:a6:f2:c3:5d:85:67:38:91:39:dd:7e:5a:
13:13:11:e7:5c:31:6a:9d:73:09:ad:88:81:c0:19:ff:94:f0:
13:b8:64:3d:98:2f:db:51:15:4e:0d:31:4b:8e:91:f4:a6:e9:
f4:78:f6:5f:c6:eb:18:08:ba:3d:33:57:21:c6:aa:d0:56:7c:
94:1b:44:c5:c4:a8:5f:b1:57:19:cc:42:b1:ae:eb:b9:8f:34:
87:88:eb:d4:ef:cc:19:52:69:b3:65:aa:e8:2a:2e:a3:22:30:
21:02:38:16:62:ce:c3:58:72:62:fd:1a:b3:c8:d5:97:e4:1b:
b1:7b:84:20:69:fe:45:45:f6:af:ce:9f:53:2c:99:f7:17:36:
47:8d:b5:9f:bf:2d:60:b4:91:2f:4f:50:68:c2:52:12:cb:87:
71:28:aa:b2:f3:10:a5:9d:65:00:a4:54:87:58:19:55:3a:ff:
14:6a:66:32:ed:b8:d7:0b:df:80:bd:fc:1c:d8:b1:df:e9:09:
32:c1:f1:d2:01:62:12:27:a2:d3:56:19:38:c1:72:35:8b:8b:
99:66:3d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 14:10:25 2025 by rpki-client