Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: Pssg0996wqvUvXmpl9Ih0eWgQptxiB/rkw1+jdYQl9U=
Subject key identifier: EE:39:BD:94:BB:6F:FE:D8:CC:F1:37:A4:2A:1F:D5:3D:7B:F6:8F:C1
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 0196146B4CCA020E0FAB3B2126AAB9FA4CF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1470
Signing time: Tue 08 Apr 2025 08:01:38 +0000
Manifest this update: Tue 08 Apr 2025 08:01:38 +0000
Manifest next update: Wed 09 Apr 2025 08:01:38 +0000
Files and hashes: 1: 2t0GWwoe7mmFS83bQQPX5JNcD34.roa (hash: hxRzouLeq4ys7uUoj+7mRAVC8MeKAFWBUYqAcz4n5d0=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: Rn6yMxa6NNl262vKVA+Kt32MgQVyC3KJ0114dsjG0gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:6b:4c:ca:02:0e:0f:ab:3b:21:26:aa:b9:fa:4c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Apr 8 08:01:38 2025 GMT
Not After : Apr 9 08:01:38 2025 GMT
Subject: CN=ee39bd94bb6ffed8ccf137a42a1fd53d7bf68fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3d:d8:d9:5d:e6:12:d5:77:47:cf:9f:8a:f6:
02:96:b8:99:44:8b:ba:dd:11:7e:f4:6d:ee:6c:28:
27:57:e5:65:22:dd:3b:ae:80:8f:88:c5:24:68:98:
f9:65:99:da:de:35:c5:e3:d2:94:1f:d5:97:fa:0a:
04:40:15:5e:39:9a:b7:83:d6:64:e8:20:4d:5f:dd:
9b:e3:20:34:ce:cb:ba:de:2b:26:bf:c7:c3:a3:66:
3e:5b:ad:e5:8b:95:47:bc:55:85:5d:8f:c4:70:4a:
fe:94:43:e1:89:f2:86:f9:7c:eb:e5:22:92:f2:c3:
40:7a:5c:f0:07:3f:98:8c:c4:b3:b1:ed:50:e0:89:
b1:e3:e7:7a:16:4b:41:2c:8a:c6:96:cd:96:8d:fe:
ee:65:56:e8:4f:4d:e5:0b:ee:84:05:d2:a3:77:4d:
59:4b:c0:9e:3f:c0:14:e8:2b:72:d5:de:b2:7f:99:
b4:15:7e:71:6f:f6:cf:ab:f6:ca:32:af:bd:14:a9:
82:35:32:38:1a:45:14:bb:44:8d:02:d4:e1:b3:0e:
8d:46:1b:35:eb:40:31:7e:1e:5d:69:2c:a6:e5:3e:
21:a2:11:c3:13:5c:26:61:de:c3:55:ae:a8:05:f3:
da:88:8e:2b:b3:12:d5:c4:de:e8:78:e8:84:87:f8:
f6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:39:BD:94:BB:6F:FE:D8:CC:F1:37:A4:2A:1F:D5:3D:7B:F6:8F:C1
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:3b:38:0d:d0:58:cd:8d:d7:2f:78:33:fd:00:07:8e:14:68:
c4:ef:46:99:a6:10:5d:1e:4c:d9:71:8e:90:e5:a8:5b:48:61:
60:de:19:e3:a7:fc:66:25:71:76:69:50:4a:b0:b3:bf:2f:fd:
99:a8:99:f8:f4:a9:31:3c:62:12:6f:26:2f:9a:d4:39:3e:d5:
64:fe:9d:cb:bd:4b:82:2a:c1:0d:cd:23:e6:7a:26:3c:34:8c:
2b:a2:95:a5:ae:00:cd:94:42:e0:a3:dd:37:ab:f2:e7:7d:c1:
51:61:99:0a:89:39:d8:66:a2:8a:0b:02:3a:77:f2:a7:f4:93:
98:b3:22:26:b1:da:7c:9b:3a:03:d6:13:b2:fd:0c:30:d4:3d:
4d:34:0c:69:cb:96:8a:d6:43:ac:dd:1d:1c:96:18:a2:04:45:
13:88:7e:10:33:00:17:64:e7:be:d5:d1:70:b6:7f:df:87:7a:
bd:0a:97:d7:ce:be:6e:f7:bf:b9:b0:1d:f2:2b:8a:a4:a4:10:
9f:f5:50:0f:37:50:f4:2b:39:07:84:e4:cc:cd:94:21:6a:09:
69:a6:ec:bf:81:27:79:9b:cd:3a:ac:9c:ba:f2:b7:bc:48:5e:
d2:11:85:c9:34:b3:61:4f:c7:77:61:e7:89:f4:cf:b9:45:2d:
f2:2e:e5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:16:12 2025 by rpki-client