Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: V2tErjusD/pfbC3CiGoaRE8+bO2GCO7pY6PL/AfcW8E=
Subject key identifier: 7F:C0:09:C4:85:16:86:7C:4E:0D:4A:21:60:4E:13:B4:D6:4B:F1:B2
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 0196146AE34D048397FAFF78AF01812E21FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 14DD
Signing time: Tue 08 Apr 2025 08:01:11 +0000
Manifest this update: Tue 08 Apr 2025 08:01:11 +0000
Manifest next update: Wed 09 Apr 2025 08:01:11 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: hlBefdhWcQbwFJGsLHDYLtSarmT0FT9RhgtECULnMB4=)
2: Oic624JnJmz9lkyUCkfkxynrzXU.roa (hash: reuQNdNLE9OYq59c7HheLuUPxQ+GdUmZR0j+FA5WU8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:6a:e3:4d:04:83:97:fa:ff:78:af:01:81:2e:21:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Apr 8 08:01:11 2025 GMT
Not After : Apr 9 08:01:11 2025 GMT
Subject: CN=7fc009c48516867c4e0d4a21604e13b4d64bf1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:1e:35:a4:03:39:79:1a:9e:95:44:3c:ff:
16:62:57:9a:1a:ed:04:65:04:0a:1c:62:4e:60:ea:
e4:64:5a:43:6e:d7:0e:5b:32:9a:4c:95:1c:7f:c3:
9d:a6:16:08:a4:cc:36:92:a2:2d:30:31:76:a0:59:
74:48:0f:83:24:a5:56:af:a1:39:2c:6b:88:a5:68:
9e:15:29:4d:e8:a1:de:f3:b4:2e:71:89:2b:b3:6a:
70:c9:5e:da:77:05:57:ef:3f:98:ec:ab:27:66:af:
57:74:c5:fa:62:a1:5c:53:44:84:76:a4:20:30:e8:
2b:4d:09:83:b4:68:5c:4b:59:d0:aa:f0:0c:49:94:
0a:46:a1:d3:7b:e6:1f:54:f5:06:a0:65:d8:4b:c7:
4e:01:da:31:4e:6b:b7:ba:bc:da:0e:4d:79:a9:3e:
7e:8c:36:28:8e:8a:9d:e9:72:a2:f1:be:5d:b0:b9:
96:48:4a:37:75:59:ba:63:93:97:33:a3:ec:f3:26:
e9:e7:07:43:1f:91:23:19:47:8d:d1:80:2c:1c:bb:
e1:86:8a:12:10:c3:c5:3d:91:d3:ff:3a:0d:c1:d2:
d2:c0:6c:eb:bc:38:6c:62:10:02:b7:11:f6:a4:e7:
14:de:c1:0f:07:78:16:42:08:31:51:bb:7a:85:fc:
f1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C0:09:C4:85:16:86:7C:4E:0D:4A:21:60:4E:13:B4:D6:4B:F1:B2
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:b5:7d:83:b9:8e:7e:8f:5a:bf:ca:da:05:99:53:ce:03:90:
99:41:c4:b2:68:fa:bb:17:65:09:3b:18:81:dd:8b:2e:01:db:
e5:4d:23:31:9a:38:3f:26:77:7c:81:54:a1:be:6f:58:e9:2a:
08:5a:a0:ad:68:4a:d7:c1:7f:3e:74:c3:93:c5:82:5b:1f:f4:
5d:2e:bc:79:f8:69:d9:19:df:da:20:ae:a4:c5:5a:62:06:cb:
a9:eb:6b:a8:6a:aa:57:d0:3f:0b:96:25:1b:02:fe:80:71:91:
ce:db:5d:d3:fd:86:70:65:d2:e9:fd:4c:7c:92:fd:b5:5b:a7:
d7:c5:21:76:93:39:82:03:ac:53:cd:65:30:07:86:f2:42:4e:
56:ce:81:f9:14:9f:fa:c7:94:a0:e0:8d:63:04:75:49:3f:47:
79:21:1c:01:82:4a:f1:4f:0d:75:7d:2c:0a:80:b4:ee:19:58:
fd:0c:86:cd:da:c9:5d:4f:8f:f4:c2:c5:fc:53:18:8b:1b:79:
de:01:96:31:16:13:86:65:8f:e2:b5:f8:ae:ce:5f:21:d1:8d:
18:3f:e1:9d:04:43:f2:61:e2:2f:98:79:b9:34:91:80:b4:f6:
97:4d:ef:62:a8:6a:9e:30:81:29:60:2b:d6:be:04:e5:a3:d3:
ed:9c:14:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:01:10 2025 by rpki-client