Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: rfa4WMAarzSOf5gJh7OuKIZ63tBdCKHSTHZdilLwRHQ=
Subject key identifier: D1:30:6B:0E:D7:18:96:25:D3:A7:50:44:03:5B:BB:8D:80:A5:B1:9A
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019636BF88D0E8CE03AFDDFEBDB4739DF12B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0B69
Signing time: Tue 15 Apr 2025 00:00:44 +0000
Manifest this update: Tue 15 Apr 2025 00:00:44 +0000
Manifest next update: Wed 16 Apr 2025 00:00:44 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: ArJpq5NUj51OsiBtEObOrN7nXUcC0hsSAl5SPOXgFWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:36:bf:88:d0:e8:ce:03:af:dd:fe:bd:b4:73:9d:f1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Apr 15 00:00:44 2025 GMT
Not After : Apr 16 00:00:44 2025 GMT
Subject: CN=d1306b0ed7189625d3a75044035bbb8d80a5b19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:28:2d:a2:ef:e7:9b:ce:7d:a9:82:86:1f:99:
82:c6:8d:f9:59:43:c5:29:3a:60:7b:70:c5:f2:37:
21:70:30:e9:bc:ae:8d:4c:85:a9:84:85:d1:f6:5a:
10:2a:fe:35:bd:72:b5:63:86:7f:b9:b4:e6:01:68:
05:74:d9:62:d4:e4:b8:9a:ce:5f:59:4e:e6:d2:93:
1f:b8:5b:fe:18:97:00:21:29:6f:3b:16:3e:66:16:
96:10:6c:89:e6:72:07:61:f5:30:d1:98:d7:b3:83:
f8:fa:f0:59:a0:0c:d1:5f:e0:b2:5c:69:2c:80:2a:
e3:e3:5c:8d:1d:a8:fc:4e:93:19:bd:aa:99:8f:17:
c2:90:3a:81:f3:cf:61:5f:0a:ce:02:14:a5:01:4d:
26:68:b7:db:5d:2b:8d:09:18:9e:13:6c:6a:a9:89:
be:da:aa:86:e8:81:25:bf:fb:f9:78:4a:e6:8f:ab:
17:8e:31:7f:72:e9:64:18:c6:76:62:14:67:73:d0:
32:5b:0c:45:35:38:18:90:56:be:00:b4:27:22:b0:
19:bb:ad:39:ad:be:0e:b6:b8:04:72:68:81:9a:e6:
ab:4f:30:ee:1f:8c:37:bc:0c:90:48:af:4d:a4:cd:
07:b7:ad:54:8d:56:ba:dd:6c:c4:b4:d2:09:ba:8b:
f8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:30:6B:0E:D7:18:96:25:D3:A7:50:44:03:5B:BB:8D:80:A5:B1:9A
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:f2:be:98:e3:8d:31:53:32:8f:55:eb:c9:ad:0f:f4:b3:31:
86:b2:3c:a1:bd:43:2a:36:79:21:e7:22:ae:4e:fc:22:6b:85:
1d:72:11:d1:99:90:24:08:c1:77:9f:a7:8f:ed:8e:e7:7d:67:
41:cc:93:93:5e:27:bf:09:0f:03:5a:40:e9:ab:71:6f:bf:d3:
88:17:b2:12:5a:dc:86:f8:5c:11:7f:03:dc:67:5a:31:cb:59:
af:12:d1:7f:06:a6:79:96:40:df:7d:1a:2a:ff:aa:96:ab:76:
c8:ab:d1:c7:13:f4:8d:77:da:12:32:43:82:d8:89:da:39:f5:
0c:ca:84:94:c7:a3:d7:e6:20:04:d7:6b:ec:b0:45:64:b8:db:
7b:86:69:81:10:19:64:1d:ec:98:ea:56:bd:91:81:b6:1e:6a:
e3:da:d0:f0:20:90:0d:38:88:b9:9c:6b:a3:df:41:09:67:9f:
b8:52:a7:70:9b:dc:31:8c:c5:43:ca:1a:64:08:fa:8d:07:af:
3f:09:f2:7d:da:75:50:f5:e0:7b:ea:50:66:41:9a:ce:30:de:
c0:ea:4c:7b:f0:ef:23:95:87:dd:e6:c5:62:5e:d4:55:1e:84:
f2:15:8d:c8:4f:67:d9:8d:e5:ae:4e:b4:85:ee:60:87:38:fc:
2d:81:1b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 02:36:52 2025 by rpki-client