Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
File: tIKj5Qem8UAPb74uFI-hZERH5s0.mft (raw, json)
Hash identifier: unusnrozU38ki3OlLoJlkskOSixkrRjZ+WJsel94uT4=
Subject key identifier: 1A:A3:88:97:65:6C:C6:42:5A:6B:A1:45:0A:61:9C:76:1B:C0:3F:79
Authority key identifier: B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD
Certificate issuer: /CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd
Certificate serial: 019655DC987D3CF2BEDAE1EC5176AFD6D621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
Manifest number: 0D18
Signing time: Mon 21 Apr 2025 01:00:42 +0000
Manifest this update: Mon 21 Apr 2025 01:00:42 +0000
Manifest next update: Tue 22 Apr 2025 01:00:42 +0000
Files and hashes: 1: jc3nJE4HlaAIZYtU9WTa-kp6P_0.roa (hash: ni65Uin42OxyzHPEODsDWUqZ0OwEhmfq3oGGPy0ODBg=)
2: tIKj5Qem8UAPb74uFI-hZERH5s0.crl (hash: nKGiIn6U1d4A+2klxuOPI2Oyv4epyuvrKZLtWbpgB5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:98:7d:3c:f2:be:da:e1:ec:51:76:af:d6:d6:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd
Validity
Not Before: Apr 21 01:00:42 2025 GMT
Not After : Apr 22 01:00:42 2025 GMT
Subject: CN=1aa38897656cc6425a6ba1450a619c761bc03f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:50:97:85:a4:97:ad:bd:f8:bb:e8:0f:04:2c:
94:13:4a:d4:a6:d3:5a:8b:f2:77:39:d2:d7:30:7d:
fe:96:19:e0:db:0e:8a:c0:31:f3:3d:c6:00:81:79:
bb:a3:76:2c:e6:75:75:ee:ce:21:9e:dc:50:3b:4d:
ad:a0:7b:35:81:a0:dd:18:f0:be:79:b6:3c:83:a9:
c1:c6:ff:b7:9d:dd:d8:17:8e:e3:e5:f3:53:6a:45:
5a:4a:18:54:e2:cc:bc:77:d3:b8:d9:29:0a:52:46:
2e:7f:b2:a2:9c:9a:c5:81:44:8e:12:02:1b:bb:90:
69:c8:6d:18:9f:8f:34:93:62:e2:a2:67:72:56:9b:
4b:ec:81:f8:9c:0a:d2:74:47:ca:1f:81:32:4a:41:
04:00:ae:ef:a4:1f:7f:2f:93:01:bb:50:4b:95:61:
15:1d:fe:ba:6a:49:77:e3:5b:50:9c:64:64:0d:54:
68:3a:f3:79:17:e0:c0:bc:5d:17:3e:f9:92:c9:6b:
ee:7d:a9:8a:32:16:38:b0:d4:63:b8:79:53:22:f4:
8c:4e:0f:bb:af:d7:9d:f4:5d:56:02:6f:40:71:b4:
65:97:33:7d:fb:dc:86:23:ac:4d:63:e9:38:75:40:
d7:90:e3:79:61:0c:9a:bf:19:c3:1b:1e:51:2e:37:
f2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A3:88:97:65:6C:C6:42:5A:6B:A1:45:0A:61:9C:76:1B:C0:3F:79
X509v3 Authority Key Identifier:
keyid:B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:0c:11:73:00:bb:2f:eb:40:14:d3:82:33:d4:55:fb:e8:eb:
9e:a0:a5:c9:63:1f:e8:b2:f2:1b:0c:2e:e9:a3:c2:f4:48:0a:
86:cb:86:53:3b:43:60:bd:5d:2a:43:00:f1:99:f4:52:ea:7c:
05:bd:35:a4:d6:5e:a4:2d:b1:aa:f9:ad:59:8c:25:2b:3d:6b:
ce:6f:06:d7:13:42:8f:66:a2:3f:2a:24:f4:e1:0b:46:65:0c:
bb:fd:8e:d1:ba:1b:68:e9:63:ce:af:62:32:2d:91:b8:7c:b9:
5e:3a:e9:d7:b9:a3:39:92:18:36:14:7f:25:e4:d9:40:26:3d:
b9:50:74:e3:47:9b:ac:bc:bd:2a:c3:98:b5:2d:8a:c9:66:f8:
40:46:10:4d:a7:dc:36:0b:08:b8:4e:25:f0:07:87:93:5d:06:
02:4e:a3:f5:ca:18:80:93:b7:15:4e:03:15:ac:4c:d1:db:11:
16:1d:20:7b:25:8a:37:70:c2:9f:7b:1b:2e:e3:e9:64:cc:a2:
9a:d9:88:0f:58:e5:3b:b5:ab:03:36:5a:a2:8d:c9:b7:cb:d8:
79:65:eb:ae:f4:f7:cc:85:80:b4:8a:b7:44:3f:4a:7f:04:56:
55:7d:79:83:68:db:fc:1e:4e:2f:de:46:87:31:59:6e:1c:8f:
5d:49:77:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:16:30 2025 by rpki-client