Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
File: Igmk3BOlMEp6okvhwXi6QuF5L4U.mft (raw, json)
Hash identifier: QXIJhdJn1klBNIugHADvlLoI8qC4bDGZ6Ht4f/QiJK4=
Subject key identifier: AD:E1:5B:4B:A3:4B:95:E7:EE:6B:56:F7:A7:7E:A6:6A:4D:56:10:4C
Authority key identifier: 22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
Certificate issuer: /CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Certificate serial: 0194C49A09144FFD3460DCB018FC818CE822
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
Manifest number: 13
Signing time: Sun 02 Feb 2025 03:00:16 +0000
Manifest this update: Sun 02 Feb 2025 03:00:16 +0000
Manifest next update: Mon 03 Feb 2025 03:00:16 +0000
Files and hashes: 1: Igmk3BOlMEp6okvhwXi6QuF5L4U.crl (hash: hxZAU/npHZdreYAiblaEOUQN3gPWQ/fXy/CyRhoyAKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:9a:09:14:4f:fd:34:60:dc:b0:18:fc:81:8c:e8:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Validity
Not Before: Feb 2 03:00:16 2025 GMT
Not After : Feb 3 03:00:16 2025 GMT
Subject: CN=ade15b4ba34b95e7ee6b56f7a77ea66a4d56104c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8b:d6:dd:35:60:71:cb:72:fe:68:4f:6c:4e:
79:63:2d:4b:4f:57:56:ce:60:50:fe:b4:a6:34:9e:
b7:3c:f4:79:79:f1:ac:62:39:24:ee:31:dc:a6:f9:
c1:62:8a:d6:4f:a3:e1:b4:23:e2:e2:a9:23:cc:63:
ed:5e:b5:1d:fa:bd:1d:a9:39:89:04:ba:8c:ff:84:
b9:9d:67:f2:8f:9f:77:d2:54:5c:95:cd:26:f0:18:
dd:28:28:32:8f:62:5d:a1:7c:0c:64:a7:c6:34:20:
4f:ac:86:a5:1f:b7:9e:68:dc:aa:79:d2:79:df:45:
97:22:68:d5:f4:a4:62:42:25:36:24:b6:be:db:c4:
06:ee:1f:28:c2:22:e4:48:08:89:57:6e:c0:44:4c:
11:e8:52:3a:42:df:bb:87:82:47:98:4c:fe:16:58:
81:c5:24:5b:5e:6c:8b:a0:3e:90:23:45:31:e8:6d:
22:36:ae:28:a2:41:db:d6:cd:a7:f8:34:ee:37:37:
87:69:f0:e7:fc:46:90:f1:75:7e:45:8b:ae:6b:80:
bb:45:dd:39:59:8c:7b:11:21:12:ff:dc:a8:5e:f8:
89:41:6c:d1:0c:52:f7:b4:61:39:36:ae:e5:80:32:
fc:dc:2f:7c:ce:8f:49:43:2b:76:8a:20:8a:20:1e:
0a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E1:5B:4B:A3:4B:95:E7:EE:6B:56:F7:A7:7E:A6:6A:4D:56:10:4C
X509v3 Authority Key Identifier:
keyid:22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:0e:c8:6d:a8:3d:ef:49:b6:ea:aa:78:49:10:1c:06:fa:59:
45:69:d0:82:f2:98:38:71:e7:81:ae:ca:58:3b:24:30:4e:5f:
02:9c:36:bd:9c:5b:71:96:db:2e:1b:80:a4:e5:ac:6b:16:33:
dc:26:01:36:3f:8f:74:5c:40:13:14:f1:3b:83:b1:95:71:4c:
89:5e:6c:7f:41:6f:2e:b3:9f:4b:eb:91:8f:48:3d:3d:87:2c:
60:48:25:5d:ff:2c:58:49:ea:4d:8f:97:5a:46:f5:66:ee:0b:
3a:ba:16:f8:17:f8:61:7b:b0:62:0e:5e:c2:c3:12:d7:a1:89:
5d:cc:30:05:b0:be:55:20:1b:74:87:22:75:ba:f2:06:aa:06:
8c:6b:e9:9f:75:8b:69:30:a5:ee:f4:39:d3:ee:86:fd:30:8d:
b8:52:27:09:88:17:36:5d:c7:ab:f6:51:6d:55:df:a6:3d:f5:
00:bd:57:f6:a5:c7:88:d8:18:28:ff:2d:46:ba:09:a8:42:72:
cb:98:e2:4d:e3:e3:a8:9c:36:ad:64:c1:13:09:31:00:17:11:
4a:d7:5c:1c:40:95:d2:fc:68:1a:c5:fe:b6:81:84:7f:24:f6:
0c:ac:c9:fe:95:9b:33:77:f7:49:28:a7:78:fd:7d:47:c5:3d:
ca:3c:e9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:01:29 2025 by rpki-client