Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
File: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft (raw, json)
Hash identifier: fnZMUIDerUqiKxxbmZivwQ+g8VgkfJmO6RGF8oyAemY=
Subject key identifier: 9C:2C:82:B9:73:23:A8:48:C2:E1:AF:8E:BC:5E:72:75:72:8F:05:DC
Authority key identifier: 22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
Certificate issuer: /CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Certificate serial: 01964C6B84000C42B30DDD04CEDB491DD1DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
Manifest number: 0ACA
Signing time: Sat 19 Apr 2025 05:00:36 +0000
Manifest this update: Sat 19 Apr 2025 05:00:36 +0000
Manifest next update: Sun 20 Apr 2025 05:00:36 +0000
Files and hashes: 1: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl (hash: 1pjwd863YuzilWXrkqd35IHmW2VMHPA47LTvCiDcJuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:84:00:0c:42:b3:0d:dd:04:ce:db:49:1d:d1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Validity
Not Before: Apr 19 05:00:36 2025 GMT
Not After : Apr 20 05:00:36 2025 GMT
Subject: CN=9c2c82b97323a848c2e1af8ebc5e7275728f05dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:43:81:e9:78:a1:ed:52:03:58:1a:07:27:a3:
76:e0:b3:41:52:99:41:25:30:89:aa:3c:9d:30:18:
5b:2e:8a:6d:09:ee:ce:c5:5e:e4:15:66:90:55:7a:
de:ad:f3:89:3b:bd:bc:9e:d6:ad:79:ed:fc:83:1a:
63:a4:de:55:8f:44:9b:cf:e5:eb:cd:9f:27:99:54:
d2:d1:df:57:a3:c0:a8:c1:ef:cc:66:b6:05:fd:c2:
a1:0f:32:4c:b7:9c:67:70:d5:8d:cf:79:db:98:0b:
97:50:97:44:8c:6f:87:7c:a3:b6:36:7c:8f:3c:f9:
d1:e7:44:d7:d0:40:12:62:aa:dc:d4:f4:da:f9:c8:
ed:ae:b7:3b:05:23:47:89:ec:fa:73:7e:7c:6b:17:
02:99:f1:5a:17:9b:fd:c1:26:da:13:8d:2e:eb:8c:
18:ea:97:ed:91:7c:e4:1a:c7:1c:14:3f:43:e6:51:
2f:38:f7:0f:80:9d:00:35:ff:63:0e:1a:e4:5b:4a:
b8:6f:f4:db:9b:f4:af:36:a1:05:8a:f4:bb:62:86:
a8:9f:2d:5c:25:04:11:09:1f:d4:28:11:76:fc:02:
29:31:7f:c7:47:46:8e:56:c9:5c:f2:33:6f:e4:f0:
9f:9f:6b:12:ea:9e:f5:1c:c2:b6:07:dd:d7:e6:7e:
3a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2C:82:B9:73:23:A8:48:C2:E1:AF:8E:BC:5E:72:75:72:8F:05:DC
X509v3 Authority Key Identifier:
keyid:22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a8:36:68:d1:fe:de:c0:45:2c:81:5d:1a:70:de:72:74:80:
ba:c8:fd:89:c2:88:69:88:52:a2:4b:15:f6:25:2e:fd:51:7d:
17:bd:2a:0c:b3:5a:40:e5:ea:1a:7f:5b:73:db:0e:7e:a5:de:
c1:26:d9:7f:f8:53:ef:19:8e:ee:3d:0c:48:7f:92:5b:53:aa:
c5:7c:31:33:ee:2a:ab:5e:05:52:70:51:23:78:4c:f7:0a:fe:
bc:91:35:dc:06:0d:14:ac:59:24:7d:2c:b1:67:3f:e2:d3:c5:
05:c6:03:75:79:3d:e6:43:6b:5e:71:25:eb:9b:cd:ec:eb:e8:
9b:51:99:8a:de:5b:8d:0e:b1:96:c1:07:f7:9f:d7:61:14:c4:
b7:af:67:a9:16:b1:3b:c5:da:12:e0:a1:29:80:1e:d3:17:5b:
fe:6b:94:e5:da:be:4b:7c:b7:4b:9c:5f:fa:a2:e6:2e:aa:e5:
e6:c7:eb:1e:b4:57:10:f7:cf:2b:14:f6:68:a8:e0:cb:f8:36:
53:76:4d:ff:8e:e9:5d:ce:f4:c3:1a:de:08:ee:a8:35:6a:7a:
d4:88:b8:bd:73:fd:48:e6:ad:0e:48:49:6a:13:86:4b:ab:4d:
81:60:e8:2b:76:b3:9d:a6:07:ac:0d:83:0f:79:bf:c2:65:e3:
16:96:03:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:19:36 2025 by rpki-client