Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: KAITUbrg6L9S9BRFMugxiZnFaYAi8jpZV0xxYjS/rqE=
Subject key identifier: 3C:6D:2C:C1:0D:6D:F5:E9:E6:18:6C:4F:4E:5A:DF:7D:41:94:6D:D6
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 019512475BFF4E50721383C9C8DFAB75DE16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 0F3B
Signing time: Mon 17 Feb 2025 05:00:21 +0000
Manifest this update: Mon 17 Feb 2025 05:00:21 +0000
Manifest next update: Tue 18 Feb 2025 05:00:21 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: xxpicy4E0K1cnPSUJ2dO6tqwppAxdqr5q6S2nUlqxfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:5b:ff:4e:50:72:13:83:c9:c8:df:ab:75:de:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Feb 17 05:00:21 2025 GMT
Not After : Feb 18 05:00:21 2025 GMT
Subject: CN=3c6d2cc10d6df5e9e6186c4f4e5adf7d41946dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f8:04:39:10:3b:5d:0a:2f:70:fb:5f:10:90:
58:62:aa:b2:b4:3a:b7:8a:2e:94:cc:df:7d:bd:12:
e8:d6:8a:cd:fe:2e:9c:0d:38:9b:ba:31:57:9e:d7:
1d:87:22:0f:20:dd:ab:24:99:b0:8c:94:40:89:44:
bf:73:af:0a:d9:bc:21:eb:f1:a9:f3:b5:15:fd:c1:
fc:34:97:89:a2:92:99:98:a8:b7:35:f0:c7:b5:3d:
a9:9a:69:93:f6:89:12:fb:52:40:09:6e:57:a6:35:
53:8d:04:1b:72:01:da:d0:8d:64:e1:b8:5d:ef:f2:
ac:f5:b0:27:f9:62:5a:57:1f:24:6a:24:f5:10:4f:
1b:76:cd:30:4b:42:e3:ba:66:b5:95:51:8d:a6:44:
db:a8:84:5f:03:77:c8:f3:d6:0a:b7:3a:5a:75:96:
82:da:bd:e9:ae:25:f0:92:d8:1d:ea:b3:1b:27:71:
6d:be:5c:7e:51:1e:98:33:8b:c6:bd:7d:1e:93:e3:
23:dc:1a:59:1a:40:b8:9b:cd:62:c4:41:38:ef:49:
bc:10:ba:1e:58:22:63:07:5b:c9:ce:84:a5:4c:2e:
15:9e:b2:3b:eb:36:b5:72:88:88:37:1d:4d:47:52:
72:39:66:3e:42:0b:30:dc:27:ef:72:65:72:ac:98:
25:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6D:2C:C1:0D:6D:F5:E9:E6:18:6C:4F:4E:5A:DF:7D:41:94:6D:D6
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:d8:c7:94:54:87:e4:08:5e:ed:b0:c4:55:01:42:57:1d:d5:
e1:e6:31:0e:cb:44:a2:0f:87:81:12:3b:91:39:b8:4a:19:df:
18:f6:a0:4e:32:c3:60:78:e0:ac:67:8a:3f:3a:8d:53:7a:33:
90:d3:22:ed:fc:36:44:58:bb:98:cf:2e:43:4d:16:7e:58:18:
93:61:7c:a3:3b:54:1c:67:76:02:04:93:30:a7:ac:16:d7:ce:
92:d8:b5:23:94:ff:56:91:14:22:44:87:9b:a2:48:c3:07:ce:
2b:82:79:64:20:ef:f3:77:50:9c:cb:74:86:31:da:20:44:2b:
ac:f3:7e:a7:37:e9:62:b8:18:e0:fb:8d:a2:c8:7d:3a:1e:e9:
54:85:dc:ef:16:15:c9:a1:12:be:02:04:c8:21:52:68:c8:1d:
6a:ad:87:9a:a6:03:b1:3e:71:1e:e9:3a:08:ae:05:f0:bc:68:
0f:8f:60:b2:b0:90:19:84:5b:cf:52:60:3b:df:06:30:af:2f:
ab:7c:6a:2e:74:32:88:98:9b:e2:82:1d:5e:0e:27:a8:c6:b2:
f6:58:b0:cd:21:74:6c:39:53:0c:27:e4:ed:e5:2f:fd:a8:9a:
6f:c4:db:72:5b:08:56:47:c8:19:32:7a:a3:44:fd:67:eb:b4:
25:3f:14:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:46 2025 by rpki-client