Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
File: iqaY-D40KcieNMjy77WxIBoY_Pc.mft (raw, json)
Hash identifier: hlX+9J3v6shCQdRRozYEK7SzpQwnhiPjNbpwRpyUVQk=
Subject key identifier: 3B:D8:B6:DD:A4:A5:86:1F:D8:29:DF:62:A3:53:C9:74:BD:13:74:D3
Authority key identifier: 8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
Certificate issuer: /CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Certificate serial: 0196451F96F858D7E43519991B4F5FB5D93A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
Manifest number: 14F9
Signing time: Thu 17 Apr 2025 19:00:20 +0000
Manifest this update: Thu 17 Apr 2025 19:00:20 +0000
Manifest next update: Fri 18 Apr 2025 19:00:20 +0000
Files and hashes: 1: Eklv5iMrpdIb57nofb-2LDtZiMo.roa (hash: yKALUmc+NQQTzWDEWN3x1mf1BWmjZYZaxlqX1YAmy08=)
2: iqaY-D40KcieNMjy77WxIBoY_Pc.crl (hash: 5kHErOPrBB2h82kTiRLCHU0Jw7DyiWJRQ3653QQKBAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 19:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:1f:96:f8:58:d7:e4:35:19:99:1b:4f:5f:b5:d9:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa698f83e3429c89e34c8f2efb5b1201a18fcf7
Validity
Not Before: Apr 17 19:00:20 2025 GMT
Not After : Apr 18 19:00:20 2025 GMT
Subject: CN=3bd8b6dda4a5861fd829df62a353c974bd1374d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:97:d3:22:0a:cd:b3:aa:61:e6:b7:29:8c:
d6:f6:7b:2a:ed:4f:92:0a:9e:44:cf:7b:35:c2:71:
aa:9b:e2:e5:42:82:8f:0d:37:e1:8b:34:f2:01:de:
16:fe:8a:74:24:3d:df:14:6c:aa:f8:15:d1:47:3e:
54:9a:b5:40:18:86:f8:fb:5e:a4:a2:ce:45:62:c5:
3e:9d:96:1e:2a:3d:fc:d9:64:79:18:85:48:80:69:
c9:4b:05:b9:ad:93:50:13:f3:c1:b9:6b:af:c9:eb:
08:e6:40:a7:e0:ae:86:8a:fb:21:9a:81:7d:95:13:
cc:10:3d:e3:ca:c0:d8:7a:6b:c5:1c:07:b1:03:41:
95:b5:67:78:cf:04:7d:09:3d:2d:4c:47:60:5c:75:
a9:4d:5c:b2:a8:bb:cd:ca:0b:dd:de:8e:63:1b:d3:
81:14:78:2b:6f:c3:4c:9b:1c:86:f8:cc:2d:9a:4e:
5c:d9:b7:4b:2b:b5:21:95:a5:14:cf:cb:76:08:4b:
eb:8c:d4:8c:ab:36:cb:11:aa:9c:ad:3c:d8:aa:a1:
b7:28:98:24:ae:aa:81:da:fb:34:4c:0c:49:42:f8:
3b:0c:04:5f:09:3a:ff:69:18:42:e6:f0:c8:89:89:
f8:8c:9e:b1:6a:f0:b5:42:5a:23:f0:55:07:77:ab:
39:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D8:B6:DD:A4:A5:86:1F:D8:29:DF:62:A3:53:C9:74:BD:13:74:D3
X509v3 Authority Key Identifier:
keyid:8A:A6:98:F8:3E:34:29:C8:9E:34:C8:F2:EF:B5:B1:20:1A:18:FC:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqaY-D40KcieNMjy77WxIBoY_Pc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d704f2-6ed4-44c1-8e4f-4d7a84babbde/1/iqaY-D40KcieNMjy77WxIBoY_Pc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:fa:5f:c7:cd:1a:db:3c:40:88:24:99:71:47:d3:ce:96:f1:
5a:7b:e6:7e:54:8c:85:92:96:b8:5e:f8:a0:96:eb:27:db:35:
55:2a:aa:42:62:76:15:b2:52:fb:1c:d8:c1:01:82:68:c1:94:
f7:ce:b3:7a:d0:4b:93:d5:d1:83:aa:e7:d8:b7:48:0c:a2:8b:
dd:a6:f0:6b:87:95:9e:ef:26:85:1d:2b:59:3e:e6:5e:e4:cd:
44:48:70:18:10:18:ea:c0:32:f5:7f:ac:7e:76:1f:f3:d1:c3:
31:ce:54:24:53:12:9c:05:c9:f9:7b:9f:38:ab:4d:7a:d0:83:
52:34:83:c7:aa:b1:4b:d8:05:18:36:a8:47:05:02:e0:e3:68:
f6:a6:3b:a0:0f:82:a5:53:7d:7b:7b:82:d6:35:ee:54:00:3c:
05:d4:04:df:aa:eb:9d:e4:ca:5f:ea:85:b9:0a:b7:51:fb:7f:
0f:20:ae:13:af:8c:77:19:36:a7:6d:00:61:3c:a5:44:34:20:
23:e3:80:36:69:88:de:45:97:54:2b:99:58:85:3d:ed:60:0e:
66:dc:3e:41:30:7e:17:e3:9e:6d:40:cb:96:87:50:5d:ad:b6:
96:b6:63:d9:f1:c5:1f:72:ae:1d:0f:b7:6b:7a:bc:3b:37:ed:
09:23:fd:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:32:45 2025 by rpki-client