Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
File: iEZAW_zHgGbFGSyz6-csRDxVcog.mft (raw, json)
Hash identifier: PtKBZO+C/maAxR1V1qqLPWAecdMDhl6NjKtNXGm/Zh0=
Subject key identifier: 1E:42:2C:12:F9:63:44:3B:88:C9:F5:25:90:7C:4F:59:96:13:A3:B2
Authority key identifier: 88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
Certificate issuer: /CN=8846405bfcc78066c5192cb3ebe72c443c557288
Certificate serial: 0196507F64BB46F0B544A2CA112A6A601BD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 00:00:48 +0000
Manifest this update: Sun 20 Apr 2025 00:00:48 +0000
Manifest next update: Mon 21 Apr 2025 00:00:48 +0000
Files and hashes: 1: 1wukbEM_Z2cOLmS317mkgQWPtlY.roa (hash: mynvXYceF8nnYoZdEmhOk8iYDpjkXUz62HUCHGcK8Wc=)
2: iEZAW_zHgGbFGSyz6-csRDxVcog.crl (hash: LwT5M2QD9ZNZ+E8ozLYtGUXyjnUimnIaejQd+DYFPg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:64:bb:46:f0:b5:44:a2:ca:11:2a:6a:60:1b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8846405bfcc78066c5192cb3ebe72c443c557288
Validity
Not Before: Apr 20 00:00:48 2025 GMT
Not After : Apr 21 00:00:48 2025 GMT
Subject: CN=1e422c12f963443b88c9f525907c4f599613a3b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:34:1e:5d:48:48:c9:fe:fb:8d:36:27:1f:8e:
3a:2e:76:bf:81:b4:7a:0f:46:43:59:5c:34:4c:c2:
cb:97:12:db:76:00:3d:36:54:13:9d:59:44:3e:3a:
75:b1:81:42:41:d9:26:03:bf:e4:0d:6e:3b:da:a9:
bc:7e:5b:01:cc:4a:7a:d6:01:48:58:45:4d:60:5d:
ca:80:2b:d1:21:15:af:29:8e:a3:b4:ec:fb:ce:4e:
08:4b:d2:0f:ef:4b:b4:6d:cb:50:c5:31:37:78:82:
87:88:9f:2d:8d:df:83:af:e0:e6:4d:10:a1:01:fc:
e0:22:e0:e6:dc:47:88:0c:c9:44:52:22:89:e9:2f:
13:7e:f3:e2:f5:57:7e:09:bd:40:e5:38:5f:2a:3b:
ec:c5:78:f0:12:39:2a:53:d6:63:66:a6:b8:cb:7c:
c1:03:48:ef:64:fd:11:a2:ee:41:64:be:1c:7f:4a:
51:e5:bd:a4:22:ce:a0:23:df:07:e7:57:6f:f0:d8:
1f:3e:d0:02:9d:cd:db:8f:eb:c1:03:55:4b:22:d7:
24:32:b1:f5:f5:bf:14:39:69:83:9d:71:8e:71:32:
f5:1e:a8:67:fc:30:db:83:50:cb:a5:2e:15:8b:f8:
e9:ba:c4:41:a0:fb:76:ec:7b:3c:d6:01:8d:90:b6:
c5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:42:2C:12:F9:63:44:3B:88:C9:F5:25:90:7C:4F:59:96:13:A3:B2
X509v3 Authority Key Identifier:
keyid:88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:96:40:3c:5f:89:8f:4b:a4:8f:d4:66:0c:55:a4:c1:09:6b:
f5:0f:04:73:d7:25:8a:65:0e:25:f4:c2:89:74:a5:f3:1b:f4:
21:3a:1c:f8:87:67:fe:89:47:a3:26:d4:25:1d:3a:ca:6b:e3:
9e:a6:4d:6d:0c:e8:bc:d4:f9:b8:40:61:c4:67:07:7a:99:77:
65:e5:4a:b8:e3:c1:34:1d:d3:fe:8d:97:21:3b:57:ee:84:9b:
ea:69:7d:cf:c0:d8:8a:fd:49:76:34:a6:2a:66:de:87:3a:4e:
22:f8:10:e0:dc:18:e8:a8:16:cf:c8:3a:e4:90:60:e5:d9:05:
f9:22:e5:5b:fa:11:b0:c2:fa:a0:66:0d:23:6d:43:96:2d:76:
96:df:54:6f:9c:a2:ae:47:54:d3:32:60:9e:6f:be:2f:11:50:
35:ae:f4:e9:ac:37:c3:2b:e7:f1:3c:34:ee:b4:30:4a:16:20:
bb:bb:6a:d9:05:af:0f:79:c4:34:20:52:00:9b:69:13:33:72:
8c:47:77:47:47:c2:7c:88:35:66:e1:f3:04:cc:32:10:37:1f:
8c:e9:22:33:17:c4:3a:9b:07:e8:43:a1:a0:33:61:be:9d:a7:
74:da:2c:ce:45:81:4f:27:5c:f6:77:d9:92:83:a7:11:df:e6:
89:80:db:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:05:12 2025 by rpki-client