Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: P9ETqjp9gt+0i41gQnX+vNBSpJnZfams8zlrL9Q+wU4=
Subject key identifier: 85:FD:1A:E4:BF:8B:6F:63:9B:DD:43:52:2D:60:A6:13:36:19:18:28
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 01965CF1BFBB13984CE112C6823DAC9DA4A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 1136
Signing time: Tue 22 Apr 2025 10:01:09 +0000
Manifest this update: Tue 22 Apr 2025 10:01:09 +0000
Manifest next update: Wed 23 Apr 2025 10:01:09 +0000
Files and hashes: 1: YR9oUfcPn7hi-EfIp0zPWNgdoLI.roa (hash: gZUlOd3rhYgj7y7iYiifqKrTqOs4vDy8o9fKugEnj2M=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: se3TOXwQUghwpVayq5hBt2TJzStPqB1fVzxmSG4kpjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:bf:bb:13:98:4c:e1:12:c6:82:3d:ac:9d:a4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Apr 22 10:01:09 2025 GMT
Not After : Apr 23 10:01:09 2025 GMT
Subject: CN=85fd1ae4bf8b6f639bdd43522d60a61336191828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:50:17:2f:3a:a4:62:52:85:b0:f6:4c:80:36:
aa:b9:47:7a:48:bc:9b:4c:60:3e:de:9f:64:8d:54:
2f:e4:d8:69:4c:e2:c1:c9:ef:07:f7:f5:33:75:28:
3a:43:2c:79:08:5e:8c:35:1e:ca:a8:fc:c2:8e:57:
7c:0e:6c:19:03:b2:9e:a0:2d:d3:9c:c1:d2:19:12:
d8:05:03:9e:4d:99:50:ee:d1:9d:94:17:46:5c:95:
dd:9a:0a:44:74:fe:d0:d3:39:50:36:41:01:4d:95:
cb:09:eb:c0:df:5b:ec:58:b5:99:fa:88:d3:b1:16:
0d:4e:a1:11:1a:7e:cb:55:88:02:97:79:dc:a8:04:
fd:b0:b1:a8:dc:fe:dd:e0:3a:27:fa:6f:6e:b1:f1:
92:cd:4c:b1:cd:01:51:15:ef:23:95:dc:be:29:3c:
7e:19:de:25:dc:6d:58:bb:3a:7b:40:80:cf:fc:0f:
f9:98:74:30:06:7a:c5:4a:f0:90:32:21:31:59:e8:
02:55:ee:25:10:8b:3f:40:6a:f5:22:dd:b7:bc:52:
8a:1b:59:b0:2f:99:dd:0a:37:b1:1b:24:16:9a:d9:
49:09:49:5f:fd:97:ca:ae:0a:25:c4:02:05:cc:a4:
d5:07:d5:55:ac:49:51:39:59:95:ed:97:2a:81:7b:
8f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:FD:1A:E4:BF:8B:6F:63:9B:DD:43:52:2D:60:A6:13:36:19:18:28
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:f0:62:f6:d9:3b:a3:78:23:b6:3a:8f:83:76:c7:64:72:c9:
a6:79:b7:42:c4:23:56:8d:6d:d7:d3:3e:e1:27:c2:a4:1d:a6:
2e:88:66:23:40:14:31:10:67:cc:42:cd:cc:91:8d:2a:15:eb:
ee:44:b0:3d:83:cd:e9:42:03:fd:c6:f0:d6:25:d1:12:7d:ed:
a0:82:d6:bc:9a:dd:88:66:49:54:81:92:57:9c:fb:f8:b6:61:
7a:52:aa:12:f8:89:04:bc:b6:6c:d9:4b:a6:1a:9b:9f:48:c1:
dd:f2:04:66:40:55:4b:8d:d8:55:fb:ed:f2:e8:93:9e:e5:c9:
b0:3c:f9:92:47:06:94:f5:8f:c9:04:75:fa:ef:b3:f6:21:a2:
9e:d6:87:8b:20:d6:1f:70:65:2c:5c:d7:c1:03:cd:e5:48:9f:
fc:6b:bd:1d:6f:06:31:fa:e4:dc:1f:9f:2a:df:81:c7:fe:5c:
79:79:de:36:f7:06:a7:47:2f:e8:af:b2:de:66:6f:20:b6:73:
fa:00:11:c2:8b:61:57:16:69:19:78:57:ad:74:c0:73:5d:98:
82:b7:00:6e:9a:09:dd:b5:d0:2e:c3:8b:c6:b4:1b:50:a6:65:
2b:85:e1:27:6c:85:b8:9c:ac:db:ce:fb:fb:dc:f0:d0:a7:55:
49:61:0c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:19:27 2025 by rpki-client