Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: izIGASu4azSGmbhkbsmPn/ZMf4FuGyDixftEyIvupkM=
Subject key identifier: 49:E5:31:14:42:BC:D2:14:6D:93:0A:7E:FC:24:CD:79:AE:D5:8A:98
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 01965048C35CE5B3996A3EBACBD5DF7FA89D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 0E6C
Signing time: Sat 19 Apr 2025 23:01:07 +0000
Manifest this update: Sat 19 Apr 2025 23:01:07 +0000
Manifest next update: Sun 20 Apr 2025 23:01:07 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: o5RWrIMxG4x50onW+RZ63pjCUV+1upZkw/qyMF78KyU=)
2: oYl1-NMXXzEXtTi3L5l80mvOKew.roa (hash: HGKJcqJks4x1KvA9MPs1IeJtaKWdWbE52yFjhD/1Aak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:c3:5c:e5:b3:99:6a:3e:ba:cb:d5:df:7f:a8:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: Apr 19 23:01:07 2025 GMT
Not After : Apr 20 23:01:07 2025 GMT
Subject: CN=49e5311442bcd2146d930a7efc24cd79aed58a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:ff:fb:4c:59:00:97:d7:0e:6d:86:83:68:
54:25:be:40:14:69:e4:25:8d:0b:61:5a:d3:b1:d4:
8c:69:09:1d:90:e6:98:dd:1c:5c:4c:e8:27:ee:64:
40:bf:c5:38:5f:ab:6a:b3:6b:5c:c5:5e:72:1a:12:
b5:3e:e0:78:c8:46:00:39:c1:ea:0f:ef:f8:fb:d1:
5b:27:25:cd:1f:50:f8:cb:7d:c3:6b:0c:d9:61:37:
1d:6c:93:f9:6a:6c:08:bd:d0:ab:21:b0:29:3b:a3:
2a:31:94:25:95:ba:9b:1a:eb:74:de:ba:ae:cb:09:
67:7c:4a:a2:43:35:ef:b0:cc:d1:a9:54:a8:33:4f:
20:78:e9:c3:af:f9:8a:45:7d:17:ac:4b:65:b8:cb:
4c:08:ea:ce:6b:13:03:c4:ef:a6:09:b0:74:97:b5:
3f:fa:bc:a8:2b:ee:24:7e:d6:3d:ff:be:b4:1c:17:
3d:3e:15:00:c5:4a:66:c2:2e:75:25:0a:26:c7:4a:
25:5f:d6:02:3d:09:64:d4:86:b5:45:a6:df:56:73:
de:0c:ab:a1:8d:18:d6:bf:ac:2a:0f:50:0c:33:60:
ea:d7:23:3e:c7:d4:e2:d8:ec:de:d4:bf:e9:54:98:
ec:37:c0:17:bc:15:2b:d2:f7:44:d9:1f:6b:04:41:
e4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E5:31:14:42:BC:D2:14:6D:93:0A:7E:FC:24:CD:79:AE:D5:8A:98
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:06:02:f1:8c:88:5c:f7:5d:6e:c6:0b:ba:18:a4:e0:c9:ae:
11:54:2e:45:50:28:2f:ba:37:16:4f:78:71:ca:52:de:01:42:
53:26:05:0c:c3:a4:c7:95:64:29:48:3d:19:6c:0b:48:ee:50:
e2:1f:8a:b8:97:5e:41:ff:5e:10:03:36:b6:a5:71:3a:75:cf:
c8:28:c1:aa:68:c5:bb:1d:a6:1e:fa:5a:9c:92:0a:0c:c3:1f:
b0:ad:26:39:30:56:2e:da:13:67:55:dc:fe:fa:5a:3b:1f:ee:
b6:ac:87:7d:a0:b2:72:56:b7:f9:ff:d7:da:1c:c5:82:e5:62:
b5:e7:4d:17:86:42:8b:9f:69:93:b7:ad:34:ea:3c:7f:90:42:
a4:f9:33:a5:b9:85:95:33:e3:b4:42:09:0b:d4:f1:be:5a:77:
d2:d9:ab:5e:f7:46:18:85:49:a4:4b:44:e5:00:f6:9e:03:c0:
bc:ff:69:62:55:05:bb:65:20:0c:54:e8:20:a0:b2:9e:6b:86:
c7:a1:95:7b:b1:7a:53:d4:74:ba:4d:c7:e1:5b:c9:12:fc:44:
09:10:a7:98:08:2a:ca:dc:8c:95:63:0c:ba:d9:d8:3a:fd:b1:
9f:d0:5b:d6:37:c2:30:ba:5c:6d:74:d4:2d:33:19:e9:fd:9b:
f9:95:7c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:10:47 2025 by rpki-client