Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json)
Hash identifier: 3cocm2SBrqITQxdy6cP24VUXq1Cv5e/qh2fXismLjDw=
Subject key identifier: 68:19:18:B0:B0:54:CC:FF:31:CB:1B:99:C0:E5:2A:68:E4:4F:39:43
Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Certificate serial: 019618B5A1BA6CE22C639B9F432FE5A5BA0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
Manifest number: 080B
Signing time: Wed 09 Apr 2025 04:01:18 +0000
Manifest this update: Wed 09 Apr 2025 04:01:18 +0000
Manifest next update: Thu 10 Apr 2025 04:01:18 +0000
Files and hashes: 1: 1x2QkjrjfmH7457XFfnRPIPsvrU.roa (hash: hdLqZqotCS5NMzBAHyICUCVoucf1opCMX8HxfI3Xt9w=)
2: 3z6lktI1lDr4VGsD9ynpgjzyaiA.roa (hash: cu4Dj3hdfbNVBv8hLW6UGz1FhflqYtjIYtw5ySC1Qpk=)
3: Dc1SxW96IAQ3f2snIBmens7GV0U.roa (hash: A68NloNFUVZ/1yLMaTnJ5sUcnw8LpIIqTLsAe9oPGuQ=)
4: Hclo7mgAV-Jk6Qp5sVlZMDADheQ.roa (hash: cVUhTfbeGPClCYhj8aCdhEzcQl8l864NJzclgxFTC+Y=)
5: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: sqTFRK6Ci9GUvzZVD4r03lP1Bht7woM/G4NSuwKQ+Pk=)
6: Ku4DjWMj_wrBqXvp8QwLCV7LvMQ.roa (hash: MiHDGBqhLXLE6nmzkue9evydNoK6FMJwJm/pNx6ZNnQ=)
7: ajmq5QdlQvXrCBRMjUs67yP9AmI.roa (hash: mQ5XjE5gzuzrTdkByBU3/meXRrw3VOANPbjnntSYJ74=)
8: iIyJKjInlinbrFoxMvyP7cHrL18.roa (hash: jppb7YCDugjMDFMLhWTY9NbjBHwSDw8mYabJJeuiwkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 04:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:18:b5:a1:ba:6c:e2:2c:63:9b:9f:43:2f:e5:a5:ba:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Validity
Not Before: Apr 9 04:01:18 2025 GMT
Not After : Apr 10 04:01:18 2025 GMT
Subject: CN=681918b0b054ccff31cb1b99c0e52a68e44f3943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:21:fe:7e:b5:ee:d6:40:9c:69:1a:40:35:
ea:47:c7:66:f4:df:87:9a:de:2f:a3:69:cd:44:2c:
a6:89:3a:64:93:9f:9e:d5:88:1a:d5:bf:9b:dc:da:
8f:4e:1a:d0:4b:36:35:4f:77:ef:74:e6:9d:fc:03:
3d:22:60:a0:fd:53:4b:ee:70:89:bd:af:2e:0a:47:
92:8a:ca:6b:c8:52:d9:c6:cd:a3:4d:54:ef:6d:67:
01:e1:6a:3d:f9:3d:92:f7:37:91:0b:72:63:ec:de:
f1:6a:e7:65:30:2a:4d:46:7d:6a:32:63:3c:da:26:
9f:8e:40:da:90:b4:f5:04:72:8e:b3:fb:4e:d1:3a:
82:be:02:0d:c8:8d:e3:36:25:dc:4a:17:01:55:4a:
38:20:5b:c6:4b:fa:4c:45:64:14:db:c1:a3:5b:3d:
ed:1c:55:4e:7b:ce:41:b8:0e:0a:54:50:08:58:5b:
f4:df:35:e2:b1:17:39:0e:88:2d:91:3b:d6:d1:4e:
60:00:29:17:49:4a:43:e4:a2:93:7d:c3:79:ad:ba:
6a:c7:60:53:6f:7d:3a:04:50:c9:ef:90:1f:6f:83:
00:76:b8:79:53:85:54:26:4f:08:4e:5e:ba:7e:f8:
43:13:72:95:5c:f4:6f:63:58:fd:1e:5b:60:46:4d:
cb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:19:18:B0:B0:54:CC:FF:31:CB:1B:99:C0:E5:2A:68:E4:4F:39:43
X509v3 Authority Key Identifier:
keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:4c:2f:15:41:73:58:92:11:fa:bb:85:89:dc:42:9e:6e:d4:
b8:8d:1a:62:03:f8:33:c2:d0:45:32:30:ad:e3:68:6b:b4:85:
00:a9:46:3b:26:3c:0d:19:f1:3b:95:65:69:37:6b:9d:78:05:
b1:dc:9d:da:8e:c6:e4:29:6e:5a:6d:0a:f1:53:78:1c:86:58:
17:b8:4c:0c:d7:f5:06:b7:cc:75:75:eb:ce:aa:78:4c:98:b1:
b2:9a:27:a0:84:07:02:70:43:0e:d4:b3:8b:96:c1:65:81:57:
99:4f:97:dc:e5:0e:aa:80:aa:c8:d9:30:61:df:64:d0:3c:b5:
95:89:a9:85:4c:3a:6b:37:8b:f4:4d:ea:92:29:f7:37:a3:8b:
7d:f4:1c:c6:b0:a0:f7:f0:85:c8:b6:46:3b:04:6d:b9:34:4a:
01:02:b6:ea:04:6d:66:79:90:35:ad:1b:a4:5b:17:b6:95:9c:
f2:6c:5c:fd:33:5c:0a:76:2e:0d:13:66:73:07:7c:72:95:b8:
2f:3a:9a:59:01:f7:90:d5:ad:f6:94:24:86:68:0c:e7:c6:f7:
e6:40:2a:00:00:0e:a9:26:e4:14:12:76:1f:79:ca:7c:71:14:
4b:b6:9b:df:24:aa:80:5a:92:c6:b9:0b:72:77:85:6c:6c:86:
a7:e2:72:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:46:24 2025 by rpki-client