Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: vYowAabrCHAEKyMfAV4USt5uhFa+GWjfzrSrFhhjQiM=
Subject key identifier: A1:AE:0B:73:61:B8:D3:52:BA:A2:33:B9:09:18:52:70:09:D1:13:C1
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 0196501159F23F7B7FFBBD7AF28BE492980B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 0EF6
Signing time: Sat 19 Apr 2025 22:00:36 +0000
Manifest this update: Sat 19 Apr 2025 22:00:36 +0000
Manifest next update: Sun 20 Apr 2025 22:00:36 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: Oa5Gx6wUDUGHn1wP0bfrGAHrYBpCWdn7itim0b2NLkU=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:59:f2:3f:7b:7f:fb:bd:7a:f2:8b:e4:92:98:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Apr 19 22:00:36 2025 GMT
Not After : Apr 20 22:00:36 2025 GMT
Subject: CN=a1ae0b7361b8d352baa233b90918527009d113c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7b:e1:74:e6:77:5d:b7:63:58:08:d8:01:81:
a3:cd:8b:d9:d5:9a:16:01:c2:cd:6c:f6:69:e3:bd:
1e:45:d1:a5:1a:94:d7:0f:82:76:a5:01:55:44:1b:
00:31:3c:1e:10:16:f8:38:7c:71:13:9d:8e:48:9f:
66:3f:cd:ba:97:11:c8:73:b8:d7:53:69:90:81:1b:
80:e3:c5:42:2a:1a:11:f0:6b:4c:52:96:35:4a:fe:
cc:83:c6:bd:dc:a7:5e:91:26:82:7b:b9:e2:3e:14:
75:b9:80:cf:89:2a:2c:26:0f:a8:69:57:aa:4c:69:
65:56:20:7f:3e:a5:bd:1a:12:b2:71:cd:41:84:e9:
85:19:ea:04:63:39:62:ca:0d:c9:bf:97:e3:b7:12:
ca:ba:c4:37:6e:45:9e:a1:b0:18:fa:ec:8a:f1:0b:
8e:ca:10:a1:a3:34:0b:13:3e:4e:c6:c1:e7:2e:ff:
65:fa:05:71:37:0a:c9:fe:84:dc:f2:3f:bb:e7:b9:
f0:72:2c:b5:6f:b3:2c:f8:fe:e7:8a:d3:7a:d3:3d:
9a:f4:4e:b3:9e:db:fc:d2:20:20:ae:ac:c8:02:7e:
40:38:4a:98:61:9a:88:92:d8:35:ad:ba:70:13:7a:
3a:55:80:52:13:2b:92:5d:29:a2:06:05:6c:17:0a:
63:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:AE:0B:73:61:B8:D3:52:BA:A2:33:B9:09:18:52:70:09:D1:13:C1
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:23:93:9c:ef:50:b3:38:36:83:41:63:9a:be:ad:9e:10:6b:
17:4c:68:bc:62:f5:61:cf:48:fa:a0:bd:5d:cc:fe:87:f4:75:
67:26:5f:91:a2:f9:9e:5a:05:73:7f:bd:2a:2d:dc:a4:cd:a7:
ac:e1:68:d7:04:d3:8e:f0:c5:5a:66:23:20:77:63:cf:7c:74:
e1:10:82:ae:6c:74:92:a1:6e:c0:a4:b8:6b:fd:e4:60:89:46:
fe:49:2e:7e:4c:48:f6:fd:53:9f:dd:d8:23:da:b5:33:70:c1:
99:4e:4e:31:ce:71:69:e7:6f:ac:96:fe:96:f6:bb:6a:7b:10:
60:b9:2d:bb:7a:5e:93:8d:87:1a:97:43:95:4a:e3:60:4c:14:
d8:4b:32:5d:10:e3:d7:c6:58:fa:1e:05:9a:50:18:d0:31:fa:
d2:fd:c9:96:07:86:70:e7:d6:7c:86:a8:d4:74:e1:23:1f:bd:
26:9f:33:87:cc:69:64:c5:7a:0c:d0:e5:37:84:04:a5:ba:e9:
7a:0c:60:5e:e1:62:88:29:6a:67:c2:13:29:03:ff:15:0e:7e:
fe:e2:2f:7c:d8:12:46:09:dc:94:40:43:8a:84:38:ca:cd:f8:
58:48:1b:d2:d7:a2:8c:5a:c7:36:af:33:ef:a1:36:58:a5:b7:
4b:27:1e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:14:00 2025 by rpki-client