Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
File: I8Aq9PWPETIK8xlpRuH86dBQyQY.mft (raw, json)
Hash identifier: orUJS1fo4l+wj8gKqxh+2XGyVieHl6Rx4F0lI5ToEyY=
Subject key identifier: 40:A1:F4:2B:15:60:18:4A:CF:DC:6D:60:C2:AC:C7:D4:48:DD:A0:8F
Authority key identifier: 23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
Certificate issuer: /CN=23c02af4f58f11320af3196946e1fce9d050c906
Certificate serial: 019629047320D7E155DD3ED2BE442842E58D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
Manifest number: 14E4
Signing time: Sat 12 Apr 2025 08:01:19 +0000
Manifest this update: Sat 12 Apr 2025 08:01:19 +0000
Manifest next update: Sun 13 Apr 2025 08:01:19 +0000
Files and hashes: 1: I8Aq9PWPETIK8xlpRuH86dBQyQY.crl (hash: rssTogqSHQLGPdntfB8GIpjWM8Zn4Oox3ODfORTWxUk=)
2: L1nx6g959I4u5e_n7rqsUK0vG74.roa (hash: X8LU286M1DCtu5IfhCO2jJJ+1Cy+WsVLYYIMMfE/G4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 05:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:04:73:20:d7:e1:55:dd:3e:d2:be:44:28:42:e5:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23c02af4f58f11320af3196946e1fce9d050c906
Validity
Not Before: Apr 12 08:01:19 2025 GMT
Not After : Apr 13 08:01:19 2025 GMT
Subject: CN=40a1f42b1560184acfdc6d60c2acc7d448dda08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:b1:a9:d0:bc:07:ae:e6:9c:ff:35:d9:db:
36:22:0f:ee:f3:75:19:24:7b:a1:f7:44:0b:57:07:
77:c4:96:2c:63:fd:10:2d:31:60:f4:5f:4c:d8:26:
9c:a1:c0:ee:ec:24:72:7d:8e:20:f9:bc:ed:68:22:
e1:a3:43:c5:90:d1:34:5c:eb:20:57:41:8b:61:e2:
78:25:89:b7:18:8a:64:99:88:7f:3c:02:98:0c:07:
0c:60:c8:44:bc:83:94:26:ec:82:84:1d:1d:8f:1a:
d7:ac:1b:62:6a:d2:9a:6c:3a:3a:69:39:2f:58:fa:
a6:53:5c:e3:50:b5:86:ef:45:b1:5d:ef:69:6b:ab:
45:96:d1:89:51:a3:ee:58:a1:66:09:08:46:c2:c8:
c3:8e:1e:98:89:2e:3b:38:60:db:23:21:67:c0:df:
16:64:4c:c5:13:6d:0c:56:c4:71:1f:23:ab:51:46:
3d:c7:78:a8:46:b1:0c:3c:56:be:e3:93:21:bb:87:
0a:d5:b3:96:73:99:95:02:46:34:7e:a8:45:e2:da:
19:52:2b:03:b5:fb:47:a6:ff:fa:49:ff:f0:8a:07:
7f:b9:6f:59:8c:17:d9:02:80:10:45:0b:84:fc:db:
8b:47:20:54:61:4d:f0:15:80:b9:05:1f:25:84:19:
f1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A1:F4:2B:15:60:18:4A:CF:DC:6D:60:C2:AC:C7:D4:48:DD:A0:8F
X509v3 Authority Key Identifier:
keyid:23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:3c:c6:3a:e0:ae:81:18:ea:22:5a:bc:d4:fc:57:0c:63:52:
0f:51:74:13:3e:ad:2d:d1:19:c0:fa:28:44:4d:57:bb:8b:d4:
2b:ec:74:50:ef:f5:4b:dd:55:de:88:53:f3:9f:a1:2a:7e:cd:
20:b5:5a:43:a0:0d:b4:fb:e2:45:6a:c6:dd:2c:d1:7c:97:17:
7d:cc:ce:0d:0b:1f:ac:e2:a6:b2:3b:94:8c:1e:4f:17:cd:42:
35:3e:60:a1:f7:ae:8d:85:84:7f:e9:80:74:a1:27:e8:df:66:
58:39:5d:58:a1:24:9c:cb:81:b4:9b:2a:d3:c4:78:60:d3:db:
58:41:2f:42:8c:f6:cc:8d:02:bb:a0:0c:42:6e:70:27:33:c8:
27:b2:5d:ef:42:18:5f:d4:60:57:89:5f:41:44:a6:49:f5:db:
52:9c:cb:15:0f:9c:2f:55:54:14:d8:7e:df:95:8e:8b:9f:e8:
49:95:08:db:64:dd:18:71:34:56:11:8f:34:0b:97:c4:3d:85:
7c:97:26:da:44:fa:79:22:e0:07:37:31:a2:5b:8d:bc:b4:df:
81:41:73:6f:ac:af:68:07:df:d8:63:21:80:9a:8e:ee:85:5d:
94:a1:13:94:2a:9d:00:41:69:ec:6a:bd:ee:e7:8e:3b:d5:1c:
83:bb:85:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 15:14:17 2025 by rpki-client