Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
File: I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft (raw, json)
Hash identifier: YGINpxxRyLQZgweBcXf5DgBzufflN6W6IpPcazyg11c=
Subject key identifier: 36:4B:59:3B:CF:83:ED:C9:5F:5F:59:AD:ED:1B:8B:E7:5D:FA:41:83
Authority key identifier: 23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
Certificate issuer: /CN=235163d39db88816cddc597a5db5eae707d3de39
Certificate serial: 01958C971B386E08B48E4ABD2B3F9148386E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
Manifest number: 149C
Signing time: Wed 12 Mar 2025 23:01:07 +0000
Manifest this update: Wed 12 Mar 2025 23:01:07 +0000
Manifest next update: Thu 13 Mar 2025 23:01:07 +0000
Files and hashes: 1: 0w9FBc0vTYSPsjAWKJJCnffXw-k.roa (hash: jLDk0IcPs8Pb9A807RQu6H+l6FnV9GFyw8DjOzzYbaA=)
2: I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl (hash: iC0hj9rTK++LjYvIFp+y+2TYvqFReQIziy0E20FJk24=)
3: gKeAQqo6LHoqnf4Vl-8HYj5MieI.roa (hash: SOGNQLrBgWGkjZGYc/wKjLGsnvGnOrdebSHsTRsYQCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:97:1b:38:6e:08:b4:8e:4a:bd:2b:3f:91:48:38:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=235163d39db88816cddc597a5db5eae707d3de39
Validity
Not Before: Mar 12 23:01:07 2025 GMT
Not After : Mar 13 23:01:07 2025 GMT
Subject: CN=364b593bcf83edc95f5f59aded1b8be75dfa4183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d8:e8:03:fd:ce:ad:3b:5c:40:21:bc:2e:95:
26:aa:e2:b9:01:bf:3b:50:de:c7:f2:38:6b:c8:25:
42:b8:d6:eb:00:0f:6a:5d:f9:00:cc:ab:69:5b:ba:
86:22:bb:ac:a1:e1:b2:c0:e7:40:04:6a:b3:28:94:
0a:fc:9b:c6:81:aa:85:3b:e2:86:d4:3b:58:43:1a:
f2:61:92:33:2f:c6:43:99:89:e0:01:10:db:f1:c8:
ad:82:69:5b:fa:c0:db:81:4b:d6:bc:72:43:31:00:
35:6b:ba:29:e6:b0:4b:44:71:fa:5c:83:19:29:d4:
bb:7f:20:c9:bc:5a:42:86:2b:90:68:5f:ae:17:ae:
43:1b:ff:53:db:5d:d9:7a:27:31:83:e4:8f:0f:b3:
d4:82:f6:55:3f:d3:0a:87:7a:48:c6:d4:9b:fc:2b:
66:15:64:b3:1d:74:d9:c5:36:b6:20:12:4c:d0:cc:
71:f3:97:9b:d2:52:ca:b1:9a:80:ed:99:87:6b:75:
c7:8f:31:1a:7f:33:5d:c7:d1:ec:1b:fa:83:ed:21:
b5:08:22:ca:0f:8a:af:8e:34:27:3b:00:2a:9a:52:
1c:eb:1c:2e:59:51:4f:8d:32:08:f6:04:f8:40:54:
eb:21:b7:15:dd:ab:7f:3f:c9:fb:87:78:33:9b:04:
ba:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:4B:59:3B:CF:83:ED:C9:5F:5F:59:AD:ED:1B:8B:E7:5D:FA:41:83
X509v3 Authority Key Identifier:
keyid:23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:51:8a:72:7b:a9:07:a1:a2:e7:74:9c:61:3a:9a:a1:c3:8a:
dd:23:16:17:cb:92:c7:02:33:27:01:f1:cd:9b:77:ee:eb:9a:
75:26:ef:bb:85:64:96:32:52:ab:f6:2c:9c:6e:73:2c:60:ab:
ff:2b:d4:7d:65:1c:22:20:27:ce:5a:08:d6:e1:fc:88:08:6e:
17:a8:60:b9:6e:85:a0:6a:75:46:c2:c1:81:ec:74:42:3a:c8:
66:c5:42:70:4c:21:a7:81:65:49:aa:0b:6f:01:8d:8f:4b:7f:
5d:c9:eb:92:5a:8e:1d:92:22:8b:db:e7:db:78:ef:72:b5:fe:
7a:50:9a:03:cf:0b:57:9b:fe:4b:99:52:60:a7:c4:5d:13:0e:
1a:d9:40:4c:29:05:20:ae:5a:4b:4d:e2:30:30:6b:a2:0a:92:
5d:7e:ce:21:85:f4:e8:62:9d:35:b7:1e:d3:17:63:08:3e:89:
8c:f8:ad:69:46:6f:ef:64:43:2a:cf:2f:aa:da:27:70:16:d9:
e3:78:41:34:d0:64:54:1b:dd:db:c4:8b:d0:2d:5d:48:e6:3f:
6d:44:e3:c3:d4:db:00:87:7d:4e:ee:6d:ee:af:5c:37:84:a3:
54:37:33:89:92:82:9c:1a:66:4c:99:4b:22:0b:80:c6:c4:99:
d5:14:c1:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:51 2025 by rpki-client