Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json)
Hash identifier: MPVwWQx6aWbyfvsJ+bugVsQe+DlPwN6ewqBcY3QMdwc=
Subject key identifier: 15:63:F1:B8:15:2B:7A:6B:78:0A:BA:69:1F:B6:4C:36:A7:D1:49:51
Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c
Certificate serial: 0194C3509E61E55F932E3223909B62300CB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
Manifest number: 142D
Signing time: Sat 01 Feb 2025 21:00:27 +0000
Manifest this update: Sat 01 Feb 2025 21:00:27 +0000
Manifest next update: Sun 02 Feb 2025 21:00:27 +0000
Files and hashes: 1: I3MDgaIPk5rQhFYqlKJ88u7QcKA.roa (hash: 9W6ILnGR89GeCDK+0ZtMLah7T+7H4VrTikrakuva5SY=)
2: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: K8UfgiGJXrJ4cp8JSsAQ5sXpIo0QaOR5C18V7TR4FlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:9e:61:e5:5f:93:2e:32:23:90:9b:62:30:0c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c
Validity
Not Before: Feb 1 21:00:27 2025 GMT
Not After : Feb 2 21:00:27 2025 GMT
Subject: CN=1563f1b8152b7a6b780aba691fb64c36a7d14951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3a:8a:5b:77:35:21:0c:44:4b:ba:f7:c2:a3:
ef:c7:ee:f1:bc:26:4e:71:82:5a:00:a9:79:7f:7c:
a6:69:c8:c1:e5:38:88:09:a9:3d:1e:1f:e8:af:5f:
ec:64:c6:3d:9c:be:53:56:21:07:0d:f4:20:47:5c:
a3:bf:79:ac:57:91:a4:90:ef:55:82:f0:a5:00:4c:
f5:a9:6a:73:0d:64:59:b0:35:1e:5c:c9:41:2f:f7:
b2:e9:f5:6c:4b:73:df:1c:f4:1d:e3:7b:5b:21:79:
10:3f:20:11:66:1f:e9:ac:d8:15:f0:00:18:e8:b1:
55:a3:3f:8d:84:c4:cd:b0:e6:11:1a:bc:68:50:0a:
cc:84:b7:b5:f5:9d:57:b7:3f:96:76:31:f6:04:14:
1a:86:83:67:8d:d1:42:64:89:4e:3a:8f:26:27:b8:
28:2e:a3:1d:65:53:68:df:e6:e1:a8:9a:2b:15:20:
54:78:e1:31:67:97:ad:b6:a0:17:29:91:b3:99:8a:
ea:f7:ae:3e:59:54:bc:c7:b5:f8:04:90:24:28:6c:
d1:1d:b1:b2:6a:3f:fb:d5:8a:cb:05:5e:cd:07:8d:
86:28:77:d4:d8:92:3f:85:b7:19:a7:43:b7:a3:33:
c6:7a:72:68:58:7e:52:ca:49:f6:9c:7a:20:c3:b3:
c0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:63:F1:B8:15:2B:7A:6B:78:0A:BA:69:1F:B6:4C:36:A7:D1:49:51
X509v3 Authority Key Identifier:
keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:bc:41:4d:4a:3c:a9:38:38:ca:b6:31:9d:ed:6f:0e:47:6c:
c9:19:5f:6a:a2:23:e9:76:32:67:86:b5:07:8d:8d:a0:d2:3c:
a4:4a:d7:cc:b6:20:fc:c0:bc:fb:61:6c:f0:8d:5f:44:2d:93:
f2:c0:88:51:c9:3d:5a:ae:cb:17:28:72:bd:eb:72:30:5f:68:
3d:ad:5c:73:f6:ec:30:fb:7e:69:61:1f:41:e4:c1:e6:4a:8d:
aa:65:b6:ff:7e:c3:f4:0e:0f:00:59:2d:39:31:02:16:c6:ff:
03:d9:43:e2:b3:6f:65:0e:5f:52:1f:ab:06:a0:2a:19:08:b7:
bf:b5:24:9c:5a:ee:72:c4:94:88:a5:64:8e:86:98:c4:28:8e:
d5:7f:22:01:56:61:72:4a:15:e9:d8:69:8f:1c:cc:90:15:9b:
d1:1e:75:62:9b:73:33:a6:3d:ad:62:d9:c4:73:e0:af:b5:34:
2b:1d:1b:dd:0f:40:01:ff:ec:ae:21:dc:94:30:ed:f6:8f:0c:
d6:35:a9:94:ff:32:bd:d7:64:a6:f2:14:cc:59:35:a1:8c:48:
f3:c3:0e:de:9c:01:cc:5c:83:a0:44:46:39:1c:5d:0b:d0:18:
7b:c1:c9:91:26:35:a5:ed:2a:0e:a9:db:6e:69:49:11:07:07:
72:86:ed:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:05:47 2025 by rpki-client