Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: SfF21wazE0zrJIEVm9THO2pFegov4Ju299CJkxVEJyg=
Subject key identifier: 45:5D:77:BF:D1:4C:80:B2:6E:74:1D:A6:A3:D3:41:86:21:C9:45:57
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 0196586FDEB4FC458E9050F72FEC2461E306
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 13:00:48 +0000
Manifest this update: Mon 21 Apr 2025 13:00:48 +0000
Manifest next update: Tue 22 Apr 2025 13:00:48 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: PZD8WtvDrpBDXYspBt3KHzu6zReUovZkZi/XwxBkJt4=)
2: cFbXH5gO6qs06Nq1Ek6wrTAvxB0.roa (hash: c0tlMuDM/vPMybXrB0sIatVwyL/aO7RZmUvD1wZIObw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:6f:de:b4:fc:45:8e:90:50:f7:2f:ec:24:61:e3:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Apr 21 13:00:48 2025 GMT
Not After : Apr 22 13:00:48 2025 GMT
Subject: CN=455d77bfd14c80b26e741da6a3d3418621c94557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:83:bb:d8:c6:7a:7f:0e:67:79:cf:72:b7:01:
83:52:cc:25:09:fe:01:30:cc:80:ca:25:a0:76:af:
40:ae:e9:2c:aa:f4:e6:f7:d7:0b:87:b9:d8:6d:cc:
88:fe:ef:ca:d1:15:a3:3e:72:20:21:1e:d8:d0:3c:
44:76:0d:45:82:8f:67:44:cd:8c:79:f5:b7:f4:74:
e6:60:1b:45:90:d5:68:9b:d6:f0:5d:7d:53:0c:6a:
5e:17:5e:a1:4e:fa:d9:bd:0a:f3:c6:77:6f:6b:af:
59:09:a8:ab:3c:2c:f6:44:74:24:54:14:38:7e:f3:
34:e2:08:53:58:3e:44:4f:61:91:06:7b:62:6a:63:
08:d8:a5:6f:2b:f0:d1:c6:cc:de:98:82:ed:ff:7c:
ef:74:4c:c8:60:aa:51:3e:4e:e5:77:b9:7f:01:8e:
4b:42:c7:9e:1f:f9:d7:32:c9:96:8e:56:0d:e0:0a:
b6:c5:3a:94:27:fc:17:1e:0c:53:de:14:6d:4e:c2:
57:d8:6c:c0:0e:2c:97:0f:97:5a:b2:6c:25:0f:f6:
a7:8e:6c:77:8f:7f:dc:a8:0e:fe:1c:01:06:59:8a:
cb:5c:72:19:b9:6e:18:8f:a9:e4:ea:70:ba:c4:b6:
24:78:c7:ce:91:13:72:a9:27:eb:b6:47:3f:89:02:
7d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5D:77:BF:D1:4C:80:B2:6E:74:1D:A6:A3:D3:41:86:21:C9:45:57
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:3b:b1:26:c1:99:3b:30:9d:4f:7a:d0:a2:a6:07:7e:04:58:
38:e8:ee:a1:03:e0:4a:61:ca:43:e7:9f:90:5d:ff:0b:0e:2d:
65:97:81:35:ba:8e:b9:17:0d:5f:91:71:fc:f0:f7:3e:64:47:
1a:1d:45:43:18:57:9e:ff:9d:a8:51:31:2a:af:ed:2d:a5:dd:
0b:f3:1c:cb:2f:9d:68:7b:06:fc:8d:d4:c5:cb:ae:f4:e2:3b:
26:60:05:ed:5b:38:f2:cf:e7:eb:d5:b4:20:88:cf:a0:e1:a3:
d8:43:a2:27:a9:a9:46:6e:c1:c8:2d:15:8c:65:87:f1:19:24:
eb:1e:ba:78:0b:58:29:bd:aa:95:2f:ef:24:32:73:67:86:19:
f1:a3:bd:9e:83:3b:75:99:51:66:a3:b8:d1:87:9c:0a:4b:e3:
71:05:f3:6f:e6:9b:b1:2a:c0:76:6f:a2:0f:39:3b:58:5b:d4:
2e:a8:6e:fd:1a:e0:39:3e:54:ee:15:4a:ad:87:6b:87:9a:d8:
b0:43:fd:70:94:a7:9d:d3:29:b1:c1:b8:c8:1f:da:ae:95:d2:
b0:cf:a4:d7:5e:2d:41:98:53:fc:52:7f:fe:92:39:7e:59:b9:
c9:be:ad:90:b4:00:82:e9:0d:b8:d8:bb:b3:fb:7f:06:ec:e0:
9a:e9:83:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:56 2025 by rpki-client