Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
File: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft (raw, json)
Hash identifier: MhkecQrNAgnqEntKsFY9FSa5G6bf+uzBRpD9q/RT264=
Subject key identifier: 65:29:52:4C:0B:99:95:E5:6A:D4:F4:A3:01:5A:0B:85:01:EE:1E:5E
Authority key identifier: 23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
Certificate issuer: /CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Certificate serial: 01964DECAAA43669AA1C83434A71F61054CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 12:01:17 +0000
Manifest this update: Sat 19 Apr 2025 12:01:17 +0000
Manifest next update: Sun 20 Apr 2025 12:01:17 +0000
Files and hashes: 1: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl (hash: QRdGZKsXafetN5Z6yR2Po5w11SQKBW9OCl+a+8g8F7s=)
2: MTT1Ia9LOAm3voF-tKlGjmgFAPI.roa (hash: 4bP/TTzv7AEu1D5qKcmPGabc7tnqcf7nz+XM5tO/PTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:aa:a4:36:69:aa:1c:83:43:4a:71:f6:10:54:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Validity
Not Before: Apr 19 12:01:17 2025 GMT
Not After : Apr 20 12:01:17 2025 GMT
Subject: CN=6529524c0b9995e56ad4f4a3015a0b8501ee1e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:19:be:75:92:0a:ba:f3:4e:34:d3:5c:a5:53:
86:2f:17:e5:2f:8a:5e:1b:57:dc:2a:9c:5c:b8:68:
c6:f6:60:80:64:a9:f6:c0:84:5e:6d:a6:f7:0d:ed:
55:18:b1:eb:71:a2:46:a3:8e:9d:c8:86:4f:d3:fd:
ce:7e:09:2e:aa:20:23:ad:96:ec:68:e9:28:15:9f:
ee:b7:6a:e0:6e:76:40:dc:8c:e3:cf:dd:c5:36:8b:
c7:9e:ca:a8:3c:57:f1:65:44:24:72:9c:ea:45:a9:
21:17:83:51:9d:32:1f:ca:9b:7e:dd:a0:ea:a0:26:
69:aa:8c:d6:79:79:fa:35:b1:c1:9a:6b:e1:2a:24:
77:47:80:b4:67:72:0f:79:be:44:49:9a:34:24:cd:
85:ef:44:fb:50:a7:cd:38:fc:d7:99:13:48:03:5b:
3e:4b:b2:6a:d7:79:42:8d:83:b6:3d:5c:e9:dd:5e:
35:1d:82:2c:51:1b:2f:78:27:ad:54:63:ce:cc:35:
e4:1c:64:87:78:29:e0:59:4f:45:e6:63:de:20:78:
a4:99:53:c1:d8:a0:3e:0f:00:7c:62:52:8f:ab:30:
a3:d8:36:c6:0f:66:96:dc:72:d9:58:20:e0:89:bd:
28:46:de:76:db:24:68:97:86:04:4e:2c:2a:12:99:
03:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:29:52:4C:0B:99:95:E5:6A:D4:F4:A3:01:5A:0B:85:01:EE:1E:5E
X509v3 Authority Key Identifier:
keyid:23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:99:a2:e4:53:87:e2:65:64:52:bd:98:95:40:e8:ec:cb:30:
94:63:1a:52:02:5e:9d:2f:07:75:2e:7d:37:c4:19:46:cb:21:
bd:70:c5:1e:5d:4c:f7:bf:fb:f1:6b:27:f0:d2:64:7e:6e:96:
c4:76:aa:46:4f:e8:7e:a0:fe:28:15:d0:52:49:8a:6c:e4:b5:
ef:46:1c:8c:47:1f:8b:c2:7a:d5:90:fa:aa:8c:b5:43:98:34:
6e:4e:e1:f8:2f:5f:bf:b6:64:b2:d5:c9:e9:76:f1:0a:18:56:
2e:c5:b2:c8:68:fa:e2:27:fd:0e:8e:ac:1d:ab:d9:58:ee:1d:
e3:ce:d7:62:78:ed:2e:28:d4:5d:79:a3:51:d6:59:84:ac:38:
ec:37:cf:ef:fc:cb:a1:da:b3:3b:ca:0c:1a:f6:af:04:a7:69:
7f:8c:8d:f8:69:f5:c7:a9:70:11:bd:5f:92:79:36:c3:46:8c:
5c:e9:0f:95:e9:bb:44:c2:13:e9:4a:32:1b:99:4c:eb:61:fa:
3b:a1:cb:a4:3d:f5:4c:b0:dd:0c:34:74:8b:c4:3d:4b:23:a8:
d2:db:51:9d:ff:5d:f2:48:39:45:50:98:11:88:74:3d:51:da:
ac:86:60:e6:3c:88:93:4d:4c:98:e5:ba:8b:af:1e:5f:cc:64:
28:16:af:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:07:00 2025 by rpki-client