Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: OuS3KSIa43tf+Po4bm7z+7oVAgzrg6I12UWMftAh6zE=
Subject key identifier: 4E:06:3B:E9:7A:E1:15:4A:56:12:52:C8:0B:EF:2F:27:7B:72:D9:8B
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 0196507F6CFD88C78D5DFC50B5F59CEA8347
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: E3
Signing time: Sun 20 Apr 2025 00:00:50 +0000
Manifest this update: Sun 20 Apr 2025 00:00:50 +0000
Manifest next update: Mon 21 Apr 2025 00:00:50 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: a+ae4gL2i//6eWxZ8dULdovlBwBxr/hWhprYf//vghs=)
2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:6c:fd:88:c7:8d:5d:fc:50:b5:f5:9c:ea:83:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Apr 20 00:00:50 2025 GMT
Not After : Apr 21 00:00:50 2025 GMT
Subject: CN=4e063be97ae1154a561252c80bef2f277b72d98b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:f4:b4:44:69:ad:39:83:03:c5:3f:a7:26:
ab:d8:a0:74:68:59:bc:0a:fc:d6:12:b3:7e:70:e6:
4f:6c:b3:e9:f9:9d:ed:28:83:59:3b:b2:41:a1:23:
49:50:bf:6b:21:ad:d5:e6:27:84:1f:65:28:77:c8:
d2:32:be:d1:2d:23:50:c5:99:66:44:28:70:df:05:
84:8d:98:e5:5d:88:85:0f:9e:48:04:ff:49:c2:b9:
5c:23:56:f1:40:f1:b4:7b:a8:28:e7:e6:4e:f3:da:
1d:b5:53:f5:db:37:9b:27:cf:69:5f:8c:91:29:0c:
e4:8e:c4:e3:76:fb:bf:c1:48:db:b3:e4:27:40:89:
5b:b5:62:10:36:1d:6c:5a:e7:d7:31:61:57:5c:9a:
21:cf:27:79:0e:0c:b6:58:99:59:a8:cf:ac:a4:5d:
a9:85:f2:ec:76:2d:0e:4a:d7:9a:3e:d2:0d:9e:d1:
73:88:77:ab:70:b1:a9:c7:19:36:52:c7:48:16:c3:
cb:78:10:65:e6:c5:ed:95:de:52:db:33:18:fc:d3:
ad:28:37:98:99:c7:0b:4a:12:b3:ae:1d:5e:a2:13:
e4:f2:11:f7:6f:a4:5e:f5:5e:3e:f1:85:ff:42:f4:
62:f7:30:c6:41:23:e4:6c:4e:ec:f2:67:60:fa:0c:
cc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:06:3B:E9:7A:E1:15:4A:56:12:52:C8:0B:EF:2F:27:7B:72:D9:8B
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e7:48:f9:d5:bf:f3:43:aa:36:06:e4:10:e1:a0:9e:c2:d1:
02:c5:bd:59:84:ca:76:c0:3c:80:85:ee:e5:63:7d:9d:cc:0f:
9a:b3:2d:b6:00:b3:46:03:53:d6:26:a2:60:b4:c3:28:67:8f:
fe:3d:27:be:28:2e:62:e3:b9:70:7d:d4:99:1c:27:ba:5f:27:
75:c4:7e:43:59:bf:08:ec:fd:98:2e:a2:da:a8:23:84:e2:27:
b3:75:02:42:92:52:ee:0d:59:27:b1:cd:91:6d:50:59:9a:42:
c0:bb:9c:e2:7c:49:9a:f8:59:82:62:de:af:f4:79:57:cc:48:
7d:ff:27:6f:86:2b:2d:f8:99:c3:f7:ba:ba:77:04:e7:b3:ee:
71:a9:6f:a3:63:00:74:37:03:19:45:ec:37:c7:e6:2a:85:77:
39:5c:0f:a6:e7:be:c2:55:a3:6c:b2:05:5a:ae:58:f6:d8:39:
2a:f9:df:ab:64:00:e5:f1:12:d8:ee:13:fa:2a:14:0b:83:ab:
11:2c:1e:6c:45:dd:39:3b:bd:e6:18:ca:88:c1:81:35:ce:90:
78:c4:5a:c2:7c:81:8f:53:51:94:dd:9a:80:5e:3f:21:bd:fe:
41:32:58:33:24:08:99:80:82:72:18:f5:ad:ba:89:c7:a9:11:
19:0d:73:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:01:37 2025 by rpki-client