Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
File: ihZhi3H_yA4cP0HtDfyJq16WP9I.mft (raw, json)
Hash identifier: KfM0b7y5Z1Zcf4OSgwWQ2Dk+dNgcqONF+1hKLq1nQRI=
Subject key identifier: 12:CB:B6:21:2B:C2:68:D5:A7:17:07:F0:14:19:D1:00:52:2F:50:99
Authority key identifier: 8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
Certificate issuer: /CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Certificate serial: 01965FF24F2803D0A99B8A1BB80060647001
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
Manifest number: 150A
Signing time: Wed 23 Apr 2025 00:00:37 +0000
Manifest this update: Wed 23 Apr 2025 00:00:37 +0000
Manifest next update: Thu 24 Apr 2025 00:00:37 +0000
Files and hashes: 1: ExfUqNEW3Lyq9Nl7Jq22WcfJ1rw.roa (hash: 6SjZfPEMGV4QZNr6XzSlmm+VNkfjjPfYSSMSKKIpL5E=)
2: ihZhi3H_yA4cP0HtDfyJq16WP9I.crl (hash: gwvQIu1C5f2AP/uzEe6UDIFHU2YUzhGguJDRPIJk5Ac=)
3: vuckuXbmedLIJWITtJ1gJzQY8X0.roa (hash: BujWwxtiu31OcVkERDwp6qXjCF/qZpedTzNgbY+R4ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:f2:4f:28:03:d0:a9:9b:8a:1b:b8:00:60:64:70:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Validity
Not Before: Apr 23 00:00:37 2025 GMT
Not After : Apr 24 00:00:37 2025 GMT
Subject: CN=12cbb6212bc268d5a71707f01419d100522f5099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:82:61:31:91:2c:7d:13:db:ff:d4:4d:4b:f9:
9c:6b:d9:21:b1:85:2c:84:c9:0e:24:82:8a:9e:19:
d3:36:80:6c:0f:f1:9b:4c:39:20:01:8d:73:c1:ab:
a8:24:c6:df:f8:6e:e8:f7:6f:3b:e5:98:72:a4:3c:
d9:e9:03:e7:6a:d9:7c:95:4a:94:9e:f9:52:0a:e5:
d1:9a:15:a3:ec:82:c1:15:b7:d7:8f:8e:4f:11:24:
61:3e:70:46:f6:9c:ad:15:2b:e9:78:b7:2a:89:de:
13:26:4c:dd:f2:aa:c2:c5:21:cf:54:17:54:ae:c3:
d0:72:e5:a5:af:45:4c:20:de:8c:2c:3b:db:9b:e7:
cd:f8:a9:e6:3f:7b:02:56:c8:08:a1:d9:c2:b5:e6:
ab:5f:e3:76:2f:b9:0c:01:66:6e:e1:d1:d1:3e:18:
7c:7e:40:64:72:24:f8:52:a7:32:ec:17:9c:47:5a:
ac:f9:48:63:14:70:45:9b:07:92:1c:69:ab:9a:3a:
21:e1:b8:6c:4d:e0:71:fa:5a:e7:cd:6a:35:be:77:
07:cf:b0:de:9f:f6:a8:c0:7e:75:fc:66:a5:6b:7a:
ee:65:44:26:96:7b:1f:dc:8d:0f:8e:c4:a6:39:1c:
f9:9e:8f:c8:df:61:c0:2b:30:ba:14:5b:7a:66:ce:
9b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CB:B6:21:2B:C2:68:D5:A7:17:07:F0:14:19:D1:00:52:2F:50:99
X509v3 Authority Key Identifier:
keyid:8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:8b:6b:c5:f0:0b:df:72:45:43:7f:f8:8f:e8:1b:30:b6:c9:
3e:6f:2e:99:de:e5:1f:c9:ad:22:e1:b7:29:cc:34:dd:b5:fb:
e0:bf:be:60:d6:7f:06:a2:3e:f0:b6:24:5a:56:ca:f9:1c:f1:
93:68:17:25:3c:d4:bc:26:c2:0c:f7:2a:2a:1a:c3:66:6c:b9:
c0:07:68:16:31:24:d2:26:2d:0a:d1:53:ed:a8:1d:41:82:d1:
e0:ca:35:ef:54:78:1e:53:8f:1a:e5:88:69:d0:86:d0:15:3f:
73:c6:47:ee:b7:aa:20:9b:26:93:18:02:c4:36:c6:12:0c:78:
29:b6:da:47:7d:8d:62:51:10:52:85:73:d4:a0:f8:5b:65:73:
a0:90:ab:b1:28:35:33:ea:65:d7:18:7b:44:b5:78:87:08:72:
66:b9:d0:fb:9f:df:ba:a0:5e:67:dd:c8:59:bb:76:ba:b7:8f:
fb:0b:01:92:fc:cc:ee:f7:49:c3:3a:11:b6:98:b7:df:d9:8a:
eb:39:d6:3b:9c:39:d8:99:12:5a:bf:f7:d4:f0:5b:f1:ab:f4:
65:c3:61:ba:bf:cf:64:0f:1f:b7:4c:14:e4:cf:49:55:fc:aa:
44:68:ab:15:69:bc:00:e3:c0:68:7b:c7:16:c6:a1:7a:d3:81:
86:1d:ee:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 07:06:31 2025 by rpki-client