Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier: bfnv+nEXCzpqlkHWWt3cOvo+G/9HlnZIDKMvwLR2ev4=
Subject key identifier: 78:0B:63:68:C7:7A:10:5B:EF:F9:9E:66:0F:D2:44:67:8F:A1:7F:82
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial: 01966028D8EB0472E11275151A9AA66B75F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number: 019B
Signing time: Wed 23 Apr 2025 01:00:11 +0000
Manifest this update: Wed 23 Apr 2025 01:00:11 +0000
Manifest next update: Thu 24 Apr 2025 01:00:11 +0000
Files and hashes: 1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: pgn1KzFa6wZvry5Rea++TaqfobTsnqPlQUhVfijY2CE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:60:28:d8:eb:04:72:e1:12:75:15:1a:9a:a6:6b:75:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
Validity
Not Before: Apr 23 01:00:11 2025 GMT
Not After : Apr 24 01:00:11 2025 GMT
Subject: CN=780b6368c77a105beff99e660fd244678fa17f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f0:cb:ca:90:24:0c:31:8d:2e:a5:0d:3f:c3:
5f:00:59:0a:a3:cf:34:7a:d2:37:1f:eb:7d:69:37:
c7:84:f2:2d:2c:0d:ca:a7:46:65:9f:bc:4f:3c:6d:
ad:0a:81:a0:90:cc:28:c2:fd:b8:a4:80:e2:cf:7d:
c3:9d:75:c1:d8:8c:4a:76:80:5c:2b:12:40:bf:25:
16:fb:37:68:8f:cf:1a:36:ee:d7:fa:ee:af:f2:d2:
ce:c0:57:dd:74:c5:6c:eb:c4:4d:e4:97:d5:96:6e:
72:9e:5e:62:3f:e0:8d:4f:7f:68:46:2f:a9:aa:7c:
e4:55:8e:b7:38:2f:b3:4f:86:20:ec:57:57:66:97:
99:09:21:70:4d:f0:7b:34:81:45:8f:5b:13:5f:cf:
ea:87:d9:b2:6d:71:62:c1:75:2b:a2:6a:53:f3:b6:
90:f6:07:e5:23:b3:35:e2:8f:16:00:99:90:41:eb:
12:d6:bf:b6:45:dd:e4:98:5f:7b:92:3e:a5:ba:83:
49:bd:f6:ad:89:62:7b:ea:bd:1f:de:03:8f:93:d4:
c4:81:34:e5:6b:81:e7:7e:92:82:a1:f3:18:49:7a:
82:46:dc:92:ec:c9:9a:54:66:60:8e:8e:5d:cb:ae:
17:72:16:f5:83:14:a9:f1:fe:08:db:b5:6b:f2:20:
05:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:0B:63:68:C7:7A:10:5B:EF:F9:9E:66:0F:D2:44:67:8F:A1:7F:82
X509v3 Authority Key Identifier:
keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d2:e0:0c:e9:45:e9:1e:a2:91:7f:ef:a5:07:c6:4f:ee:31:
ff:0d:c3:9a:41:c5:ad:8f:be:bd:18:81:49:4b:83:55:be:ab:
16:9a:e9:ea:d1:8c:3b:52:db:15:5e:64:28:18:b5:64:a5:9c:
78:9b:eb:d8:20:94:f1:5f:4b:21:19:69:df:7c:3a:16:97:db:
92:5f:14:ee:4e:a8:4d:20:cd:aa:eb:57:b8:5e:d4:6c:97:d4:
a7:ef:56:cd:61:11:0b:08:9f:a6:cf:32:69:8a:07:03:83:bc:
aa:f8:73:ab:f3:54:e4:2c:73:29:01:d3:5f:06:14:d9:35:f4:
e2:3e:f3:41:b7:ff:0c:d1:ff:b3:40:95:73:e5:a6:ed:3b:ff:
bb:9a:2e:79:da:87:c6:1c:3d:a9:41:76:06:da:2a:cf:c1:4d:
24:9c:12:4b:17:37:f9:51:a7:2b:45:08:6c:de:bb:31:a1:9f:
76:a9:54:6f:9d:4f:a6:1d:9e:ba:5e:1e:46:2b:a9:42:a6:51:
25:f8:8d:7f:cd:ee:ed:9e:65:b4:71:4d:69:3c:05:3f:64:a4:
e4:2a:f9:bd:ef:6e:a6:ff:aa:c9:9a:c0:aa:65:fa:cc:e3:c2:
1a:59:b3:37:01:37:16:a5:8c:8d:ea:76:81:a9:24:76:d5:52:
b7:24:f0:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:31:53 2025 by rpki-client