Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File: IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier: GYO1ZQszDXlyynSpoCQNB+50qvkPM8mM8ukw2+OzEGM=
Subject key identifier: 18:32:FE:70:B1:EE:09:C1:26:FF:5D:45:CC:DE:A3:3E:47:39:F7:77
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer: /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial: 01965838B9190E1EF1CEFB164E24B96829BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 12:00:34 +0000
Manifest this update: Mon 21 Apr 2025 12:00:34 +0000
Manifest next update: Tue 22 Apr 2025 12:00:34 +0000
Files and hashes: 1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: eMFgX18bQ/nmC77aaeaUMYpbKD2A/bCTz+Y6HlNdffQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:38:b9:19:0e:1e:f1:ce:fb:16:4e:24:b9:68:29:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
Validity
Not Before: Apr 21 12:00:34 2025 GMT
Not After : Apr 22 12:00:34 2025 GMT
Subject: CN=1832fe70b1ee09c126ff5d45ccdea33e4739f777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c4:5f:be:3a:64:2c:61:0a:0a:be:6d:9c:46:
af:ef:13:d0:9e:e2:0a:39:75:dc:51:c2:5d:72:8e:
16:01:b1:70:be:00:ec:5a:ee:f4:b0:2e:8f:2e:55:
22:51:43:b3:97:37:42:f5:8e:3a:14:7b:ef:40:f0:
9b:55:1a:69:d0:44:34:d3:da:c5:51:30:61:c6:84:
a1:3b:b0:13:8f:ab:9c:1a:a3:7d:d2:c8:05:03:e1:
1d:35:79:c1:2c:b9:96:a1:b2:9a:a5:82:97:75:d7:
d1:da:4f:8e:a1:47:bd:cc:19:98:57:5e:3f:a9:73:
ee:3e:8b:7b:69:aa:54:ac:d2:7a:89:db:4e:b3:95:
4c:2f:1f:68:61:0a:e2:60:3a:c3:c9:0c:50:c5:e7:
20:2d:03:53:7b:fe:23:90:f0:3c:7c:b4:de:d7:b6:
1a:ac:ec:db:b7:40:63:c4:10:fb:55:ea:31:bc:f5:
85:fc:07:d3:bb:97:b9:ec:79:1a:a0:42:53:16:48:
55:29:e3:d3:c0:ed:7c:e1:75:ec:d3:35:93:e9:d5:
f1:da:9e:b9:55:82:65:77:1c:28:b9:cf:99:19:19:
5e:c8:fb:5c:74:23:82:95:47:55:a1:7c:59:fa:1f:
40:ca:b1:0b:3a:86:a2:cd:0a:d8:0a:da:a5:9d:24:
8f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:32:FE:70:B1:EE:09:C1:26:FF:5D:45:CC:DE:A3:3E:47:39:F7:77
X509v3 Authority Key Identifier:
keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:66:71:f2:a4:9f:2d:eb:52:85:c5:5b:a5:db:25:a0:06:93:
c2:02:fb:23:f4:86:6c:08:12:52:a9:48:90:d8:20:66:bd:de:
f2:0b:7f:c3:ea:ac:7b:47:c9:ac:4d:d1:09:46:4d:55:c4:e1:
3e:5f:eb:06:0e:82:d8:a7:71:9e:72:ef:aa:6a:3f:00:29:0f:
be:2f:13:9d:57:d2:bb:d7:a9:2e:6d:99:3e:93:d1:f0:94:76:
d5:0b:8c:76:fa:2c:1a:6e:da:71:e0:bd:05:df:28:42:5a:15:
2e:5c:96:52:9e:5a:6b:dc:5f:3b:0f:ff:fb:04:1f:17:9d:f7:
45:51:36:7f:fc:1f:ba:e5:35:7e:63:d0:30:f1:72:e8:ed:7d:
8b:03:b5:93:82:ee:49:ff:18:6c:a5:86:a0:e6:4d:49:91:0e:
7a:98:06:52:14:7b:45:b0:b3:ed:b0:c0:0f:5b:64:c6:3b:a7:
da:9d:0b:9a:1d:5e:df:44:5d:e5:46:56:6e:93:d4:42:f3:19:
00:52:68:61:30:ae:87:4d:f1:78:e6:78:bb:e8:f9:93:67:81:
0d:3e:37:f5:bd:03:20:f3:da:e3:5d:46:fc:91:34:9c:38:eb:
b7:f3:f3:af:fd:bd:3a:81:d2:23:1a:79:a2:ae:9e:0d:85:41:
10:cd:2d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:21:05 2025 by rpki-client