Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
File: i7i2EnIdTUwtB8v-LklemGoPAm0.mft (raw, json)
Hash identifier: R8TM+Vhe9d+RZU9FQfGntIP7R15k0GrlDzJfbVa2Ha0=
Subject key identifier: 95:11:87:16:1B:BE:F9:5A:37:F9:AC:3D:91:20:7A:69:CF:F4:14:62
Authority key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
Certificate issuer: /CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Certificate serial: 01958CCE37EBD3C33DC508D3DB051511C15E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
Manifest number: 0477
Signing time: Thu 13 Mar 2025 00:01:19 +0000
Manifest this update: Thu 13 Mar 2025 00:01:19 +0000
Manifest next update: Fri 14 Mar 2025 00:01:19 +0000
Files and hashes: 1: i2xjHboexoRTpg38Qi-okoPsUcQ.roa (hash: x9dOoFm67St5fPryA+wWNLVDwzCG4EBSO5jTeQtPIqE=)
2: i7i2EnIdTUwtB8v-LklemGoPAm0.crl (hash: NgJgPQ/4ooQ6aUhUorQ5+7DdRy3TkV9p/4q35EeUbsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:37:eb:d3:c3:3d:c5:08:d3:db:05:15:11:c1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Validity
Not Before: Mar 13 00:01:19 2025 GMT
Not After : Mar 14 00:01:19 2025 GMT
Subject: CN=951187161bbef95a37f9ac3d91207a69cff41462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:94:12:47:49:5e:f6:33:80:19:74:1b:2f:
99:c7:53:df:6d:08:77:c0:e5:71:44:4a:8a:9b:22:
7a:ad:de:27:ab:f2:f1:6e:86:fb:65:80:a2:7a:56:
77:be:59:8a:ba:29:bb:2d:61:0b:3c:a4:e2:22:11:
c3:67:09:51:d9:86:4e:3f:93:3b:dc:cb:3f:ac:01:
51:7b:d6:2f:d7:5b:ca:fe:5a:5f:c8:b6:00:93:c1:
b6:d0:52:ca:ee:cf:60:72:bd:5e:eb:ba:f9:a9:c9:
d1:a6:34:5e:7b:f8:b8:a2:63:70:4f:c4:3c:e0:1c:
60:31:12:0a:4a:63:0d:9d:36:bb:86:f5:09:f1:3e:
9b:69:7f:f5:11:56:e9:20:cc:01:c8:54:48:12:9d:
34:c1:ab:42:c3:0b:63:09:41:0a:28:75:a0:5e:0b:
f2:57:f3:d3:55:01:00:ea:54:6a:5d:9d:74:ec:05:
ba:0a:64:b3:db:ed:e2:24:40:d8:0d:f2:19:fd:ef:
04:b2:ec:60:1d:07:ab:16:de:5c:8c:ec:61:cf:40:
68:68:39:47:e8:22:de:8e:a9:5b:68:cb:e3:93:cb:
a0:30:47:d6:c6:59:9a:e2:ab:3b:cd:5d:05:51:3c:
f7:17:2e:6c:cd:0e:da:f1:aa:52:43:2d:d3:e2:39:
9d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:11:87:16:1B:BE:F9:5A:37:F9:AC:3D:91:20:7A:69:CF:F4:14:62
X509v3 Authority Key Identifier:
keyid:8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:b3:87:b1:fb:ee:78:ef:fb:92:db:1d:5d:2a:d6:e0:ea:25:
be:89:86:74:d9:70:09:a6:60:fa:98:6a:77:25:62:9f:23:a0:
6f:86:04:74:7a:ba:0e:7c:02:34:95:a8:a9:8a:90:dd:aa:35:
37:fc:79:28:49:32:c7:d3:01:05:6a:ca:cf:fa:82:e3:f5:47:
9a:89:17:3f:12:17:4e:3e:4d:8a:78:16:37:25:b5:3b:92:26:
cb:ca:95:9d:dd:70:8e:cd:31:67:c4:26:34:9a:98:f2:6d:1f:
be:2e:a1:e9:1f:07:88:0c:2a:1c:9c:59:c8:95:49:11:3b:90:
3b:49:e9:bc:78:cd:84:ec:63:41:83:76:18:08:b1:29:8e:da:
43:71:ca:49:57:54:a5:60:82:c4:dd:94:de:2c:05:e0:a7:9b:
7c:aa:a9:29:ee:a4:c3:57:2d:62:98:bd:f6:1c:dd:35:dc:86:
62:95:ba:aa:14:14:16:92:2d:0c:18:b1:37:20:b2:b8:cb:31:
89:35:e4:91:9f:49:c2:4a:1b:06:0c:3c:8b:c2:cb:fa:3f:d1:
7a:61:4c:fa:4c:ac:5c:e6:eb:9a:c5:95:1b:d7:89:0a:96:10:
21:79:00:f2:db:53:76:cf:67:bd:73:4c:14:1b:22:ac:ad:68:
99:96:1d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:20:49 2025 by rpki-client