Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
File: I9NN09IR5cLqe9L1J6E-HploIOw.mft (raw, json)
Hash identifier: lUhJo/Ckv6+Rx6f6bnKMN5Exbi0TQ0TUEaoy68x4Jn4=
Subject key identifier: 2C:22:3C:18:C8:96:A5:29:58:D6:66:05:0C:48:00:A7:9D:24:32:64
Authority key identifier: 23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
Certificate issuer: /CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Certificate serial: 0196553755DD392A15C00EB36F449F68D977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
Manifest number: 0EF8
Signing time: Sun 20 Apr 2025 22:00:11 +0000
Manifest this update: Sun 20 Apr 2025 22:00:11 +0000
Manifest next update: Mon 21 Apr 2025 22:00:11 +0000
Files and hashes: 1: I9NN09IR5cLqe9L1J6E-HploIOw.crl (hash: kxDePms5e18yfNeHBF+AZSaJS2ocPintYjSL/0hfVuA=)
2: LposyqjV73-zT4I-NkDoALIwk_k.roa (hash: OHnWiOPJ0+vl8RYqLw+3oMseEcMGYzbghowhWqyDjck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:55:dd:39:2a:15:c0:0e:b3:6f:44:9f:68:d9:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Validity
Not Before: Apr 20 22:00:11 2025 GMT
Not After : Apr 21 22:00:11 2025 GMT
Subject: CN=2c223c18c896a52958d666050c4800a79d243264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:92:06:42:e1:51:a8:1e:ce:4f:b1:d0:7b:57:
25:0a:32:3d:6e:3b:fe:ef:8f:a0:51:ca:32:71:2b:
2e:da:4f:db:4e:82:81:e3:c4:78:30:e9:81:5d:1b:
74:a7:77:a9:e0:0b:67:da:cb:00:81:35:52:6a:0f:
ec:ea:b2:ca:2e:66:07:31:3c:da:14:b2:2b:af:23:
ab:49:6c:52:fe:12:0d:7c:20:4e:fe:c8:1f:69:14:
69:ef:9f:25:85:90:fc:8d:2b:0b:c5:e7:ed:5b:9c:
a8:54:37:96:cd:ee:2d:c1:0a:5e:80:d6:99:f2:4b:
f8:68:51:f3:e4:de:e0:61:5e:7b:af:6e:01:ce:a4:
57:2f:86:04:8b:fc:b5:ab:0d:fd:a5:fc:c6:27:26:
01:b9:7c:2f:a4:52:7b:ad:e8:09:b4:b3:02:99:c5:
a1:0a:9a:e6:08:61:f0:59:34:7b:3d:3b:cb:27:bf:
d2:7d:53:f5:35:c8:cc:a3:c4:99:59:ec:78:a8:ea:
cd:d8:c6:fd:be:07:c9:1d:9a:ca:4d:3c:7e:d7:2e:
e3:58:95:1d:04:7a:78:d3:be:9a:46:bf:b5:47:06:
92:94:84:7f:67:bb:9b:05:95:5b:ad:93:31:3d:0a:
61:36:4a:44:fc:24:9e:72:e8:06:2e:4b:7a:91:bc:
80:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:22:3C:18:C8:96:A5:29:58:D6:66:05:0C:48:00:A7:9D:24:32:64
X509v3 Authority Key Identifier:
keyid:23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:38:73:ad:1b:81:5b:98:b7:32:58:a9:59:05:29:b3:5a:fa:
e6:d7:7d:84:e2:01:8e:2e:d1:68:11:3f:87:c0:f9:a6:77:d8:
45:a5:49:da:6f:e3:c4:9d:f5:b0:a3:46:60:29:5b:58:1e:da:
1b:91:2d:e5:57:82:c3:d1:66:0b:60:1b:ad:69:3d:90:7a:a0:
09:5b:b7:e8:8b:ed:32:24:7c:3b:71:60:2b:9a:ec:72:28:a6:
d8:4d:3f:ba:16:b7:45:8d:4d:cc:ec:03:78:eb:6c:6b:af:64:
96:2b:78:22:98:89:e6:c0:50:f0:c1:44:ee:d0:02:cd:af:f5:
7f:77:72:f6:a2:61:d1:82:a6:b8:59:3a:b0:f0:7e:00:63:55:
e3:3f:e2:cb:33:db:c6:6e:b8:15:48:a2:15:73:f4:b2:29:ff:
a8:c0:b0:1e:4b:51:a1:4a:f3:71:62:b8:9d:03:eb:5a:b7:83:
e8:06:8d:c1:56:9b:10:c3:c7:fc:64:5e:73:05:a0:2c:67:c1:
1d:ac:61:3d:3f:90:71:25:09:88:10:f8:28:04:78:a6:d2:71:
6e:57:01:fa:4b:26:3c:e7:2d:d2:04:ca:52:44:58:98:3f:ea:
91:5e:75:df:e2:e4:24:c1:95:df:16:72:62:09:ce:7f:bc:f9:
10:04:f3:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:29:46 2025 by rpki-client