Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json)
Hash identifier: QGt37GFfbHB7K41jqY5BBwlNPDi/4n1EFlMAos9X1kI=
Subject key identifier: 2E:AC:79:E1:13:D4:00:D6:19:C0:9B:69:52:52:AA:11:24:15:88:33
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 01957910DC2E4A1BDD8BE8634DBB0BF942C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
Manifest number: 148B
Signing time: Sun 09 Mar 2025 04:01:42 +0000
Manifest this update: Sun 09 Mar 2025 04:01:42 +0000
Manifest next update: Mon 10 Mar 2025 04:01:42 +0000
Files and hashes: 1: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: JjsnU27kY5lijBh/KWQasHTkF2k9qx85dnW4CtUNPw8=)
2: PnGxbbyenKRUkbRi2afvxfE-S9E.roa (hash: JW3Jf++XQ8LN1xPVRRNLBe2ZMK/kXqbkLdynsPQmUsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 04:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:10:dc:2e:4a:1b:dd:8b:e8:63:4d:bb:0b:f9:42:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Mar 9 04:01:42 2025 GMT
Not After : Mar 10 04:01:42 2025 GMT
Subject: CN=2eac79e113d400d619c09b695252aa1124158833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6d:17:6c:e5:6b:00:fd:6b:e5:a3:38:b0:a3:
3f:f6:7e:b1:12:af:df:4f:b6:4b:13:13:f7:0d:aa:
15:9d:5d:b1:f0:d7:0f:d3:c8:9a:0c:46:da:61:1e:
d4:62:31:17:60:c9:02:43:2a:a9:56:16:34:59:29:
e4:a0:d0:67:69:f7:d1:3e:27:5c:fd:53:fe:e3:3b:
53:a3:67:86:0a:72:60:c5:72:b3:70:87:69:01:dc:
00:8f:0b:ff:71:06:79:4d:cc:c7:cf:44:38:7c:aa:
be:d7:be:14:db:a7:1b:e5:a9:1d:cf:17:14:7d:8b:
2d:59:52:5a:65:70:e4:24:fa:ed:9d:b7:3e:b3:6c:
a5:f3:d5:9c:40:66:26:e3:10:4c:c0:ee:b0:45:cf:
47:b6:7d:5b:fd:33:1e:9e:48:56:65:d0:5e:b4:e7:
93:63:89:cf:06:42:0c:15:41:f4:b6:23:b2:ef:44:
ea:2d:b6:3b:4d:a6:0d:d6:77:39:a8:b7:0e:df:4c:
0b:4b:5e:bc:b1:f8:45:e4:fb:74:41:bb:e5:59:61:
f0:2c:1b:ba:ce:db:b8:58:17:ac:a0:51:24:7d:0c:
08:44:38:10:86:11:f9:ed:39:fb:ac:2e:73:5e:d2:
7b:38:e8:3c:ef:ef:d9:bf:2b:ae:6d:83:a2:21:a3:
90:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:AC:79:E1:13:D4:00:D6:19:C0:9B:69:52:52:AA:11:24:15:88:33
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:bb:22:80:91:6c:4f:6e:5e:fe:6b:30:6e:ce:a6:59:73:4e:
e7:24:1f:58:d0:fb:b5:6f:66:0b:84:59:53:ac:25:19:6a:c3:
29:b9:c6:84:18:79:93:ba:f3:31:12:9b:b7:d5:94:b7:7d:89:
81:88:35:4f:ec:28:6f:03:b1:11:92:b5:43:61:9b:06:2f:76:
9c:4e:4e:74:16:8e:b2:65:cc:2f:eb:c9:d7:5c:24:67:c8:7b:
85:5e:81:d7:18:55:66:34:13:f9:e0:79:3c:c4:94:39:c5:d7:
9e:91:6b:54:9f:c0:e6:5f:3f:be:8a:15:cb:fc:6d:1c:4a:3f:
10:eb:f5:d0:ca:ba:fb:50:cd:c8:64:58:cd:50:19:00:a4:13:
e8:e1:36:f2:b2:ba:75:ec:54:0a:9d:80:d5:15:23:5d:f3:5f:
50:26:41:37:60:86:76:02:f5:4e:76:f9:b3:bd:b7:3d:18:a3:
12:32:ef:5e:56:26:64:81:28:b4:e1:49:a2:65:05:b5:4a:43:
e0:d9:ca:cc:f3:2c:a8:7f:ce:46:eb:da:62:fa:88:15:5c:de:
2a:37:e7:53:b5:5e:f1:c3:bf:72:07:23:e8:f6:e5:6a:e8:9e:
9a:cf:b1:19:6f:d5:fc:07:c7:40:14:37:56:9a:49:eb:69:1a:
34:ca:9f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:43:07 2025 by rpki-client