Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
File: i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft (raw, json)
Hash identifier: JB/sQstfIsXm6/niVlf5o3YSngz5nHItYdYXd4yJETw=
Subject key identifier: 0D:59:90:11:96:FB:F9:1A:64:03:2C:B8:D6:72:0C:10:04:24:87:E4
Authority key identifier: 8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
Certificate issuer: /CN=8bbb538fc4f8f1984100640dd8435766a6206723
Certificate serial: 019655A62CB39F03999CF1C7215DD2FADF5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
Manifest number: 1502
Signing time: Mon 21 Apr 2025 00:01:15 +0000
Manifest this update: Mon 21 Apr 2025 00:01:15 +0000
Manifest next update: Tue 22 Apr 2025 00:01:15 +0000
Files and hashes: 1: F-XmOCCi8zdRGEXsEW8GIj9dotE.roa (hash: aZqtC7YnlJ57aaBe7FRji3vyD3JPHZ6fm+Qh4aIyCFw=)
2: i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl (hash: hGv6epdyxYQ0NN0Tv2F+XVhFfmoLUegbX8KcbfdtuvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:2c:b3:9f:03:99:9c:f1:c7:21:5d:d2:fa:df:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbb538fc4f8f1984100640dd8435766a6206723
Validity
Not Before: Apr 21 00:01:15 2025 GMT
Not After : Apr 22 00:01:15 2025 GMT
Subject: CN=0d59901196fbf91a64032cb8d6720c10042487e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0c:d2:9c:5d:a3:5b:9d:65:fb:86:a9:67:71:
87:fd:ad:42:3a:ba:d0:a4:04:56:9b:ef:90:ca:f0:
92:93:a9:07:8f:5b:1e:57:4c:19:75:8a:12:0c:ce:
09:f9:2a:ae:1c:cf:0d:95:15:01:ba:34:1d:b0:07:
db:b4:93:8d:0a:44:4e:02:a4:2f:c8:6a:a1:4d:21:
54:c5:0f:1c:36:20:74:48:95:b6:fc:2b:cb:2e:50:
ef:a7:10:18:a6:33:61:d3:06:e5:8b:b2:32:0a:53:
8c:59:74:d7:e7:32:08:52:09:c7:a8:a8:15:24:e2:
6d:cc:bb:ec:65:bc:be:b2:6d:e6:a5:e5:73:04:26:
d5:cd:9c:36:28:8d:3e:cd:4f:3f:58:60:0b:79:60:
a7:70:16:ac:75:3b:f8:72:8f:2e:6f:2b:9a:d4:3f:
8c:77:f2:01:3c:78:f9:fd:2a:44:a1:41:58:88:1b:
4c:ff:51:27:3e:94:68:b5:86:7b:6b:20:62:31:e2:
ce:89:dd:73:21:50:36:f9:de:1d:af:bb:d0:d0:ff:
8c:06:51:ec:d5:fc:4c:25:ef:7b:62:37:3b:ed:f9:
b9:8b:c6:50:e6:96:e6:08:4d:e7:aa:12:ac:f2:bb:
7c:0f:d1:e7:18:e9:24:5e:8b:d7:3c:5d:69:70:61:
62:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:59:90:11:96:FB:F9:1A:64:03:2C:B8:D6:72:0C:10:04:24:87:E4
X509v3 Authority Key Identifier:
keyid:8B:BB:53:8F:C4:F8:F1:98:41:00:64:0D:D8:43:57:66:A6:20:67:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7tTj8T48ZhBAGQN2ENXZqYgZyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b45f21-3ee6-4712-98fc-b89840a74809/1/i7tTj8T48ZhBAGQN2ENXZqYgZyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:f9:1f:53:d1:e3:99:b6:99:c7:23:50:11:8e:e5:70:dc:7c:
ad:4d:05:41:93:91:78:53:25:54:22:e9:5c:bf:0a:0a:aa:d5:
f3:d6:21:0b:39:64:f2:8f:12:64:29:6e:32:35:62:9e:78:91:
3a:61:32:dc:ec:0d:ff:b5:41:1e:4e:06:fb:df:e2:09:6d:69:
59:96:81:5d:9f:fc:fb:5a:f1:ef:14:73:48:76:c8:7d:b1:84:
6d:29:d5:3a:95:97:e7:b4:2f:a4:e3:1b:38:c1:e4:df:51:0c:
4e:ea:0e:03:d7:d9:35:64:e5:99:6f:1b:17:ad:fb:7e:09:6f:
30:a4:c4:f9:37:34:ec:6f:9b:30:7e:da:67:0c:3b:d4:3f:8d:
dd:da:7c:29:f1:9c:f7:b6:37:93:81:e1:11:87:bd:70:36:6f:
70:9d:42:f3:54:6f:ad:33:4a:41:dd:85:78:fa:9d:7a:a4:3c:
7e:23:c8:8b:23:65:48:73:0d:d8:99:4b:da:a6:a8:3e:46:b8:
70:32:21:f7:74:7f:f2:1f:cb:36:70:36:1e:45:d9:e7:7a:80:
04:e1:08:30:51:df:8f:f4:1a:ec:30:d5:a1:f4:db:0c:22:77:
55:08:27:b3:b7:6e:cf:2b:1e:4e:d8:b3:ad:cb:ee:8b:c8:b3:
ad:9a:0e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:43:52 2025 by rpki-client