Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: XBBH/ExhnDL/m8YbfJsAO6K8WN4TeXVXPSur8yrbzPc=
Subject key identifier: 84:12:25:23:90:FC:6C:94:6D:9F:C5:26:A0:8E:1D:42:70:41:49:6E
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 01968B13677CDEBFBF1455D8633184CDB9C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 10DC
Signing time: Thu 01 May 2025 09:00:26 +0000
Manifest this update: Thu 01 May 2025 09:00:26 +0000
Manifest next update: Fri 02 May 2025 09:00:26 +0000
Files and hashes: 1: KzxZqybvsz4qWRvLNMoGl_b-dg0.roa (hash: waO3ZFTQ9Kiow9t+yCx6WlAToF1IQKM9UgVqX7Ju9ms=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: AHJVI4CwhWWBys+L8rilGRN/wegYfQVaYWi1DfsMkgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:13:67:7c:de:bf:bf:14:55:d8:63:31:84:cd:b9:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: May 1 09:00:26 2025 GMT
Not After : May 2 09:00:26 2025 GMT
Subject: CN=8412252390fc6c946d9fc526a08e1d427041496e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d4:76:b1:55:b8:f6:a3:1a:a1:0d:2a:5e:dc:
05:19:c7:dc:ba:d7:13:86:53:d9:eb:a4:22:1a:cc:
fc:06:c6:70:c7:0a:8c:50:43:c0:cc:da:21:a9:bc:
24:45:31:5f:cc:1d:f7:0c:07:f8:9a:e0:2f:1a:44:
29:e9:87:75:62:a4:d1:97:9d:6e:67:15:1b:53:dc:
ac:39:ec:2e:3e:cc:e6:91:6f:f4:03:d7:27:6f:d6:
42:fe:6b:0b:fe:30:75:0d:b0:4d:a4:b4:12:47:72:
c1:32:44:5e:d7:82:25:5f:6d:96:a0:30:0d:bf:e3:
30:60:b2:b9:40:23:98:a0:cb:fe:1f:99:d3:ef:a6:
9d:56:82:bd:c7:7d:d2:ee:e4:ac:0d:99:db:b9:58:
15:da:56:d2:2e:4f:03:96:c3:4a:f8:02:e2:0e:7d:
15:b4:43:3a:5f:02:20:43:7d:ae:7e:db:72:61:a0:
a8:de:88:f6:55:96:ee:cd:70:6b:ea:4e:14:7e:49:
38:46:aa:d3:24:ae:a1:35:ab:fb:a5:85:0d:71:b0:
9d:25:18:22:72:73:48:60:04:54:29:57:93:8e:5a:
66:d7:fb:ac:95:42:f7:f3:8f:99:57:c0:48:3c:de:
02:d0:c0:be:9d:07:c9:d4:44:d3:bf:5b:f9:00:a2:
1b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:12:25:23:90:FC:6C:94:6D:9F:C5:26:A0:8E:1D:42:70:41:49:6E
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f1:93:ab:58:e0:31:bb:ed:48:df:51:b9:61:37:fa:3a:df:
40:a5:5e:cb:bb:fd:f4:7e:2f:dd:14:b1:3c:a8:09:b1:c5:29:
fc:ab:87:c5:0b:4c:79:0f:70:2c:92:4b:be:46:ee:74:a0:40:
5e:0c:0b:c6:63:81:e8:85:b9:01:e6:39:c3:37:b2:35:8c:84:
e8:1c:4b:4d:8a:51:8d:de:b4:d3:e1:f8:b1:37:95:dd:80:78:
13:26:99:c5:37:cb:e7:0b:d5:b4:68:3b:7b:85:83:70:1c:e7:
15:45:6d:86:f5:45:84:86:f3:ac:08:1f:29:78:85:d1:c0:e2:
90:8a:dd:f6:46:10:2f:df:cf:7d:6a:82:1e:2c:ff:5f:5c:1e:
d1:ba:fa:05:9a:c5:7e:ff:40:57:ec:04:e4:1d:4e:4e:b5:ae:
24:22:93:40:bf:c6:f6:7e:89:78:c6:2e:2c:ea:e4:2f:f3:84:
4e:de:0f:ce:ce:93:ff:98:c0:01:a7:ec:4d:04:a9:6a:39:69:
49:ff:ec:17:6b:e6:f8:24:e1:ed:3b:97:c9:d7:fb:2a:dd:f5:
33:d1:4f:e7:d7:1a:4d:26:25:21:d8:75:ed:db:9f:c4:43:63:
b2:37:26:71:d7:dd:a9:2e:3d:5e:86:10:cc:f0:d9:0b:2c:fe:
16:1d:9a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:05:15 2025 by rpki-client