Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: R5uNFIEBFJL/XrQ36SYnvDG4cnlXT98rCSTjGvrI0tU=
Subject key identifier: 41:3D:6E:D1:4F:F6:60:2E:CD:6A:B9:5D:1C:6B:5B:E3:9F:AC:7E:A7
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 0196759E58ADC3FD81A58B1ACFF8F2DD9B23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 14
Signing time: Sun 27 Apr 2025 05:00:33 +0000
Manifest this update: Sun 27 Apr 2025 05:00:33 +0000
Manifest next update: Mon 28 Apr 2025 05:00:33 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: be8fV7LhoCARbS+vOiLeQR8U3Z9BzC2zimEJheA77Uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:58:ad:c3:fd:81:a5:8b:1a:cf:f8:f2:dd:9b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Apr 27 05:00:33 2025 GMT
Not After : Apr 28 05:00:33 2025 GMT
Subject: CN=413d6ed14ff6602ecd6ab95d1c6b5be39fac7ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4e:a4:0c:cf:eb:82:62:60:94:90:28:44:38:
61:df:c6:15:c8:f0:34:6e:a0:c9:a4:cc:c3:0f:09:
4a:f6:86:67:3e:43:85:34:33:a2:fc:94:5d:d4:9c:
dd:f6:43:ee:76:2e:7c:a5:8b:ea:8a:4f:f3:bf:b9:
92:7d:34:d9:10:6d:c9:59:01:f7:1f:bc:52:40:ec:
1b:ff:50:00:2f:ba:40:1f:75:b9:99:d6:42:05:ab:
ac:6e:d1:bf:b4:4e:2d:09:d0:34:d5:02:ce:94:c2:
b2:af:c9:bd:45:a1:72:f1:62:ed:81:ae:b5:7f:e4:
58:74:06:fe:62:b8:b5:f9:29:51:d7:30:a8:52:c2:
c5:c9:ad:fd:72:14:aa:af:9f:2e:eb:e7:b2:0d:df:
e8:75:71:41:ff:0d:93:bd:7f:db:dc:66:f5:17:50:
75:20:00:a5:38:44:bb:59:62:06:ab:f7:91:60:fe:
6a:56:1b:59:ab:d0:66:70:d4:38:c8:04:e1:de:26:
5d:1d:1a:2d:97:17:ff:97:c3:fa:68:e8:e6:7e:7d:
ab:a9:79:8c:a2:9c:a6:b3:2c:f9:ac:c4:8b:19:74:
c1:6c:4c:c7:61:49:b4:0a:7b:da:e4:4c:d0:a7:66:
12:4b:a3:b3:1f:b9:a0:41:64:11:b6:cd:8a:8f:3b:
5f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3D:6E:D1:4F:F6:60:2E:CD:6A:B9:5D:1C:6B:5B:E3:9F:AC:7E:A7
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c9:53:5a:f2:e6:a2:52:b1:0d:1a:10:03:44:af:12:fd:69:
d8:0f:b5:3e:1d:0f:2c:04:5b:47:bb:4a:85:2e:1d:78:c7:52:
c0:8f:f1:86:e0:b1:8d:54:a4:e1:45:b6:eb:8a:ab:78:fb:4a:
06:3c:52:30:c1:59:8a:d6:4f:37:05:35:fa:2c:88:6a:26:9a:
60:27:70:11:46:88:c6:c2:11:b3:75:73:ef:00:f0:ef:00:b8:
9b:50:30:22:5a:ca:21:78:9b:1e:56:a0:46:c0:c2:e7:26:e4:
49:0c:14:e3:1c:d6:e8:72:ba:5a:7b:b7:e5:38:64:c3:17:d3:
a9:2f:e4:7f:aa:61:27:84:06:5a:5e:c1:c9:79:2a:94:1d:97:
ed:09:b5:b2:b7:e7:74:c5:c3:cc:0c:b3:a5:73:1e:71:9a:81:
b6:d6:42:04:e4:65:e2:6c:53:06:bc:7f:8d:9d:9c:f2:d0:f4:
58:e8:b4:f1:5d:93:c9:e9:71:fb:74:d5:b7:52:73:5d:69:90:
df:92:4d:d6:c7:6e:61:16:ad:36:9b:ef:1e:ae:81:55:cd:b6:
04:16:38:91:f3:d2:d8:bf:b4:bc:cc:ea:df:bd:cd:99:0e:23:
0c:ab:08:dc:92:06:90:42:53:a7:ca:c1:5f:bb:3e:f3:15:0b:
e6:18:49:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:03:58 2025 by rpki-client