Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: gs7JvCmBCpe5rm60vP7DoaQagLBfF9a3r//l1NBy3dQ=
Subject key identifier: B2:E1:5B:7E:6F:82:BD:FE:D3:9F:F3:BC:ED:5B:4B:3D:D8:3D:A2:BC
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 01968BB8ACB93AE08F22E23C7F038B13E768
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 098B
Signing time: Thu 01 May 2025 12:00:57 +0000
Manifest this update: Thu 01 May 2025 12:00:57 +0000
Manifest next update: Fri 02 May 2025 12:00:57 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: tM5iK6l2IXPUgubWXmZcCu9GZQ0oYcNfx7E3obyrpfc=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:b8:ac:b9:3a:e0:8f:22:e2:3c:7f:03:8b:13:e7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: May 1 12:00:57 2025 GMT
Not After : May 2 12:00:57 2025 GMT
Subject: CN=b2e15b7e6f82bdfed39ff3bced5b4b3dd83da2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:91:e5:bb:4a:6a:36:5f:89:09:31:36:40:11:
1f:1e:78:78:c1:80:13:b4:1b:eb:2b:bc:e8:5e:35:
1a:b2:cd:0a:ee:33:49:54:9a:9b:31:cc:53:57:75:
e3:ce:10:95:03:67:84:9e:9a:07:ee:ec:67:2e:ca:
81:e7:17:33:41:e5:24:3e:f6:67:82:8d:29:9f:29:
ce:4c:b4:cf:ae:9a:01:76:c6:b2:91:56:d4:f7:6d:
f8:93:75:61:4f:8e:85:21:53:85:a2:79:5a:7c:e2:
7c:c3:93:5e:d3:6f:cc:6e:6b:66:b2:cc:73:6f:a9:
79:8c:b3:53:eb:5e:e6:b6:92:4b:aa:cd:03:11:12:
8a:fa:d2:4c:1b:07:81:67:27:f2:73:af:45:4c:88:
af:0a:de:41:a5:c4:04:8d:40:a6:0f:46:a2:9f:ed:
ef:a2:81:ae:68:9f:1e:6f:7e:fa:28:4a:6b:2f:a0:
89:bc:d6:51:db:c4:bc:bb:e5:fb:b4:7e:d3:fc:60:
6d:d7:ec:bf:ca:34:53:92:a2:2c:92:b3:61:34:e6:
5d:26:26:5f:5a:72:da:26:fb:5a:1a:74:5a:fb:ff:
89:a5:05:36:57:6b:f1:6a:96:3c:8e:b5:b7:1b:00:
e8:3d:f3:51:d4:bb:e1:6a:3f:02:59:b5:4f:ac:fa:
e4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E1:5B:7E:6F:82:BD:FE:D3:9F:F3:BC:ED:5B:4B:3D:D8:3D:A2:BC
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c7:57:72:5d:96:d1:23:70:e0:00:8a:d5:9f:b4:25:b9:e1:
d7:55:0c:21:93:d9:76:4d:a7:84:f8:8a:b7:cd:12:6d:59:c3:
d2:a9:48:2b:34:c2:1a:55:6d:f0:74:f5:d8:32:53:c4:bb:83:
26:9d:67:22:86:a6:23:3f:19:f7:56:bc:61:ba:8a:19:6b:25:
46:4c:71:1d:c5:d6:17:74:19:10:e3:53:1b:de:3e:1a:69:bc:
1d:8a:8d:29:68:de:69:33:91:ed:a8:38:4e:13:41:b0:fb:41:
68:b8:69:bd:d8:a4:68:15:2c:23:d7:5d:e0:81:64:be:1d:36:
df:b5:df:20:ef:b4:5f:b2:ba:41:1c:49:e8:c3:d8:df:da:17:
83:19:76:2a:72:d3:c0:c2:78:30:8e:79:c1:4e:94:80:75:93:
47:8a:d2:c3:33:92:68:4f:68:eb:3e:0a:27:3a:cc:a4:98:b5:
0c:2d:56:7c:2f:a0:29:88:93:ef:61:c3:63:81:7e:5f:34:46:
87:1b:d7:f1:7c:de:01:e7:ac:bf:15:1f:f7:6f:83:37:68:ea:
af:da:96:c4:8c:9d:d8:93:7e:39:61:19:e7:89:c8:31:97:8f:
14:0c:0b:aa:2f:3c:47:f0:b5:0a:5a:c5:63:0c:65:5b:1b:ca:
e6:39:d4:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 16:58:48 2025 by rpki-client