Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: 0i1E/WZFHn+PjpSIdIANmCRSeJuV6VTqhJp576oyxS4=
Subject key identifier: 2F:D2:15:EE:49:EB:B7:18:5B:B0:02:86:EB:C6:5B:FD:86:53:5C:7B
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 01967642EDD4C8E6B541F0494C08025518AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 0F9C
Signing time: Sun 27 Apr 2025 08:00:19 +0000
Manifest this update: Sun 27 Apr 2025 08:00:19 +0000
Manifest next update: Mon 28 Apr 2025 08:00:19 +0000
Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: TqRKXPBUawctfrwVPQqzgFq4dVP6E5aYdE1JR3gKidQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:42:ed:d4:c8:e6:b5:41:f0:49:4c:08:02:55:18:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Apr 27 08:00:19 2025 GMT
Not After : Apr 28 08:00:19 2025 GMT
Subject: CN=2fd215ee49ebb7185bb00286ebc65bfd86535c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:30:af:7b:30:5c:1f:6d:13:e2:87:20:1a:7a:
0a:91:55:dd:86:07:fd:d5:30:6f:89:9c:48:0d:74:
26:fd:a6:56:12:cc:1e:e1:c0:39:a6:6f:07:0e:b6:
ea:30:6e:85:89:08:a4:e6:a6:55:5f:b3:2b:a8:8d:
d0:1d:b7:32:e7:ba:32:b8:d2:06:ea:70:dd:0f:55:
89:2e:3d:17:56:3a:d6:db:bf:a6:b1:b8:0a:21:2d:
2b:d1:e0:01:91:47:f6:03:96:c9:78:a4:fa:a4:9e:
e6:76:65:09:f5:d0:6e:bb:7b:e6:91:4f:df:ab:6c:
2b:27:36:ac:42:b0:a6:d1:9c:17:08:c8:ea:bb:9c:
30:2d:98:b8:19:e8:36:f1:b4:64:b6:3e:05:e3:6d:
02:12:4e:fa:c7:29:df:ab:ee:2d:d4:85:5b:c2:6b:
34:d1:32:b8:cf:0f:22:08:be:bc:ae:91:76:c4:1d:
69:cd:d8:a6:bd:aa:ff:45:73:49:f0:b1:1b:6d:00:
33:05:66:22:01:07:88:78:43:0d:c3:1d:29:5d:c2:
21:2c:b3:d4:75:d4:ed:2b:57:cb:84:a2:20:0a:ac:
27:cb:54:47:f5:85:f5:eb:3b:e2:17:ba:e6:61:76:
9a:08:ed:79:46:34:68:f9:11:7b:32:ee:74:c1:04:
0a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D2:15:EE:49:EB:B7:18:5B:B0:02:86:EB:C6:5B:FD:86:53:5C:7B
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:32:e8:34:6b:22:a9:a1:47:e7:94:a3:70:73:03:52:ba:f3:
85:c4:40:9d:49:09:bf:90:a9:67:d7:4c:25:2e:17:a9:34:d7:
fb:8c:db:f0:8e:a6:3c:11:6c:a7:6b:c6:5b:df:3a:0d:1e:5c:
25:02:48:42:d3:5f:76:71:4d:98:d9:4a:8d:3b:6b:31:35:34:
71:7e:d2:c3:f9:c4:d3:7b:77:e0:5b:41:db:df:2b:e8:df:e9:
8f:f4:87:e5:c7:d0:05:fc:ed:c8:7f:39:18:ae:04:e0:d9:08:
d4:91:05:4a:78:27:be:79:f1:50:4f:60:62:b4:54:87:e9:ed:
cd:14:06:7d:53:0a:83:be:22:58:8c:80:41:48:c6:e8:65:4d:
9d:85:4f:0c:c0:9e:83:34:49:26:b9:67:56:e7:e3:f2:f6:eb:
08:9e:25:a6:57:1e:22:f9:d1:5a:d0:37:80:19:b7:ed:f7:32:
62:6f:0f:42:57:e8:89:02:3d:5d:e8:5c:dc:67:21:be:63:93:
c9:ee:f8:7a:a1:b5:8e:88:db:10:e4:b4:0c:7d:f2:09:97:0a:
80:cd:a1:cf:62:21:9c:37:48:e9:61:78:8e:74:60:b6:90:dd:
d8:2f:e9:a4:0c:80:91:a1:56:ba:c9:24:a6:89:81:fb:9d:aa:
0b:fc:90:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:41:16 2025 by rpki-client