Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
File: IqyN_06Z0-IomvY7FdVdJFDIQsM.mft (raw, json)
Hash identifier: s32PZh2Qje2Ks8A+mIk4rkLOmZdnU0dRPtbJ+j1dl00=
Subject key identifier: 4B:33:09:72:09:8D:5C:DB:50:C8:2E:F8:34:AC:07:97:0D:B3:3E:E9
Authority key identifier: 22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
Certificate issuer: /CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Certificate serial: 019676B0FA484E56BD112E5FC37D8F873167
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
Manifest number: 0430
Signing time: Sun 27 Apr 2025 10:00:31 +0000
Manifest this update: Sun 27 Apr 2025 10:00:31 +0000
Manifest next update: Mon 28 Apr 2025 10:00:31 +0000
Files and hashes: 1: 1YFZUWeFsFFhNH6pH-z6oTf7e1M.roa (hash: N3xo7g5jGJQoS/qFHbtXSlXVpbFrX6/YoQPrJBEqRCc=)
2: IqyN_06Z0-IomvY7FdVdJFDIQsM.crl (hash: gqOhS0AX8acaaSUbUsNX0W+PxuQOAhijgMKPt7yfGms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:fa:48:4e:56:bd:11:2e:5f:c3:7d:8f:87:31:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Validity
Not Before: Apr 27 10:00:31 2025 GMT
Not After : Apr 28 10:00:31 2025 GMT
Subject: CN=4b330972098d5cdb50c82ef834ac07970db33ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:29:f7:38:df:f4:89:1c:25:7b:f0:03:13:0b:
3a:26:6d:72:9a:48:ea:0a:32:17:f8:e2:fa:39:68:
f5:2c:52:40:a6:78:c6:63:4c:b6:c3:7a:42:72:4d:
40:1c:09:b6:f1:6a:8c:72:7a:21:cd:9c:e8:97:64:
80:0e:df:02:a9:d4:d2:bb:a0:f9:34:c8:a3:c8:c0:
2a:51:58:a1:44:c7:29:c6:03:99:5c:4a:ca:d1:f9:
ee:d3:88:de:2c:8f:61:cc:67:10:5f:8a:b3:f8:e7:
c5:1d:1f:ac:91:b5:9e:82:be:09:ae:4d:0a:81:f0:
1c:7f:f9:35:e6:f2:f9:f0:24:ea:01:fd:8e:10:c6:
58:5b:87:b2:59:c3:bc:42:63:8e:22:42:fe:d1:50:
46:42:2f:3e:e6:56:3b:1d:26:a6:f9:ee:98:33:6b:
e1:ca:bc:59:dc:41:4d:b2:62:f5:85:3e:95:9e:64:
67:f2:6d:d2:55:9c:46:2d:90:16:a2:e2:93:71:7d:
1c:dd:9c:fd:25:ea:34:90:f7:11:13:6c:08:14:5e:
40:0e:f4:7f:43:1c:f5:e1:2d:d8:ad:89:66:cc:5e:
c4:28:14:e6:fd:93:8d:dd:90:5a:53:a4:de:a8:59:
62:d5:35:38:2f:7c:6a:14:04:78:3a:d1:a6:9a:5b:
45:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:33:09:72:09:8D:5C:DB:50:C8:2E:F8:34:AC:07:97:0D:B3:3E:E9
X509v3 Authority Key Identifier:
keyid:22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d1:9c:01:61:95:69:9d:74:9f:f5:e6:6c:7d:8b:fa:92:fc:
a6:3a:ea:8e:e8:3e:5f:17:66:a6:1d:8b:41:53:05:79:44:9e:
9a:21:f8:e9:c8:d7:9a:f8:ff:5a:8b:98:8d:cd:c3:3e:e3:73:
18:55:fd:45:4e:75:66:0a:fe:96:e4:0a:cd:66:16:1e:4b:fe:
70:73:22:b4:a3:e1:38:25:0d:4a:c6:03:d7:0a:0e:5c:a9:0c:
1b:2e:4b:da:d4:65:b6:af:e8:1e:77:6e:23:96:a7:c9:49:9c:
f2:8d:a1:ed:9f:84:75:98:bb:64:f6:0b:8e:d8:b5:14:6b:32:
74:3a:66:b9:50:db:34:fb:c2:fe:2b:a7:c7:4f:0a:8b:6e:56:
95:73:c2:c5:46:d0:9e:ea:55:34:87:0c:b8:a4:4c:c2:94:60:
d6:2f:0d:55:9d:da:99:3f:6a:04:e8:90:7f:76:00:ed:f6:11:
4d:9b:6e:ea:eb:bd:5f:7f:90:c2:35:ea:58:21:cd:4b:9c:2e:
f0:06:03:7b:73:97:a9:c7:9f:75:90:a4:34:1a:b3:5c:a7:df:
ff:9c:8e:27:f2:a9:5c:f4:c8:8c:ed:81:b3:6c:07:fc:68:39:
bf:ad:53:b1:2c:ff:a9:d9:8f:1d:c9:1a:8a:b8:92:d2:23:3a:
5a:24:8b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:31:25 2025 by rpki-client