Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: yN8FUNlewAVuY0UOUlgmDvQfzLjzQZlwnSV6sWFvDqQ=
Subject key identifier: 8D:FE:E2:0D:FF:A1:EB:D4:A1:88:45:D7:11:A7:9B:AF:49:25:60:EE
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 0196778CF937C10275812F6B36D2A5FF9E78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 0FE9
Signing time: Sun 27 Apr 2025 14:00:49 +0000
Manifest this update: Sun 27 Apr 2025 14:00:49 +0000
Manifest next update: Mon 28 Apr 2025 14:00:49 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: 55nNcqMs7iMBfJTYjrw1oeRr2dKlUnzA1ESOOuw369A=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:f9:37:c1:02:75:81:2f:6b:36:d2:a5:ff:9e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Apr 27 14:00:49 2025 GMT
Not After : Apr 28 14:00:49 2025 GMT
Subject: CN=8dfee20dffa1ebd4a18845d711a79baf492560ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7c:db:b5:36:cb:73:07:11:23:6e:8e:44:19:
7d:5e:73:da:de:0e:07:42:27:69:5d:d9:51:67:cd:
81:2d:d6:bb:44:13:3a:01:f1:ae:86:7e:10:55:62:
3c:80:a2:5f:c2:b0:19:ff:6e:fd:94:09:22:74:81:
51:65:bb:db:e6:b0:a8:fc:2d:60:c3:05:41:88:26:
a2:35:45:4e:ab:aa:91:a7:fc:eb:de:d8:a6:19:e6:
c7:d4:cd:a1:00:a8:eb:b9:c4:0d:df:d1:ea:ad:1f:
ae:f8:8b:d6:93:a4:a9:c0:fb:00:c8:48:bb:10:ee:
f0:33:e8:2e:45:be:b9:b5:f4:ac:59:9d:75:08:c7:
50:11:16:1b:2c:69:31:36:61:3a:ad:ea:87:c0:f3:
dd:4d:e2:14:80:a0:6a:3b:42:03:c3:fc:87:d9:2e:
6c:10:c8:2a:73:f2:61:5f:ca:07:90:4e:af:07:b7:
d9:b1:0a:fd:ef:9d:76:c4:f0:a5:cd:24:86:33:58:
86:d1:a6:09:7f:ff:6c:85:c2:1c:6c:e5:75:11:32:
cf:28:12:a1:23:ca:17:33:60:64:27:26:b2:d2:83:
9d:3a:33:21:97:16:dd:65:24:ed:84:39:83:90:a1:
7f:a4:04:27:f4:06:77:23:d9:29:78:a6:73:0d:7a:
f6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FE:E2:0D:FF:A1:EB:D4:A1:88:45:D7:11:A7:9B:AF:49:25:60:EE
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:e0:64:b0:69:8f:71:1a:07:76:d9:41:4c:1a:d7:6c:a2:0a:
cd:0b:d5:b1:20:4d:41:27:8f:06:4c:8c:c2:31:2e:cf:f7:3b:
31:06:f2:a6:de:e4:54:79:0d:c6:4d:17:1a:e0:0d:43:39:42:
20:ea:05:fd:fb:32:8e:f2:e9:86:29:7b:bb:1a:f2:4d:39:70:
7c:7a:34:e5:38:3c:34:8c:d0:43:2c:ba:2c:61:f7:2c:4d:e1:
a1:eb:7b:8e:71:8c:ed:9b:5a:49:82:06:be:6f:da:1f:8f:38:
3a:74:63:c7:bc:4c:31:04:2d:7a:b9:30:1c:4d:ef:a4:c2:e8:
06:09:53:d4:57:9f:91:c4:03:b3:98:0b:45:11:e4:99:e3:83:
9a:db:3e:25:ee:f7:15:a3:62:55:0e:f7:6c:94:04:a8:a0:26:
5b:a8:6a:bc:4a:d1:7d:b4:cb:9a:85:11:83:77:1f:01:8d:69:
29:86:dd:27:23:bb:ac:4c:d0:a3:ee:7d:02:a8:6f:f6:78:78:
4f:af:bf:02:28:74:14:fa:bf:95:d5:5f:ca:03:0b:f7:e5:9e:
af:04:fd:be:06:62:15:1a:da:20:6b:81:18:32:e6:33:1f:c2:
cb:7c:1e:95:41:7d:a6:84:15:15:32:1a:5f:c8:a6:69:6b:ae:
a0:ce:9e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:59:00 2025 by rpki-client