Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: yyGhqn3RaFddRYGV3z/to/mp6tE0K6oBa0Y+hRXMLeE=
Subject key identifier: CD:C5:87:1B:56:F0:28:6A:EF:4D:99:5C:B4:A6:93:B4:24:04:5B:7D
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 0196767AADAA1B0B9FB2F20F77711119CB7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 11B0
Signing time: Sun 27 Apr 2025 09:01:13 +0000
Manifest this update: Sun 27 Apr 2025 09:01:13 +0000
Manifest next update: Mon 28 Apr 2025 09:01:13 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: MphwmohS9AYjWJWojsisgq3/mXewtq6Sa1DAu9y+VKQ=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:ad:aa:1b:0b:9f:b2:f2:0f:77:71:11:19:cb:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Apr 27 09:01:13 2025 GMT
Not After : Apr 28 09:01:13 2025 GMT
Subject: CN=cdc5871b56f0286aef4d995cb4a693b424045b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b0:6f:87:f8:95:67:3c:b1:1c:51:55:63:1d:
d1:73:49:df:c6:1f:74:a1:c4:b4:24:4c:80:04:6b:
f0:b2:bd:e8:ee:70:2e:4a:88:9a:dd:30:7d:41:66:
af:4e:82:3d:57:81:59:75:03:10:cc:87:07:89:c5:
5b:9f:19:25:d0:64:ee:e9:6c:03:9e:84:40:76:41:
2b:09:7f:7c:9d:00:82:ed:41:8e:00:5f:c3:d5:b0:
e1:dd:2e:29:f7:49:f0:95:61:9c:de:e5:09:61:01:
58:e6:c9:06:7f:b1:3c:5f:6d:d7:58:54:3c:0a:20:
a7:63:40:b2:e1:bc:db:d8:71:3d:41:9c:99:d4:3e:
af:65:c2:3f:df:9c:95:8b:b7:ee:b7:71:de:f1:21:
61:d8:a7:0f:00:3e:6f:50:56:ff:45:7e:55:28:92:
e9:d8:cb:c6:cc:2e:1a:50:95:6c:81:38:d8:6b:7e:
0e:18:55:74:05:ec:a2:6d:25:3a:21:a1:7f:d4:e9:
4e:8a:dd:5d:74:ed:04:d6:85:70:33:69:09:27:80:
f3:04:10:f5:8d:2b:35:36:ed:8d:fb:a4:bd:33:b1:
dd:85:58:5d:72:98:34:f0:de:8e:25:92:13:52:a5:
a0:e1:7c:47:da:32:13:13:c4:0c:75:2c:ef:64:7c:
2e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C5:87:1B:56:F0:28:6A:EF:4D:99:5C:B4:A6:93:B4:24:04:5B:7D
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:2a:b3:a8:3b:fc:cf:3e:b9:7f:a5:a8:c7:56:a0:bf:88:90:
b7:70:32:7e:b7:93:f3:5d:25:2d:e5:b5:e5:2d:3f:c6:0a:4a:
da:fb:85:65:d1:26:5c:80:4c:6b:d0:b0:b7:63:83:e6:1e:63:
ac:9c:aa:eb:c6:a1:9e:35:fa:27:3e:d6:06:66:03:36:d7:ba:
15:02:45:33:ca:d8:1a:6b:e0:20:93:43:f4:24:f7:e4:70:d9:
49:c1:57:fd:09:a9:f8:f3:f0:94:89:54:08:96:43:e6:b3:cb:
1a:ac:e6:62:5b:3a:80:1e:f4:4b:1f:c8:cd:45:fd:ba:a2:01:
f1:90:67:9f:50:75:d0:e6:af:f6:66:44:a9:74:03:b6:e1:77:
84:f0:bf:82:ea:07:c4:fc:a5:ca:8a:51:cf:dd:c3:38:48:1b:
31:23:52:cf:16:36:7c:c9:de:d5:2e:82:99:8f:c3:b7:1a:11:
0a:ce:4c:15:3b:f7:1b:8f:47:3d:b5:c0:c5:10:80:8a:6b:18:
af:46:b9:24:d9:8c:c9:1b:8c:76:49:92:65:5d:9b:20:9f:8f:
db:9b:f6:6e:c6:2a:b6:ae:95:3a:c3:b7:0f:c0:12:84:db:55:
b1:99:7d:04:d2:cc:a0:c8:c8:30:4f:9e:9f:79:35:b2:58:fe:
c9:f9:df:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:30:00 2025 by rpki-client