Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: oXGZ2aEBcnUyHja1GgDeE5poSmuC97ZR1ZvUUySivMA=
Subject key identifier: 1F:E4:6B:C2:14:37:92:CE:56:AF:23:BA:5D:95:81:73:69:9B:B0:6F
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 01967DC672FB75C34575CCD532E9495D9F60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1512
Signing time: Mon 28 Apr 2025 19:01:19 +0000
Manifest this update: Mon 28 Apr 2025 19:01:19 +0000
Manifest next update: Tue 29 Apr 2025 19:01:19 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: MUmEHxIidu8jphLopVSvd37pJlg7oruT8zFkMrfSIQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c6:72:fb:75:c3:45:75:cc:d5:32:e9:49:5d:9f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Apr 28 19:01:19 2025 GMT
Not After : Apr 29 19:01:19 2025 GMT
Subject: CN=1fe46bc2143792ce56af23ba5d958173699bb06f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:55:30:cf:a6:03:c0:8a:51:df:bc:f3:6a:1c:
6b:ae:39:1f:48:8c:2d:f2:7d:8d:ba:c6:e2:4e:34:
cf:f7:0c:6c:39:53:09:fd:06:84:8f:49:aa:51:5a:
14:a9:bb:36:2c:53:e1:28:3a:e8:7e:ed:fc:2a:fb:
11:c5:b1:f8:ff:70:46:93:e7:b8:c2:9e:e6:ac:cb:
3d:44:c0:3a:1c:87:6d:a9:ec:66:04:3c:7d:b8:48:
7b:8b:f5:bf:e2:c2:2a:fa:1c:2e:01:8d:e5:c3:43:
9c:6d:a0:46:3d:c6:54:81:29:2b:9d:e0:d7:c2:46:
16:98:46:e2:47:3e:9b:0c:06:0c:4d:e1:f8:dd:b2:
86:6c:f1:61:21:c4:01:0a:75:5e:74:04:a5:71:a1:
8b:1a:08:97:cc:9e:97:e4:ee:24:7f:31:1f:09:cb:
36:79:72:02:9b:e7:5a:63:3b:b2:2f:a3:1e:9c:89:
16:72:1a:dd:f8:e5:2d:3d:ac:17:5c:25:ae:0d:d9:
8a:54:07:b8:6d:06:2b:67:08:8f:c4:e1:22:16:f1:
62:56:7b:a3:c5:9f:93:59:d1:43:47:f4:82:17:9c:
5b:71:11:56:bc:24:9a:74:af:3c:8b:80:2d:e8:32:
6b:20:2d:0f:a9:b5:15:91:38:4e:75:22:6b:93:e1:
06:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E4:6B:C2:14:37:92:CE:56:AF:23:BA:5D:95:81:73:69:9B:B0:6F
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:83:1a:1c:e0:ba:af:46:21:e1:64:58:a5:bb:b4:e8:82:8c:
8c:15:b9:a8:c2:0f:ed:f3:1c:c0:e6:95:e1:5a:f4:05:f4:da:
c5:b7:0f:f0:50:16:15:de:d7:49:df:be:8e:8b:b9:71:7e:4b:
6d:46:13:9d:7f:b8:ec:44:01:e3:44:c8:8d:54:bc:b1:51:99:
df:c2:c5:1e:23:09:6f:48:14:70:f0:10:5c:af:e6:ad:df:81:
08:ae:00:8a:f2:04:0a:cd:04:60:a7:9c:57:17:08:a9:6b:11:
f6:7e:68:19:10:8d:d2:79:02:f5:0b:69:d9:aa:e1:e8:6c:ce:
c9:d4:a3:e5:84:48:51:8c:9c:16:5c:79:ba:4f:77:5c:b0:ee:
b4:5b:d8:5b:00:b2:1c:50:d7:94:5a:31:b4:a6:95:71:06:12:
62:17:5e:e1:35:05:82:f8:e8:0d:f3:87:83:1b:4a:78:da:d0:
bb:e9:a3:74:32:44:b3:c4:7e:b5:07:4b:7c:90:65:87:2f:e3:
6c:df:d5:9b:66:07:f8:5b:90:61:82:f6:94:f8:e3:3e:13:03:
ec:62:df:82:3a:bf:96:e3:02:7a:ac:a1:67:d7:8a:fd:b4:1f:
21:1b:26:9e:80:f3:53:9b:7e:f5:10:76:94:18:c7:1f:21:6d:
e9:69:f5:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 03:38:27 2025 by rpki-client