Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
File: lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft (raw, json)
Hash identifier: hQJMlwOhKwps0CIYFOV6tP8vbYMqoe2dPkUz0lbo55Q=
Subject key identifier: 77:13:CA:87:F9:B6:7A:50:E4:C3:EF:FA:B8:78:60:8F:8C:90:EB:78
Authority key identifier: 94:8D:45:CF:E3:48:2B:8F:61:DA:E0:00:B0:07:A4:67:EC:DD:4E:E6
Certificate issuer: /CN=948d45cfe3482b8f61dae000b007a467ecdd4ee6
Certificate serial: 0196767AA53348E425965F65DF75EC20E4FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
Manifest number: 1511
Signing time: Sun 27 Apr 2025 09:01:10 +0000
Manifest this update: Sun 27 Apr 2025 09:01:10 +0000
Manifest next update: Mon 28 Apr 2025 09:01:10 +0000
Files and hashes: 1: lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl (hash: EBxwTqHxrVBV/JNXgvx0gMVUjU9pVucNQ6rfrCHJxUw=)
2: qmxsyUbW81VdsinEooDwPTqDgYg.roa (hash: 5mMYBqM+9mhhKL1z8ft7+FIG5whvIdm78M3vwoV475A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:a5:33:48:e4:25:96:5f:65:df:75:ec:20:e4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=948d45cfe3482b8f61dae000b007a467ecdd4ee6
Validity
Not Before: Apr 27 09:01:10 2025 GMT
Not After : Apr 28 09:01:10 2025 GMT
Subject: CN=7713ca87f9b67a50e4c3effab878608f8c90eb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:5d:0f:8a:db:83:15:54:2c:bd:18:ed:81:
eb:1d:8a:ee:7a:07:27:ed:3a:da:ae:07:64:06:b8:
74:40:4b:cf:43:da:d9:25:14:8d:c7:fc:72:be:20:
97:36:56:1b:e1:1a:33:8b:f7:18:5e:49:31:fd:7e:
02:12:27:fa:86:c8:5e:13:5c:33:ff:29:55:2e:de:
51:61:93:0d:dd:1e:41:90:de:19:24:5e:60:ac:6c:
3c:5c:87:4a:23:af:90:77:37:1e:c9:bf:fc:68:fc:
a9:dd:7a:3c:ca:ca:62:23:eb:79:81:9f:ba:31:3f:
83:32:85:13:2a:83:2c:5b:a7:cb:da:4c:d7:d8:09:
1f:f5:35:b8:01:57:a6:be:82:ec:3e:79:b8:5a:af:
9a:bf:2b:af:ef:a4:4d:6e:bb:ef:ed:36:d1:47:03:
12:78:13:e9:05:e0:c5:56:0e:98:cc:cc:3d:bf:d8:
c4:27:31:86:c4:64:c2:02:90:68:79:6a:04:42:fd:
d7:98:6e:b0:25:c8:66:7f:2f:23:ba:7b:80:5a:5e:
a6:17:99:20:c7:34:d1:a5:f0:93:56:ef:82:d4:60:
f0:fd:12:7b:cf:a9:a8:9a:b8:e5:09:20:37:be:80:
63:92:fd:d9:c4:5c:d3:55:74:4c:14:27:54:a7:06:
f9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:13:CA:87:F9:B6:7A:50:E4:C3:EF:FA:B8:78:60:8F:8C:90:EB:78
X509v3 Authority Key Identifier:
keyid:94:8D:45:CF:E3:48:2B:8F:61:DA:E0:00:B0:07:A4:67:EC:DD:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lI1Fz-NIK49h2uAAsAekZ-zdTuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f89b2e-53a3-4157-a960-42dafb4b51d2/1/lI1Fz-NIK49h2uAAsAekZ-zdTuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:24:df:3d:74:c0:97:c1:4f:50:e9:1d:4f:25:68:9d:75:b6:
54:ea:73:cf:cf:93:a1:1d:70:5c:c7:fa:fe:6a:02:45:ac:02:
54:1a:cc:2c:a5:2d:68:b5:86:8a:00:4a:23:20:f4:96:f8:38:
cc:c5:d5:7e:2f:6a:ea:df:3e:7b:44:a9:21:52:18:85:47:cb:
fe:26:55:53:3c:6e:31:17:5f:53:a3:69:06:ce:7f:59:64:d6:
23:09:8f:66:3f:f6:f3:97:d9:1c:70:b6:76:fc:64:e0:79:84:
90:51:9c:1a:b5:fe:9d:f9:c9:c4:f3:1e:c2:5b:55:cf:45:8d:
e4:83:ab:87:68:9b:3e:81:9f:9d:41:9e:5e:a1:a1:c0:32:bd:
d0:62:11:c4:75:0b:52:6c:c0:4e:b0:37:9a:f3:88:c4:15:55:
3f:28:f6:74:4b:44:a9:7f:14:d9:8b:1c:a1:13:a0:3e:3b:6c:
42:49:73:1b:d8:8e:67:fc:6a:76:f6:b8:89:d1:b2:42:6d:ba:
62:57:e6:e7:df:12:f8:fe:84:46:14:3f:ef:47:23:04:d3:70:
1a:31:d2:2a:98:42:31:6c:9a:0a:30:6f:0c:ca:09:60:a2:5a:
8c:89:0b:95:eb:23:b4:54:b1:86:0d:fa:88:f0:2e:64:2d:8e:
48:0c:35:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:07:18 2025 by rpki-client