Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
File: IAxw024BOwfk5tjsPqTuQTtKqpg.mft (raw, json)
Hash identifier: d1RhgLECuICdBoreoh0AAtGIL/FzTg7MH/nQmx2FSVc=
Subject key identifier: AF:27:B9:9F:F6:D6:3D:20:81:1C:13:84:D0:85:29:ED:1C:36:42:53
Authority key identifier: 20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
Certificate issuer: /CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Certificate serial: 01967A8DBBBA0D792C6E1BCA42D3150D89BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
Manifest number: 1513
Signing time: Mon 28 Apr 2025 04:00:31 +0000
Manifest this update: Mon 28 Apr 2025 04:00:31 +0000
Manifest next update: Tue 29 Apr 2025 04:00:31 +0000
Files and hashes: 1: IAxw024BOwfk5tjsPqTuQTtKqpg.crl (hash: u5AMLgWfzPSZRIbYCH6L8rjpU2MwPc/gwzhspMMQkgA=)
2: xInhnEQ1Wnjyaeg0NstEg1xaXmc.roa (hash: v0sQzu+7Kta5k4gVJi492esLH7WHwA4RWeUkfyAHe34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:8d:bb:ba:0d:79:2c:6e:1b:ca:42:d3:15:0d:89:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Validity
Not Before: Apr 28 04:00:31 2025 GMT
Not After : Apr 29 04:00:31 2025 GMT
Subject: CN=af27b99ff6d63d20811c1384d08529ed1c364253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:38:ae:5a:92:25:4f:d4:d1:8e:9e:13:3e:e4:
53:ec:3a:5d:62:8e:13:e5:d0:4d:84:24:17:c9:34:
6b:5f:09:b5:49:58:2f:a5:51:69:50:25:70:86:ec:
8b:92:f4:62:c3:50:d5:30:5a:51:a8:b7:ea:c3:12:
5a:d2:e6:a0:2f:e4:45:b4:c1:d5:25:82:7a:70:66:
8a:c3:7b:3e:28:fe:ee:65:e8:eb:5e:45:69:f7:bb:
f6:a7:74:31:e5:63:92:f5:37:4e:fd:36:9f:de:8e:
85:14:9e:82:ac:c8:d3:87:30:a9:e9:84:01:bf:da:
16:e2:59:ff:fa:1e:42:c7:af:71:4a:5a:e2:23:bd:
8c:ea:af:f8:c5:d1:34:31:72:23:5b:5a:e3:92:f6:
0a:68:6b:8c:23:d7:35:e2:94:f9:be:6e:0a:e0:bd:
43:e2:5f:20:8f:40:83:5b:5d:64:12:f4:13:c9:9e:
6f:db:5b:55:e2:89:1c:fd:a5:cb:fe:ad:63:b2:a3:
33:c1:27:4a:2a:64:26:45:82:47:33:5e:de:0c:cd:
67:b4:f8:b3:64:bc:4c:66:3f:59:60:aa:45:e6:8f:
16:5b:37:96:ad:d2:ef:28:85:9e:26:1f:08:ba:ae:
d6:dc:5d:93:08:c8:ab:0a:37:e6:a7:2c:aa:3b:31:
c9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:27:B9:9F:F6:D6:3D:20:81:1C:13:84:D0:85:29:ED:1C:36:42:53
X509v3 Authority Key Identifier:
keyid:20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:16:a0:88:09:c3:47:0e:17:fc:ee:49:9a:ac:68:92:f6:9c:
53:70:b2:63:60:b9:6e:0d:07:a1:b5:28:ba:31:34:e6:c8:64:
f9:91:0e:4d:ef:fa:b8:72:81:27:ff:2c:cc:43:b1:1a:51:e6:
65:47:2a:f3:45:6d:f4:2a:38:a7:6a:b3:ee:ac:18:e0:da:e5:
7b:90:12:e2:58:20:5e:03:7b:5f:97:b1:a6:48:4f:30:be:5c:
38:a7:2e:4f:bc:dd:e7:e4:7b:9f:a7:e5:25:07:ce:45:1a:fb:
28:7b:8d:ee:6f:ba:db:76:7b:e8:b1:34:6b:5d:0a:e9:0b:3d:
f7:59:84:83:3d:24:c7:7d:84:29:e6:b7:bd:01:a4:e7:56:5a:
aa:ba:c2:f1:51:3d:41:6e:43:b9:9b:2a:b4:f6:95:7e:67:78:
6a:0e:0a:0f:f7:e7:33:97:0e:e5:4b:fc:82:22:5d:4d:17:be:
ff:5a:64:8a:cc:85:77:d2:26:cc:11:3d:2c:5a:85:e2:bf:73:
35:a5:b7:6b:f1:fb:9f:7f:cf:00:34:3d:21:8c:5a:c6:da:3d:
54:1c:c5:35:45:46:2b:5d:89:e6:bd:32:ec:0a:f2:5d:be:21:
72:7a:aa:46:9b:54:01:c0:2b:f4:32:67:c0:37:b3:20:e5:a5:
91:d7:9f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:09:44 2025 by rpki-client