Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: e0Kwi7ZHVIC1z1fp2T10peLpVecHV2MTcTlYJBORKgA=
Subject key identifier: 7A:B1:A9:AC:34:0B:C6:95:B8:D5:DC:F4:3D:48:5A:20:3F:2D:9C:CD
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 01969304166A3F96180F99A304AF6FFE982F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 03AA
Signing time: Fri 02 May 2025 22:00:40 +0000
Manifest this update: Fri 02 May 2025 22:00:40 +0000
Manifest next update: Sat 03 May 2025 22:00:40 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: p/6dSPCfoWKF+c2Q40/gbdtWznn10xf5arbn4ZfefW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:93:04:16:6a:3f:96:18:0f:99:a3:04:af:6f:fe:98:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: May 2 22:00:40 2025 GMT
Not After : May 3 22:00:40 2025 GMT
Subject: CN=7ab1a9ac340bc695b8d5dcf43d485a203f2d9ccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:f1:36:9a:d5:51:d9:8e:47:95:d0:0e:6e:
2a:99:8e:2f:eb:d0:b3:32:22:54:14:cb:43:3e:05:
1d:00:08:db:23:bd:9c:fc:bd:cf:2c:4c:5a:6b:b7:
5d:9c:4f:be:b6:87:9e:b9:89:c0:60:e4:e1:ba:74:
14:81:85:4c:6b:f7:37:69:3c:51:ef:80:0c:99:e4:
8e:0a:d7:4b:91:76:a4:44:ce:29:94:a6:d8:7d:8b:
6f:5f:42:4a:13:e8:7e:15:14:bf:8b:89:bf:8f:ef:
73:4f:34:b1:a8:6f:9b:f3:0d:8c:c1:d3:63:8f:94:
ae:35:95:35:be:3f:de:86:69:1d:76:9c:f1:a1:69:
6e:89:bd:74:0f:ac:7b:51:78:b8:5e:69:29:17:cf:
16:d6:ac:79:ab:2f:ee:89:dc:43:e9:b5:d7:d8:b5:
68:b6:ea:e9:4b:67:c8:ae:a3:a1:67:7d:68:c4:25:
17:ca:83:37:95:b1:ae:5d:03:e6:f9:ac:32:fe:5c:
1f:ea:95:ec:4e:a5:09:98:6c:24:ed:91:9e:e5:b8:
64:ab:65:8a:bb:91:b5:e0:97:2e:7b:b8:18:76:c5:
5d:52:f3:27:61:a6:5c:80:76:64:41:85:fd:38:a4:
4e:f7:37:45:40:96:6b:94:b0:6b:c8:f5:a2:2a:e0:
ee:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B1:A9:AC:34:0B:C6:95:B8:D5:DC:F4:3D:48:5A:20:3F:2D:9C:CD
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:85:57:0c:c7:4f:ff:f4:28:bb:cc:89:3f:29:79:ef:5b:c6:
f7:ba:25:fc:0a:95:df:5a:1c:15:3d:5d:4b:28:1b:f7:a8:02:
2e:3b:c2:15:50:42:b9:9c:ec:37:ca:87:db:f5:b3:e3:00:c7:
fe:48:4b:ef:d6:3d:c9:16:1f:86:94:bf:93:3f:cf:0b:9e:68:
aa:79:aa:87:ab:69:ab:ee:7e:24:62:64:1e:33:05:93:54:c1:
05:78:85:0b:12:97:d7:fe:1a:10:96:b4:3c:41:70:6e:c8:2c:
ce:db:6b:71:a8:cb:0a:ab:da:b6:2b:c4:f6:f6:a0:15:84:40:
7a:97:18:b6:f6:d4:2d:15:26:74:df:9f:8d:fa:bd:53:a8:54:
48:80:16:52:1a:f5:f2:81:7c:ac:2a:bb:c1:1e:41:46:9c:e0:
61:20:c4:9f:91:41:cc:d4:16:4f:58:c0:26:8c:7c:4c:34:ff:
27:17:23:31:85:94:b1:47:e9:79:47:8b:b0:aa:78:73:c4:bf:
8a:52:79:c9:9e:73:dd:74:0b:8e:3f:e9:bf:78:f4:ab:36:6f:
13:31:2f:3a:97:ec:ec:f9:6f:87:07:2d:82:23:7a:a9:0f:df:
1f:81:5c:6c:d3:19:1e:91:6b:42:16:fb:92:77:9b:5d:2f:a8:
62:86:40:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 06:55:58 2025 by rpki-client