Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: yWToAPVg3Y7INsujkGVJxiu9Q6N9s41pHBtlkyc92AE=
Subject key identifier: D3:E9:78:D9:EE:3D:E5:08:0D:DF:22:DD:AF:69:06:26:88:9A:37:5A
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 019676E7E53C7F770E45CAC63947B48D463C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 11:00:31 +0000
Manifest this update: Sun 27 Apr 2025 11:00:31 +0000
Manifest next update: Mon 28 Apr 2025 11:00:31 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: vcCP2OmIUwphoJDLe5Yky5G1u4IIfrRtvIsSFcs/ziQ=)
2: Oic624JnJmz9lkyUCkfkxynrzXU.roa (hash: reuQNdNLE9OYq59c7HheLuUPxQ+GdUmZR0j+FA5WU8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:e5:3c:7f:77:0e:45:ca:c6:39:47:b4:8d:46:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Apr 27 11:00:31 2025 GMT
Not After : Apr 28 11:00:31 2025 GMT
Subject: CN=d3e978d9ee3de5080ddf22ddaf690626889a375a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:94:d3:67:a3:22:be:1e:93:c8:f1:e0:71:87:
02:3c:90:2d:09:70:ee:ac:3f:98:72:92:79:21:ea:
7b:c0:09:8b:17:6b:ef:51:aa:32:45:c3:de:8d:7f:
f2:03:3d:2e:a6:de:b1:bd:8f:31:49:20:f4:7c:54:
62:3f:f8:26:c9:f6:85:8c:77:9a:ca:3b:76:31:d2:
87:dd:81:b9:a4:6a:01:5f:6f:3e:a3:f5:d6:20:6d:
3e:68:f8:e1:cc:97:fa:50:27:6f:c3:c8:91:74:5b:
28:99:04:7c:93:38:02:2c:07:c5:a7:5e:2f:dd:45:
c5:a7:6f:82:e6:6c:60:c2:4c:f0:68:10:a8:e8:20:
38:e1:cc:43:bc:10:c4:17:40:e0:d1:50:4f:b8:41:
59:ef:cb:4b:1a:03:b4:c5:27:59:c5:2f:6e:96:50:
aa:b9:aa:7e:31:0b:e1:61:6c:1d:9f:b4:f9:d9:d2:
3d:e8:1b:43:9a:fc:ec:9c:fe:bb:66:cc:ce:b4:ab:
75:de:46:0f:2c:02:c0:5d:05:ae:c4:0a:46:75:45:
67:a5:f0:8b:81:ed:0a:6a:eb:56:90:86:73:54:96:
b2:2e:be:1c:13:8b:c0:5f:81:7e:20:54:cc:37:e8:
bc:30:35:ea:a5:47:5b:a3:80:ce:e2:6f:81:6f:a5:
51:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E9:78:D9:EE:3D:E5:08:0D:DF:22:DD:AF:69:06:26:88:9A:37:5A
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:9b:dd:8f:c1:fd:26:f2:12:b5:38:3c:96:c0:b1:90:91:18:
e6:e4:73:2a:e1:8c:96:ef:88:87:22:24:5d:05:47:4d:9b:ae:
da:36:c2:64:2e:22:7b:fc:91:89:ec:b8:50:51:c0:eb:63:7f:
33:91:07:88:4f:06:3d:e8:7c:a5:34:6c:25:9d:6e:dc:b2:28:
d8:b8:ce:48:cf:6d:32:15:06:78:0a:69:fb:6f:36:22:a5:c4:
6d:d9:f7:5a:17:3f:60:6d:fc:d7:12:64:50:32:2e:e7:b5:3a:
f0:8a:0c:aa:01:d3:91:ee:32:fc:29:ea:ad:61:9a:e3:ed:57:
63:45:6f:05:6e:d6:31:d1:a4:66:ff:1c:dd:41:38:9e:d1:2d:
2a:9a:da:d0:93:3c:37:02:7b:35:cc:24:32:43:04:0d:70:a0:
a0:fd:71:3b:5f:d6:00:3b:d1:8e:17:d9:ca:cb:a6:07:6a:c3:
70:e3:b5:ee:bc:83:eb:db:b6:ba:6b:c0:cd:4c:28:db:97:6d:
dc:43:54:38:dd:f0:db:a9:09:e5:ce:48:81:07:e8:43:4f:ef:
56:97:97:d3:16:94:b0:1b:77:2d:4a:bc:27:b3:67:04:89:c6:
70:40:7e:79:74:c4:4b:be:dd:8a:e5:bd:01:79:a1:60:03:ec:
33:38:33:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:30:13 2025 by rpki-client