Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier: 8S8EjSzdB6KyehvjiXBGtxi1KB00llHs7AQDQx2Wu+o=
Subject key identifier: 2E:43:6E:65:A8:99:A0:80:FA:6C:E7:64:93:EB:C9:AC:CD:85:D2:73
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 0196748BFD40DADC09A7AEB3264811469874
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number: 153C
Signing time: Sun 27 Apr 2025 00:00:53 +0000
Manifest this update: Sun 27 Apr 2025 00:00:53 +0000
Manifest next update: Mon 28 Apr 2025 00:00:53 +0000
Files and hashes: 1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: NX2b3RSgSQzjZpl8ARFifis1wIFteZfOMwXuCc7G+YI=)
2: N9Zb2hxl4VqsmU3i0xGDA1x2cBY.roa (hash: bj11HyE9bQVpgK8+L49310uUI7++HSDAwFbYXm4t87U=)
3: bXnDK3FrjmreLx1RNLHjlK6yokA.roa (hash: 9KnhQYqvA+XwDxuEoTB3PjhKHhHecpLOEmyBwf4FrSA=)
4: jNg6vqzUy1VgyEygCa4DvoqjfIY.roa (hash: npuJNuYtC10xnW9UN6NXfDz60ESb4bhdw7EsN6BY2Z8=)
5: ttxltNG2zQjIJW6GFa8ByUupTIM.roa (hash: X+Rp7cCbU+AQt/6HVOu55hwFlooIOfWp0xOq7PMcuDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:fd:40:da:dc:09:a7:ae:b3:26:48:11:46:98:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Apr 27 00:00:53 2025 GMT
Not After : Apr 28 00:00:53 2025 GMT
Subject: CN=2e436e65a899a080fa6ce76493ebc9accd85d273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d9:db:ae:40:d3:ec:b2:78:b3:af:ea:1e:99:
67:ef:50:ff:18:3b:75:92:ec:6c:47:04:2d:df:6e:
35:06:76:0d:30:da:d5:63:26:b7:e2:17:7f:f2:36:
dd:a9:7d:c2:0d:51:0d:32:4d:7a:bf:f8:b7:1d:79:
f8:23:fd:57:3d:f4:24:d0:98:6b:66:da:b4:e8:d8:
5d:23:71:b1:e3:74:dd:34:bf:ca:df:13:b8:90:d9:
09:79:6b:79:3e:1f:e5:a3:60:34:b3:1e:ba:a8:26:
ca:bf:77:eb:4e:c7:a5:a7:ba:ec:c2:c9:bc:f4:20:
a1:a7:75:45:d4:47:21:34:6a:a8:c5:f3:a6:bd:a8:
53:79:af:27:c5:0f:2b:2a:6f:6c:7c:db:5e:24:cc:
e9:34:85:7f:e1:6a:6d:17:cf:c7:54:2a:93:b6:ba:
6b:16:49:29:b8:53:18:4d:01:12:4a:56:9e:eb:04:
cd:17:fc:51:fe:fe:13:af:59:c8:81:82:a0:41:8d:
36:e3:bf:b5:45:a1:27:b1:ac:22:b2:17:6e:d7:78:
b6:22:35:0e:10:7a:0d:31:ee:4b:26:f9:52:8c:df:
52:7e:a8:a3:f9:e9:8f:e0:87:1e:5c:e5:23:4e:0d:
6b:41:f9:87:5a:17:fb:8b:5c:09:f9:df:05:b3:a4:
f3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:43:6E:65:A8:99:A0:80:FA:6C:E7:64:93:EB:C9:AC:CD:85:D2:73
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:42:10:9e:20:d3:9f:91:81:6f:f3:78:db:1c:56:50:f8:93:
e1:ce:1c:d5:f0:73:2d:dd:4b:0f:30:af:57:00:ea:e7:d6:59:
a0:97:ea:ed:57:7c:f1:fd:70:2e:ba:eb:b9:0b:59:44:db:63:
98:35:14:7b:3c:5b:f8:7e:27:5f:48:a4:d0:95:ee:4b:3e:95:
23:9e:8d:77:a8:2b:f8:12:35:43:60:71:e1:8f:56:2a:e2:ec:
4e:aa:9d:f3:92:02:90:c7:b5:d3:01:5a:3b:36:2d:4b:88:c8:
23:75:9f:fd:07:78:f2:7c:dc:15:ad:d4:25:b8:18:a8:eb:da:
79:92:94:f4:57:57:88:78:25:a2:9a:05:0e:f1:cd:39:ce:45:
2e:0f:eb:dc:48:75:e3:73:94:f8:fd:43:3a:64:76:73:d6:99:
87:ff:8d:98:6e:0b:54:07:bf:c9:63:47:d8:68:40:7d:53:3a:
1f:a0:7c:a3:46:02:66:a7:f4:94:e9:c6:29:eb:54:68:5a:8e:
f8:70:70:62:9c:af:39:72:0f:4d:9c:19:13:a6:48:15:a1:77:
9a:ff:cc:b8:c2:95:f9:0f:c0:b2:fa:6f:aa:11:ba:38:eb:d2:
a1:54:38:9c:d6:49:bc:3b:59:1f:9e:05:9d:23:38:f0:1d:30:
bb:41:59:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 04:00:53 2025 by rpki-client