Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: 29Q9WyKTDulESmkGY92OpEqZo6HneAvDKII/2alFX90=
Subject key identifier: B1:E7:34:21:CD:CB:C5:70:1D:19:D5:40:D4:D8:4F:BC:99:3F:40:DC
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 01967755F7B7EA058404A59AB2FFC6A57659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 13:00:44 +0000
Manifest this update: Sun 27 Apr 2025 13:00:44 +0000
Manifest next update: Mon 28 Apr 2025 13:00:44 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: 2N5kpRIMdV9aBndnTyOeLnOg2ILabyzMtyW5uvsdCRk=)
2: cFbXH5gO6qs06Nq1Ek6wrTAvxB0.roa (hash: c0tlMuDM/vPMybXrB0sIatVwyL/aO7RZmUvD1wZIObw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:f7:b7:ea:05:84:04:a5:9a:b2:ff:c6:a5:76:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Apr 27 13:00:44 2025 GMT
Not After : Apr 28 13:00:44 2025 GMT
Subject: CN=b1e73421cdcbc5701d19d540d4d84fbc993f40dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b2:30:b9:c4:6c:13:be:cf:c6:84:c5:83:c1:
5b:7d:3e:9d:cb:d7:7b:18:a5:c9:d2:3a:66:05:9c:
75:fc:5d:c9:f8:3c:62:8a:7d:37:41:2c:fb:bb:01:
47:bd:41:1e:69:fb:bf:e7:b4:f1:5c:00:92:82:45:
61:31:07:1c:ea:b9:67:81:ef:2d:53:cf:5d:7f:d4:
ce:35:96:83:b4:f7:54:2a:c7:48:cc:f1:2b:27:62:
11:fe:b5:8e:bd:16:ed:1a:62:0f:5c:10:fc:83:de:
d5:37:29:db:c3:96:7f:45:56:07:b3:70:36:51:a8:
61:17:6f:5f:a7:eb:1d:3f:3c:62:15:85:bf:05:5f:
a8:f2:31:ab:00:59:62:ad:b4:25:9b:e5:08:9f:33:
5e:f5:be:b3:fb:1e:39:cb:1a:02:f4:40:0b:bb:9e:
fa:da:3e:ca:55:9e:9a:d9:da:28:c6:1d:2e:7b:87:
4f:50:f5:67:c4:4f:21:75:c6:01:33:99:11:38:55:
d4:b4:af:eb:62:20:63:50:52:35:a6:18:c4:c0:0a:
bc:47:cc:09:78:aa:99:d4:a8:fd:1e:cf:f7:8d:8f:
e1:0d:24:e8:2c:c0:35:d2:d5:5e:2c:e2:4c:ac:f0:
b8:ab:89:91:4d:a0:15:ca:b1:63:33:89:47:f8:2c:
c3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E7:34:21:CD:CB:C5:70:1D:19:D5:40:D4:D8:4F:BC:99:3F:40:DC
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:4d:03:e6:9a:ab:42:37:5e:5a:6e:0a:15:06:c3:6f:4a:16:
08:e8:6b:eb:7b:cc:1e:6c:d8:74:4c:cf:30:ed:14:38:f4:ec:
ed:79:a0:1b:75:ba:de:17:e7:62:24:e9:f9:ce:62:22:62:ed:
d1:dc:53:7a:10:ca:0e:3c:b2:01:29:c4:6d:60:9d:bc:b1:ff:
c6:ad:e5:63:c0:08:95:cf:26:35:13:b4:69:cf:bb:6a:e8:f5:
5e:2a:bd:6e:60:3b:54:06:f6:c0:37:41:4e:de:9b:1d:9c:95:
3c:91:81:5b:5a:34:1d:11:36:a4:83:6f:d4:bb:24:25:b9:4d:
bb:e2:50:5b:a5:db:e4:92:2d:4e:11:af:76:ba:e7:ef:4e:b3:
10:3f:37:52:52:ed:41:0f:b5:fa:b8:ac:eb:28:78:50:9a:d3:
c5:35:3e:be:a7:57:74:99:bd:7c:46:f1:e0:32:29:3b:60:06:
25:07:54:13:24:6e:01:18:ec:42:fe:d6:0c:e6:48:ae:2f:cb:
b5:62:9a:f2:ee:76:c1:a5:68:f4:a3:07:b8:03:9c:42:17:87:
05:8a:04:7f:37:b9:cc:92:a7:c8:8d:21:f2:9a:ee:14:6a:92:
02:7d:f3:1f:e8:17:3c:3a:e4:4e:d8:7e:b5:e7:87:e1:28:63:
ea:53:fa:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:56:58 2025 by rpki-client