Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: yt2tSByjYfYonCqakHcHrG88S0taS0UVpatYe640BOk=
Subject key identifier: B6:FC:49:23:3A:A8:0B:B9:20:F8:36:C8:36:04:6F:65:2B:6E:B4:2B
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 01968511314DC9B794B4F1A301E3DAC66108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 0F33
Signing time: Wed 30 Apr 2025 05:00:18 +0000
Manifest this update: Wed 30 Apr 2025 05:00:18 +0000
Manifest next update: Thu 01 May 2025 05:00:18 +0000
Files and hashes: 1: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: lwtQ2rIWEx4GF/ejH4gsjm0QM0gEJUnhd7XmxMTe+H0=)
2: qaZCGy8ImKVej6couAVTC--aSzI.roa (hash: dKUZq0YlDWheyPATDjfQQ4lypZzKgD8qgqRTkln0uKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:11:31:4d:c9:b7:94:b4:f1:a3:01:e3:da:c6:61:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Apr 30 05:00:18 2025 GMT
Not After : May 1 05:00:18 2025 GMT
Subject: CN=b6fc49233aa80bb920f836c836046f652b6eb42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0c:13:5f:b3:d9:1b:f2:09:67:ff:18:07:33:
01:6d:38:29:4c:8a:46:04:60:52:9a:05:3b:71:9f:
c2:06:1a:a7:ee:94:5e:8d:f9:9a:6c:54:f2:32:59:
dd:16:83:a8:8a:c3:a8:32:d1:af:f8:51:61:b9:48:
48:1c:91:36:e3:3f:a3:f3:4a:a2:f0:87:2d:cb:db:
3a:5d:c2:6b:98:05:72:1f:b0:01:0c:e3:bd:d3:c7:
3b:d3:2f:b0:93:b7:45:ad:0b:e6:7c:b7:c5:05:c0:
04:7c:2b:b5:a1:1c:78:9e:9c:b8:af:05:4f:cb:1d:
db:6c:ad:fa:15:f2:c1:f4:ae:55:7a:38:da:cf:b6:
97:92:08:8c:d9:82:36:5e:de:05:b2:80:21:1c:76:
9f:3b:5f:35:b4:e0:7e:a0:38:cd:74:d3:3c:45:ce:
1d:43:1f:d6:9f:13:a5:7a:c6:2c:02:61:6e:1e:89:
8c:0d:47:76:08:a2:1a:d6:b3:59:d6:86:c8:d3:0c:
36:42:6e:3d:26:0d:08:55:73:a2:7c:8f:90:23:d0:
f2:a2:0f:c8:4c:dd:2b:c5:a7:81:62:5e:68:db:61:
fd:8f:5f:fc:9c:04:03:6a:0c:5e:b4:c5:7f:07:77:
bd:16:5e:85:d4:b4:c6:04:5e:d7:2f:0c:e9:9a:bb:
f9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FC:49:23:3A:A8:0B:B9:20:F8:36:C8:36:04:6F:65:2B:6E:B4:2B
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b6:af:72:62:1f:a2:bf:67:ef:21:e8:b9:53:b6:a2:ba:f7:
d6:11:14:e3:14:70:93:6d:82:0d:56:d9:41:30:72:0d:03:44:
6c:13:b1:73:6d:4a:4d:9a:66:b9:b7:40:2f:76:85:99:96:b5:
e7:d3:92:f8:e3:e2:1f:80:58:63:f7:f7:54:9f:de:0c:74:6e:
90:8c:89:6c:0e:e4:55:92:dd:49:2d:ec:0d:4c:4e:64:14:5b:
68:03:86:35:08:c3:9b:a5:43:7a:6e:93:c5:b4:7c:0d:58:ab:
ed:c0:4c:dc:18:b6:e6:a8:61:c5:70:d6:e8:fb:36:61:24:f0:
59:a4:26:78:6f:e0:0a:db:4c:4a:69:34:d8:2f:cc:8c:41:02:
f5:61:d1:4a:a7:10:ff:65:18:03:c1:ba:a5:a7:5f:46:b6:63:
1c:90:17:5e:6a:c0:4d:97:97:86:89:33:ea:1e:18:f0:3b:dc:
1c:ee:f0:87:87:42:80:40:f8:ed:75:57:e4:83:eb:d6:d3:09:
a9:a6:b2:df:34:95:53:20:d1:24:13:60:66:16:b6:9e:b1:85:
e3:27:87:4a:65:20:71:7e:30:4c:72:6b:14:28:d0:8d:00:f4:
6d:06:f0:8b:fa:e9:77:77:98:d9:3b:0b:e0:df:c1:6e:a0:3d:
cf:11:78:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 09:40:33 2025 by rpki-client