Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
File: iQH2c8aw_4g16gL67bpbSc8UIk4.mft (raw, json)
Hash identifier: JTVcrQVdKFyn2++r4jcq1YA4ZBMuL9GX47WnJb9FsTU=
Subject key identifier: DC:58:6A:F5:D4:16:0B:33:AC:ED:C4:3D:04:64:66:AF:AC:26:96:E6
Authority key identifier: 89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
Certificate issuer: /CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Certificate serial: 01967530426A3333E7324C6473B59D9EBABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
Manifest number: 0BAD
Signing time: Sun 27 Apr 2025 03:00:19 +0000
Manifest this update: Sun 27 Apr 2025 03:00:19 +0000
Manifest next update: Mon 28 Apr 2025 03:00:19 +0000
Files and hashes: 1: LwODeFlTbNm331VlQw3cZjyD1Sg.roa (hash: 6xKklCkI+s1DbuNSCG9T6RXJeAeTq1fLNQfBDhNCOAU=)
2: iQH2c8aw_4g16gL67bpbSc8UIk4.crl (hash: GoEXQhnFV7Jjdr7iyJr01MJDIHCXq0nRQvfqIlAiIpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:42:6a:33:33:e7:32:4c:64:73:b5:9d:9e:ba:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Validity
Not Before: Apr 27 03:00:19 2025 GMT
Not After : Apr 28 03:00:19 2025 GMT
Subject: CN=dc586af5d4160b33acedc43d046466afac2696e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:af:c2:7b:9a:45:77:60:5f:c0:83:69:d9:9b:
b5:bc:9d:a5:84:a7:10:42:63:eb:05:23:ff:8f:b6:
60:ab:80:35:4e:5e:51:84:80:3c:62:0e:f7:8c:d1:
0a:06:e0:9e:12:b1:8c:66:f5:f5:b2:3a:aa:31:b4:
82:bc:32:c7:28:2b:b7:aa:fa:a8:fa:9f:29:2f:c7:
f2:2c:5c:54:aa:1a:d0:37:be:2e:32:a5:4a:e7:15:
c2:22:42:75:80:47:68:1a:2c:2d:2e:f3:6a:bf:36:
28:3f:35:96:b1:16:23:ec:b4:f9:1e:1c:f0:c5:e3:
d3:70:83:99:82:9e:c8:93:60:fb:2a:3e:e0:49:34:
4f:a6:21:37:d6:53:82:07:1f:98:0b:1a:ad:cf:11:
7e:49:d3:51:b3:48:5a:69:38:dc:9d:cd:0f:1f:68:
58:1c:c1:d0:c8:49:5d:89:94:01:3a:71:3b:db:78:
e9:35:f0:1a:dd:68:47:de:25:1e:36:02:5f:16:22:
54:04:02:3d:cd:4f:3a:7a:3d:e6:21:0c:8d:98:e1:
6c:b5:b4:7a:dc:86:13:c5:09:eb:a1:ef:c9:81:89:
08:67:cd:be:8f:77:af:e5:3a:6f:e1:14:bc:98:5d:
01:d7:5c:eb:22:6c:30:2c:cb:91:b0:3b:f2:58:58:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:58:6A:F5:D4:16:0B:33:AC:ED:C4:3D:04:64:66:AF:AC:26:96:E6
X509v3 Authority Key Identifier:
keyid:89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:d0:c3:dc:51:70:57:69:ef:d7:81:31:69:90:bd:0d:6b:79:
c6:d8:27:c6:8f:3a:18:83:e8:41:12:51:93:d6:8a:79:af:c5:
c1:06:1f:fd:12:dd:ac:d6:4e:bb:82:9f:38:89:9d:bd:1a:a9:
21:29:be:d6:fb:a0:46:e3:4f:6b:5c:e7:9d:ab:4d:3d:52:18:
01:df:80:ec:c6:48:2c:b4:d7:2c:97:c3:6a:90:16:e4:ce:3d:
64:44:c1:fb:4a:7d:56:d6:6d:bb:bd:78:5d:da:45:e4:93:2c:
7c:e6:05:c4:22:e3:63:97:34:4f:9f:85:e8:c0:5f:32:48:a2:
80:d8:31:ac:56:7d:bd:dc:c7:87:02:3d:6c:83:35:68:bb:8a:
3b:67:59:8e:29:dd:4c:ee:03:e8:8e:aa:0e:00:c5:39:ea:da:
9d:f8:d6:81:0f:44:5c:46:67:7a:f1:5c:31:f0:c0:0e:1b:7d:
88:2c:92:8f:05:cc:83:ee:f7:98:56:e5:d6:fd:d2:fd:15:4a:
78:08:42:de:7a:07:45:61:a8:cf:42:ec:84:e2:3f:97:3a:af:
13:51:ac:46:7e:d9:27:d8:be:3e:56:23:75:83:76:e6:1c:cb:
46:90:b2:b3:2f:75:5a:f9:69:93:5b:64:65:56:86:a1:7c:69:
93:55:b3:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 08:44:03 2025 by rpki-client