Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: Q5H6gjdSoADjKDpLVv7c0QsgnEBjMc/IOZSgjWm16q0=
Subject key identifier: 4C:3D:E1:4E:0B:37:FB:7D:58:B1:FC:A4:3D:BB:32:A5:E3:05:E0:7F
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 0196A91E5BD92850B895A15249F468DD4D1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 124A
Signing time: Wed 07 May 2025 05:01:01 +0000
Manifest this update: Wed 07 May 2025 05:01:01 +0000
Manifest next update: Thu 08 May 2025 05:01:01 +0000
Files and hashes: 1: OIDmEPbDXYESb6L8W110fitW4aA.roa (hash: AIH3VvHzWUC8AtgPyCBt/ld6YdiGtY4TDL+tLd/3C+w=)
2: OuQJP3rTcu0if4kJ5A5ZWqxKYpo.roa (hash: UN46ctiu4ND9IXGCd4EhP/dQ+ESw5QeLedCQ9yxaLnU=)
3: WV7QPmFglb32ubsYCfgK2rSXhGk.roa (hash: 7jclXGuRVqisqCezIaon+r4NXFS6nrK/O3nscYXGo0k=)
4: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=)
5: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: Q67XzK8sFG348qRilFMrWPE+p6eUr5jnFHOJb7Qktbc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1e:5b:d9:28:50:b8:95:a1:52:49:f4:68:dd:4d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: May 7 05:01:01 2025 GMT
Not After : May 8 05:01:01 2025 GMT
Subject: CN=4c3de14e0b37fb7d58b1fca43dbb32a5e305e07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5c:24:79:dc:0a:70:5b:86:ff:1e:86:82:bd:
55:ab:e8:d7:cb:33:b8:de:be:af:a2:bb:e9:0f:38:
c9:81:6c:03:b2:c0:28:64:15:6e:30:f4:a1:70:66:
58:96:c9:d8:6d:59:9e:c8:cd:75:5c:be:87:67:81:
c8:f7:02:90:39:fc:47:b5:42:fe:97:61:1c:17:4e:
3a:b2:91:4b:b3:92:e0:d4:f0:05:8d:7d:18:42:4e:
62:e3:52:fc:5b:aa:ba:ed:e4:2f:ce:b9:f4:fd:8e:
87:a9:19:72:30:19:b6:6d:12:1e:7f:2d:7c:8e:db:
d8:98:28:09:90:88:a8:07:9e:62:fd:33:4e:b4:48:
02:ff:e3:20:60:59:46:ca:c9:a1:4a:03:e7:9a:93:
c7:eb:34:84:bb:f9:dd:8c:e7:7c:bc:9d:dd:4b:84:
83:65:e2:3f:78:3a:4f:ad:bd:e4:19:02:51:9c:8e:
db:f5:a0:43:33:0c:18:b2:05:9b:54:30:b7:b0:57:
59:71:bc:eb:0f:3d:c6:16:85:cb:e4:3a:4f:e2:ac:
3c:fb:02:be:50:45:64:3f:03:96:5c:6a:9d:0c:a1:
54:a1:e1:0d:b3:85:e1:86:5a:61:88:93:d9:44:3b:
26:cd:e7:02:62:b5:1c:2e:4f:82:2c:69:89:3c:de:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3D:E1:4E:0B:37:FB:7D:58:B1:FC:A4:3D:BB:32:A5:E3:05:E0:7F
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:37:59:1f:e5:23:22:5f:40:71:da:3f:63:35:1b:93:28:0f:
de:45:94:b6:16:b9:a5:7c:f8:45:57:df:96:b5:21:8a:58:ba:
48:72:72:c9:4a:31:2b:12:d1:54:61:13:0a:54:6a:3c:31:38:
7f:db:74:ce:2c:5c:78:38:10:ff:9f:df:a9:b6:8c:14:e5:6e:
4c:07:91:35:b9:b7:5c:36:78:08:53:38:01:64:15:2d:1d:ef:
06:05:74:3e:38:4a:07:4f:bb:47:b3:c3:67:a9:1c:ca:f4:a9:
54:61:18:0d:8d:03:21:7b:38:c9:0c:49:1e:1f:11:64:e6:71:
15:ce:11:65:95:7a:52:6f:43:70:33:d4:ee:c7:75:a1:cd:31:
6d:6f:27:66:48:23:07:52:78:ee:8b:93:50:e4:04:2b:b0:97:
5c:ec:e9:fd:73:fc:f7:7a:ed:70:2d:c6:e7:0b:20:87:32:c7:
51:0d:08:c5:25:e0:63:34:36:3b:03:aa:d7:e0:3d:f5:7e:e5:
3f:0a:c1:3a:9d:8d:ee:bb:95:8f:8c:48:b1:27:f3:76:98:61:
d5:0a:61:61:d2:7f:26:8c:85:d1:7b:98:bf:b8:cf:bb:b5:35:
8b:67:17:9e:eb:2e:03:f1:2e:72:4b:f0:f4:f0:2a:b0:f0:b5:
10:56:34:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:39:18 2025 by rpki-client