Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
File: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft (raw, json)
Hash identifier: XJWHePsaN9/8CC/WlxF4Aj2Ss0mqhmyzHhEbtOA0gkQ=
Subject key identifier: 26:02:54:7C:16:E8:E0:9B:FD:B3:1A:6B:12:44:CA:51:69:D7:F4:0D
Authority key identifier: 23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
Certificate issuer: /CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Certificate serial: 0196C0B8654D5A9A1727102FF9558757E351
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
Manifest number: 1532
Signing time: Sun 11 May 2025 19:00:32 +0000
Manifest this update: Sun 11 May 2025 19:00:32 +0000
Manifest next update: Mon 12 May 2025 19:00:32 +0000
Files and hashes: 1: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl (hash: uOdZqqc/hupoHt++SNwh6pjwd4TIjkL7rlwIJDV49f8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 19:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:65:4d:5a:9a:17:27:10:2f:f9:55:87:57:e3:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Validity
Not Before: May 11 19:00:32 2025 GMT
Not After : May 12 19:00:32 2025 GMT
Subject: CN=2602547c16e8e09bfdb31a6b1244ca5169d7f40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fc:fb:0d:f5:d7:e9:e1:08:48:c9:d2:7d:a1:
f4:f8:e0:37:ba:09:19:7d:69:db:42:69:8d:b5:bb:
96:f0:58:04:52:ba:6a:07:fd:4f:53:c3:cf:54:22:
3f:a7:8a:60:a4:bb:ce:05:96:e2:40:6b:5e:ac:9f:
ce:3b:cb:5c:15:36:0c:62:71:be:a7:da:a2:4f:f9:
64:cf:6f:3d:71:27:2f:58:3f:36:a8:ab:c5:9b:3d:
0c:99:e4:eb:f9:58:c6:e7:c8:c7:2f:a1:19:65:a2:
58:09:db:05:c9:6f:de:91:5e:bf:4b:fa:e6:be:a2:
a0:9c:b2:f8:82:df:f1:44:47:83:47:dd:8f:45:f3:
ff:88:ea:3b:c0:7c:5d:01:8c:85:cd:08:05:f3:81:
73:58:d0:bb:85:10:c6:d7:2d:fc:7c:43:19:86:58:
ec:b0:8a:3f:cb:f1:ac:7f:36:c7:0d:a4:bc:f5:4f:
a7:11:1d:59:c3:bd:c1:b6:0d:dd:31:47:7a:b0:5f:
1a:62:48:1a:cc:c9:ef:c0:b2:e7:9d:f2:87:90:5c:
f7:d1:a2:c3:3b:1d:6e:19:0f:24:6f:f3:be:a6:c3:
9f:c4:9e:8d:5b:96:4a:7d:34:8e:90:0e:24:50:20:
3f:9b:cc:71:d0:da:60:67:ae:2a:ac:46:91:56:68:
db:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:02:54:7C:16:E8:E0:9B:FD:B3:1A:6B:12:44:CA:51:69:D7:F4:0D
X509v3 Authority Key Identifier:
keyid:23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:f9:a1:af:ff:c5:40:71:21:28:e1:e9:65:11:a5:66:89:35:
12:10:ce:95:63:d6:d1:12:33:0e:22:99:5d:76:3a:ab:47:c0:
ca:0f:33:4f:3a:d4:4d:af:f6:1d:e8:fc:84:b5:8c:2c:b2:62:
5a:bd:f7:92:35:09:ee:7e:db:24:a5:33:76:28:03:69:2b:1b:
9f:ff:bf:5a:d7:2f:c3:bb:73:44:a6:85:d6:d2:e2:df:7f:40:
7c:c7:10:4b:94:48:78:9c:a9:ba:e8:1d:52:9f:26:3e:ff:8f:
c6:fe:bd:be:44:47:71:01:f6:5d:d5:b9:21:57:93:5c:96:74:
41:2f:db:d6:ee:bd:a9:44:3e:9f:dd:c4:87:6e:12:c6:f1:43:
b5:25:27:48:1e:96:e6:68:62:74:59:28:6d:28:2a:7e:4b:b1:
36:60:d9:a1:ec:7e:68:07:93:ad:43:1c:af:19:6a:2c:e5:e0:
b0:ab:f0:30:25:f4:e4:01:12:9e:bb:ff:2a:09:4a:a7:ff:bd:
2f:ec:5d:08:72:06:75:ee:ba:22:06:51:b3:43:0e:9a:2b:df:
ca:ad:b5:9e:72:7e:46:51:36:6b:00:ae:0b:88:66:e9:fc:59:
af:9e:b1:57:5a:78:2a:81:2c:a7:8f:b0:1e:91:1c:c8:29:75:
4c:da:f4:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:53:26 2025 by rpki-client