Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: AOZmbeZQEN+/w5kr3NQo+583lqX4YTYq6+c+l/LYRNE=
Subject key identifier: BF:8D:B4:1B:47:67:CD:26:00:3C:8A:F1:E0:B1:19:D7:88:8A:E1:34
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 0196B7B549F2C71756E851520965AADBD465
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 01B2
Signing time: Sat 10 May 2025 01:00:33 +0000
Manifest this update: Sat 10 May 2025 01:00:33 +0000
Manifest next update: Sun 11 May 2025 01:00:33 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: HQWcf4/OTKU4PCBtDD3zvqO1sS9AQtLyYnNdMtmHvGg=)
2: bfd_WpvacXpVJP__dq6vej5IyyY.roa (hash: /B+pNt8vIwVV5x8COrKPeKukz7hh0c0T1g3kvtIg6Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:49:f2:c7:17:56:e8:51:52:09:65:aa:db:d4:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: May 10 01:00:33 2025 GMT
Not After : May 11 01:00:33 2025 GMT
Subject: CN=bf8db41b4767cd26003c8af1e0b119d7888ae134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b9:28:2a:9d:fc:cc:df:8a:d9:18:75:45:a0:
b8:fa:46:a1:3c:64:36:fd:75:98:39:34:ce:63:e8:
27:b7:f1:ba:60:c6:09:75:aa:f6:c7:93:6a:ef:66:
2f:c4:bf:f1:76:25:2d:22:d3:6b:1e:d1:d9:7c:53:
55:fa:22:24:6e:5e:19:03:02:b9:43:00:2c:71:4b:
fd:44:51:c8:d5:ba:ca:16:04:97:0b:46:97:34:af:
7e:eb:0c:10:90:0a:0c:ca:7c:fe:f1:3b:fb:c9:04:
6a:46:5f:dd:b4:d6:10:7f:8b:7a:27:1c:80:3c:64:
1b:57:68:20:a1:1f:4b:8f:ad:f9:3c:ea:81:09:1a:
96:5c:3e:63:ef:ce:4a:a0:f1:ea:50:f3:f1:ac:03:
b8:dd:c6:39:53:1a:ba:3a:70:59:61:96:7e:54:99:
72:04:4f:18:07:ea:78:e8:92:47:e6:52:42:6b:b0:
1f:0b:5e:fa:f7:8d:bc:06:78:61:45:64:f9:a2:7a:
23:b4:7f:88:fc:f0:02:d3:e7:9f:cd:47:c8:c0:7d:
e2:9c:d3:79:ec:f7:4f:80:06:7b:ee:13:66:38:d2:
9f:a5:5d:b3:04:bb:0a:0b:c7:84:ee:9b:7b:12:15:
6d:e3:0b:29:16:da:e5:fd:93:25:f7:52:2d:4d:0c:
88:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8D:B4:1B:47:67:CD:26:00:3C:8A:F1:E0:B1:19:D7:88:8A:E1:34
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:76:d9:41:85:5c:97:db:f2:5e:4d:89:a0:27:2b:03:3c:da:
20:8f:8e:b7:49:cc:f6:f2:18:c9:8e:af:59:b8:15:d6:dc:e6:
cc:3f:db:a7:91:b3:b5:e3:89:9c:d1:d6:e6:18:66:e4:67:4f:
dc:66:d9:d3:26:d8:0d:61:6e:04:7e:eb:09:f3:4d:f8:aa:ee:
2f:b1:a2:61:06:33:34:0d:26:41:db:05:da:84:7a:a3:8e:25:
bb:5f:52:2d:41:c2:43:4c:b9:c4:6d:a2:b0:80:df:c0:73:7c:
e0:b7:c7:b8:10:14:64:81:9e:56:1f:98:f0:86:94:67:75:1c:
0a:08:df:59:03:99:76:b1:35:b1:20:3e:36:13:8e:81:aa:cc:
71:15:a8:cd:53:32:b9:27:ec:e8:0b:20:df:b4:97:b7:c5:fd:
81:d3:50:65:06:5d:d2:5b:34:fa:73:31:7b:7f:c1:4c:33:4a:
21:ed:38:42:c9:ae:6f:44:90:35:1e:5b:2e:f9:63:fa:78:2a:
f3:88:36:ba:5d:47:6d:33:a1:c3:47:d3:32:75:bb:17:68:d7:
c9:a5:e1:53:65:b2:6a:6c:51:ea:e0:b3:87:be:86:76:c0:04:
76:c3:ba:cf:fa:04:ac:5c:95:0f:3f:b6:7e:25:af:e2:f0:dd:
d4:99:dd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:50:50 2025 by rpki-client