Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: 8ohv/bZrC9lkOaI+09zSPq7usVR0ji1cap8zzAcJLDo=
Subject key identifier: BA:65:72:07:49:D3:9E:EE:9E:14:4D:6A:C8:24:C7:DE:F1:15:E4:1E
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 0196A0BF6CEBF814AB266F0220EB77AF4053
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0E8E
Signing time: Mon 05 May 2025 14:00:21 +0000
Manifest this update: Mon 05 May 2025 14:00:21 +0000
Manifest next update: Tue 06 May 2025 14:00:21 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: F9HpgvLYsr+4kUxNw40HSX8n9JrFIdms7LMBzlMtnyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 14:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:bf:6c:eb:f8:14:ab:26:6f:02:20:eb:77:af:40:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: May 5 14:00:21 2025 GMT
Not After : May 6 14:00:21 2025 GMT
Subject: CN=ba65720749d39eee9e144d6ac824c7def115e41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8c:f0:32:0a:f2:be:11:17:f5:7f:e3:8c:3e:
52:08:71:3b:e5:22:6c:2c:64:c6:7b:2d:7b:ec:55:
d0:20:20:25:fe:45:7d:e9:75:98:09:1a:e0:fe:61:
31:6a:bb:93:1c:08:a2:e5:98:eb:70:e1:4e:45:31:
43:0c:0a:a0:a4:27:93:3f:c2:26:a6:9a:ba:ff:29:
e3:12:0d:b4:52:ae:08:60:61:ff:3b:44:94:08:e4:
1f:e2:14:38:a5:bc:63:74:0e:70:77:d7:cd:6a:25:
95:b7:82:ab:8b:f0:6a:39:21:56:56:10:ef:0c:17:
1a:ec:db:56:d7:83:f3:16:64:05:7b:e9:10:10:61:
14:47:60:48:e9:42:63:97:9e:bb:4d:1e:67:4c:15:
66:85:83:c8:2e:5b:de:c1:15:41:2f:22:08:a7:4a:
be:5e:49:3d:5f:45:6d:bd:21:c3:98:39:8a:e0:df:
c8:5c:6e:18:28:ce:f9:b7:dc:14:70:74:56:a9:34:
04:89:21:24:ae:10:49:d6:0c:56:0e:3e:98:48:a3:
6a:03:ac:99:72:57:d4:47:e5:94:52:95:48:72:8e:
1c:dd:d3:f7:86:24:ce:c5:6b:88:63:60:de:f9:6a:
7d:df:e8:ef:b4:9b:ba:19:2f:f6:d5:84:c5:60:45:
43:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:65:72:07:49:D3:9E:EE:9E:14:4D:6A:C8:24:C7:DE:F1:15:E4:1E
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:1f:e1:29:ca:78:78:74:5d:a2:94:36:3a:da:f2:f1:5e:e6:
4d:47:1e:46:74:1e:0a:fd:5e:fc:0b:bd:bd:45:5c:44:98:ce:
45:25:42:af:e9:c6:19:e4:96:cc:5e:3d:87:f3:c1:70:28:ff:
e7:f2:47:83:87:24:e5:7d:ea:a1:39:05:80:99:47:f6:9f:86:
13:96:62:59:6d:3b:53:37:f3:2b:a9:e6:60:e6:93:69:79:7a:
9f:cc:65:66:62:2f:f1:e6:89:6f:0f:0a:a6:e9:96:d8:dd:ad:
51:b0:fd:29:b0:ee:3b:25:de:13:e5:31:74:19:64:fc:8e:2f:
cc:31:18:79:5a:18:5d:0f:0e:cf:d1:98:b2:ff:62:43:31:b4:
95:ca:4c:b5:82:58:00:df:fd:c8:8f:6f:a5:4d:41:3a:fa:06:
52:9a:a5:c7:fb:ed:a6:29:2f:0c:14:51:6c:4c:1d:45:8b:3e:
88:a8:32:c4:70:ed:34:09:a3:e5:37:84:0a:e5:7a:32:b3:7b:
d8:bb:09:7e:e9:ff:12:4a:5c:84:b5:cb:30:7c:fd:c2:28:ff:
80:ae:52:83:6e:44:91:82:c8:d6:bd:ce:dc:1b:11:61:5a:3a:
28:ee:3f:57:d6:ca:df:d7:32:70:3f:db:f2:98:08:00:c4:c7:
3c:27:53:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 21:51:37 2025 by rpki-client