Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: WLBzUTKLsNWu59qUg3lR/Enj0tJwR9QpJ/YVWyU8Klg=
Subject key identifier: 22:1F:5D:06:97:F1:36:5D:00:ED:A1:C8:62:8E:3E:B9:88:50:D9:9C
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 0196B333F3F6E70F5B1F95D2C96EB8E31C2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 06AE
Signing time: Fri 09 May 2025 04:00:48 +0000
Manifest this update: Fri 09 May 2025 04:00:48 +0000
Manifest next update: Sat 10 May 2025 04:00:48 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: L/Adfn7Y4lng/4s+6qiSuuTKY2vNFNmEQ7XaobQii78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:33:f3:f6:e7:0f:5b:1f:95:d2:c9:6e:b8:e3:1c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: May 9 04:00:48 2025 GMT
Not After : May 10 04:00:48 2025 GMT
Subject: CN=221f5d0697f1365d00eda1c8628e3eb98850d99c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:20:b3:63:aa:b5:12:d0:dc:c2:72:57:8a:db:
84:24:b8:96:b3:c0:9f:fe:38:e3:15:2f:69:2d:e5:
22:b9:60:a3:f8:b6:46:e1:26:4a:34:3d:41:42:0e:
fd:4f:99:c5:af:1a:ac:b6:a8:34:da:13:e2:85:20:
f5:4d:9e:df:f4:5f:a5:ad:35:4e:a9:e0:a0:e8:dd:
aa:f9:24:68:e2:fa:a3:53:59:cd:02:39:42:6c:84:
3b:fc:42:57:33:80:13:8f:22:2a:48:aa:e6:fc:1a:
96:ac:08:ee:3e:9c:62:3f:dd:f5:85:00:7c:0d:9f:
64:56:b2:e5:e3:90:e1:5d:d8:3c:23:0d:d4:99:5f:
b4:7b:99:10:77:68:f8:7c:86:3f:b1:e3:bc:c3:68:
9a:95:5f:2a:30:0e:42:11:93:f4:1d:98:44:cc:d7:
f4:5a:26:5c:02:fe:85:ca:51:06:46:03:12:4b:25:
99:6a:1e:1f:cf:17:54:62:78:ed:d3:d6:82:78:d4:
be:01:16:b5:4a:ef:0b:c6:00:98:c1:33:a0:73:96:
cf:a2:db:92:00:a0:90:15:c4:f8:55:2e:7b:e0:96:
00:e1:d4:c6:18:ed:53:04:98:3b:31:5c:4f:3e:03:
54:5c:b7:cd:6a:85:69:75:af:57:b4:9c:28:2f:80:
10:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1F:5D:06:97:F1:36:5D:00:ED:A1:C8:62:8E:3E:B9:88:50:D9:9C
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:46:6d:78:48:50:8a:cb:19:4a:f1:49:5b:e6:b4:be:53:ff:
c9:4c:1d:ed:40:c0:21:1f:b6:3c:55:03:5e:4c:db:8e:b8:10:
6d:09:2f:94:55:b3:65:e4:22:3f:8f:e6:75:59:ca:5e:c7:0a:
a9:46:e3:a1:9e:0d:35:b9:e0:7d:00:5d:8b:7c:13:7c:30:6c:
c0:34:fc:0d:1e:93:e4:eb:f2:e3:09:72:e5:d5:45:38:ea:9f:
10:1f:db:64:2d:96:9a:b6:2f:06:33:82:71:d6:0a:8c:d7:ce:
b8:0e:86:50:95:c9:27:e6:01:ac:86:9b:2b:be:0f:89:c9:78:
b8:dd:f8:1b:37:c9:c3:bc:42:cb:91:3f:3e:a3:d3:68:e7:ac:
20:43:c3:09:1b:48:1d:20:b8:15:45:a5:22:29:ab:4d:4e:cb:
a6:cf:af:f6:fb:7f:c6:08:7f:37:10:85:06:84:cc:02:ba:a7:
92:a5:26:02:9c:94:8d:e8:a7:e8:72:00:26:6d:e1:42:84:74:
35:1b:f2:15:00:7a:02:1d:53:91:db:d1:07:e1:0d:92:23:ae:
66:9f:1f:67:87:a8:6b:bf:8d:c2:95:c7:5c:ab:12:80:e3:40:
fa:a7:08:7d:89:d8:2c:48:7a:87:72:70:3d:aa:ee:71:c3:f9:
cf:25:82:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 06:10:54 2025 by rpki-client