Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
File: tIoonrst1oBtYLjFrQNseY9mugY.mft (raw, json)
Hash identifier: fpsBoHE2ccTxMqNnH0YkE+SIsQxWO6cdWUuQAUdsUek=
Subject key identifier: 1A:11:89:E2:66:0E:25:1E:F7:83:B5:5E:10:86:37:74:AB:3E:E3:1E
Authority key identifier: B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
Certificate issuer: /CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Certificate serial: 0196C26FA017EBCD821B39D788DA9CB75A94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
Manifest number: 03F1
Signing time: Mon 12 May 2025 03:00:17 +0000
Manifest this update: Mon 12 May 2025 03:00:17 +0000
Manifest next update: Tue 13 May 2025 03:00:17 +0000
Files and hashes: 1: nKxswHwUBE_XIOIyQ1Qpw5XOFvo.roa (hash: xZYcCOMTf00TiuBXWvG+qaD8S6ouJ5YlmrR2oW0i9z0=)
2: tIoonrst1oBtYLjFrQNseY9mugY.crl (hash: 6nmRO2ys/ZY48NGcxhwY1A0AohG/fSt3SI3UhP7fTuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:6f:a0:17:eb:cd:82:1b:39:d7:88:da:9c:b7:5a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Validity
Not Before: May 12 03:00:17 2025 GMT
Not After : May 13 03:00:17 2025 GMT
Subject: CN=1a1189e2660e251ef783b55e10863774ab3ee31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:33:6d:ad:28:34:82:31:c3:f1:ab:9d:9b:5d:
fb:32:3f:a9:46:6f:00:be:a0:23:9c:e6:89:c2:ed:
97:b2:b5:29:18:27:96:5c:5d:dc:22:84:4a:ee:f8:
b7:7c:20:7f:26:49:a8:a4:9c:9e:e9:1f:37:15:70:
94:ce:b0:a7:4f:4d:ba:b8:04:dd:86:af:b5:fd:5e:
fd:11:1a:70:b4:81:15:d9:13:18:fe:3d:32:c3:22:
7d:47:36:ff:8d:96:3e:f8:b1:55:fc:88:54:15:07:
d7:75:a2:37:27:a6:d9:47:07:87:9e:7e:5d:04:a2:
01:cf:a1:27:2f:34:fa:c8:02:4d:51:66:91:06:53:
02:be:db:03:b1:48:51:8f:d7:97:51:ca:f4:1f:e8:
46:ba:29:1b:42:c1:8f:93:22:1a:3d:ab:8a:5d:04:
c2:d5:cb:b6:e9:8c:6e:37:95:e9:d9:96:9d:04:93:
50:8c:78:8d:12:d1:e1:b3:d1:bd:37:28:51:07:95:
08:e9:ce:04:30:23:4c:5f:b9:d0:08:4d:69:f4:35:
a4:e9:76:b4:a7:0a:38:91:a3:41:e9:29:1d:f3:54:
41:2d:76:93:9e:4e:5c:b6:18:5f:56:cf:6e:f8:61:
49:70:c4:cd:ab:fd:77:d9:30:0a:b1:f8:06:c9:36:
92:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:11:89:E2:66:0E:25:1E:F7:83:B5:5E:10:86:37:74:AB:3E:E3:1E
X509v3 Authority Key Identifier:
keyid:B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:6d:62:b5:b0:d4:3c:00:c1:8a:80:2d:99:de:b0:c6:5b:dd:
e4:15:d3:45:24:11:b7:00:21:e0:9e:14:1d:fc:7b:16:bc:a2:
0c:f0:ce:b1:a3:2a:43:0c:dd:25:c8:fb:3c:76:92:6d:d8:6d:
86:49:1e:6e:cd:41:16:fb:86:f6:b9:bd:77:b3:64:50:38:cc:
47:9b:f3:1b:e8:11:da:b4:2f:a4:10:6e:de:f5:aa:b6:2a:86:
de:61:f6:7f:48:14:3e:2e:10:83:76:61:c5:14:d8:3e:fd:61:
8d:55:1f:2d:09:f9:e1:35:bc:ea:5f:f0:09:a1:84:c6:97:e5:
2a:d8:89:9b:aa:47:ed:46:9a:66:29:e4:07:75:c7:f6:de:61:
6a:cc:a9:04:4b:08:30:6e:0d:23:ce:33:f0:4c:42:03:06:c7:
2e:33:fd:17:39:63:89:3c:6a:e7:1b:8c:e1:1b:49:16:2f:38:
24:af:b9:fe:03:e6:1a:74:f8:98:25:76:35:da:a2:0e:3c:49:
ec:36:3f:71:0c:7c:b8:c4:b5:c4:30:e2:15:0b:7e:05:70:06:
c6:af:db:dc:1e:51:a3:ef:54:b7:ce:b8:13:5a:13:5d:55:ff:
00:46:a8:59:c3:cb:5d:93:11:08:2e:11:e8:8b:1c:3a:fe:af:
ba:a3:9a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 08:18:44 2025 by rpki-client