Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
File: iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft (raw, json)
Hash identifier: rE10pWQfzQFn3cTYyodS+EiasPvUqpHz6KMzFlKbRss=
Subject key identifier: 93:A9:0B:E0:6D:FF:D3:B2:44:91:1D:C2:87:10:23:21:83:4C:09:BB
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 0196BB23EF01BBC3DBDABBB4B194B1DD0D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
Manifest number: 1486
Signing time: Sat 10 May 2025 17:00:16 +0000
Manifest this update: Sat 10 May 2025 17:00:16 +0000
Manifest next update: Sun 11 May 2025 17:00:16 +0000
Files and hashes: 1: Qv6t4wP7j-uLsxcfTWHv2ZFQWD8.roa (hash: eR47NrGWjMdNEp9FBa07vBAWwdqKIDeSc8imYvJOwfI=)
2: iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl (hash: +EVMqpLgAKqpR3GIgRDUimfB/9aMrF5swlfmEf/QxPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 17:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:23:ef:01:bb:c3:db:da:bb:b4:b1:94:b1:dd:0d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: May 10 17:00:16 2025 GMT
Not After : May 11 17:00:16 2025 GMT
Subject: CN=93a90be06dffd3b244911dc287102321834c09bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fc:b8:91:b1:9b:a9:52:64:d0:cb:e8:2a:7f:
08:bc:be:06:85:ed:ce:80:8f:cf:c1:81:90:01:40:
ba:64:e7:18:f5:df:b7:03:18:38:76:45:dd:d3:d0:
0f:b0:fa:f1:81:d1:8d:d3:4f:d1:28:b9:55:cc:9e:
2e:60:ef:7b:c1:fc:38:dc:21:fa:65:58:8d:d5:bf:
0a:d4:f6:0a:9a:9a:ce:7b:81:51:cf:c2:e6:0d:d5:
93:0e:26:30:2e:67:7f:ee:0f:7f:45:89:6c:a1:55:
65:83:ee:f8:42:4e:fa:bd:4b:03:60:b4:6b:5a:31:
f9:7d:81:c2:e3:86:7a:01:55:e6:53:2a:a1:73:b9:
be:50:b5:5a:de:fa:f9:aa:8a:d9:d0:94:98:73:81:
2e:7a:73:b0:47:7d:c7:a2:0c:d0:bb:02:d3:b7:9e:
d5:3b:9c:6d:20:ce:ce:67:49:f4:cc:a8:a1:b2:a1:
9f:dc:b7:7a:0b:8f:6c:39:14:bc:69:c0:1e:6f:01:
6d:33:5f:19:9f:6c:79:02:c2:2e:7b:b6:f5:d1:9a:
63:41:10:22:21:70:4a:c2:7f:a1:cd:89:30:b9:71:
85:66:aa:f9:4f:9d:79:67:f6:4e:0e:8e:3e:3a:7c:
61:ee:d7:9c:d4:1d:5f:d2:3f:4e:c5:51:9f:94:30:
38:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A9:0B:E0:6D:FF:D3:B2:44:91:1D:C2:87:10:23:21:83:4C:09:BB
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:7c:e7:7a:f6:2b:b9:7a:73:fd:79:05:90:c0:9e:48:e5:17:
c7:05:0c:42:19:ad:0c:41:0f:7e:63:f0:9d:22:1a:08:3d:b5:
f6:54:03:76:71:73:c5:76:ae:0a:bd:b8:c0:64:f0:20:26:0c:
49:10:0c:51:7d:9e:d9:e6:76:fc:bf:be:ee:b6:94:49:04:11:
1a:6b:f2:e1:eb:6e:29:88:2d:40:ce:c0:43:a3:9c:30:9f:b9:
34:d3:c1:df:11:45:81:71:4b:21:7a:ab:91:89:e6:4b:1c:8d:
3a:3d:74:34:c2:9a:a1:0a:2d:00:66:5a:e8:c7:85:09:0c:84:
22:f6:65:1c:39:47:94:a1:a8:c4:fd:b0:8f:71:0d:90:cb:50:
db:f1:fa:10:6e:e4:36:0c:30:fe:18:14:1c:71:b5:85:c3:e4:
d1:8f:4f:52:96:e0:48:34:5e:d8:6b:3f:71:c7:f2:d9:ef:52:
16:ed:46:cd:8d:70:e0:f0:80:b4:37:6b:d6:63:53:ee:eb:57:
13:49:db:e5:8c:57:45:c5:d1:1e:f1:b7:09:08:fb:cd:af:d9:
3c:5b:5b:77:27:3f:86:ab:78:98:b1:46:88:3f:3f:df:42:dc:
a7:66:11:bc:5d:d0:25:bb:34:86:34:58:57:74:b1:5a:10:ca:
30:72:62:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:22:07 2025 by rpki-client