Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: EC5kNfNdTs1jRg1l7cBlSC4pLD0t2KROKa2MtmBaHNc=
Subject key identifier: 2D:40:09:28:B4:93:EF:53:91:76:FF:7B:6C:45:65:8F:49:8B:27:72
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 0196AC8CDA192134952839EF60F17D84B8F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 11CC
Signing time: Wed 07 May 2025 21:00:33 +0000
Manifest this update: Wed 07 May 2025 21:00:33 +0000
Manifest next update: Thu 08 May 2025 21:00:33 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: oTk4lq5s9ytk+xinwkhQ1fpd0QASYiHYlHfBuP787HQ=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:8c:da:19:21:34:95:28:39:ef:60:f1:7d:84:b8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: May 7 21:00:33 2025 GMT
Not After : May 8 21:00:33 2025 GMT
Subject: CN=2d400928b493ef539176ff7b6c45658f498b2772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:19:95:67:a5:9d:de:28:ad:6a:32:aa:e6:ba:
f5:ef:b7:85:dd:af:cb:c0:75:af:3c:65:73:da:38:
97:46:1f:a4:9f:63:b3:64:4e:54:62:15:ec:bc:aa:
20:de:8b:21:9c:d2:d8:26:05:ec:4f:11:50:99:7d:
31:f5:00:70:8a:c9:c3:a0:35:5a:b5:d2:02:5e:0c:
09:cc:4f:70:6a:83:ef:e3:79:4b:72:99:31:af:b4:
da:15:71:c1:d8:37:b7:fd:ee:60:64:1a:58:f9:1d:
f9:40:47:ea:61:ce:5f:02:e6:6e:46:e4:06:2e:0b:
1b:8b:f4:4c:0b:78:b8:1c:7a:eb:78:9a:3b:69:94:
98:7b:c6:a3:f4:b6:3a:aa:eb:e6:ac:99:f0:72:f2:
8a:9f:af:01:ec:e3:8c:0c:41:71:36:cf:68:6f:91:
d7:64:22:44:e1:47:cd:34:ae:e6:99:c2:ab:53:c1:
d1:84:d6:c0:f9:56:b4:3b:d9:73:95:80:4e:ce:d9:
6a:03:8d:05:34:be:fc:dc:50:4a:93:5a:ed:85:f0:
6a:09:78:d7:c5:fd:23:69:06:33:61:20:b7:6f:0e:
a3:f3:7f:e6:56:a4:42:f6:1f:44:e0:3e:7b:0e:4e:
64:2e:a0:ed:66:94:f6:39:5c:e1:d7:49:bf:f7:45:
7c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:40:09:28:B4:93:EF:53:91:76:FF:7B:6C:45:65:8F:49:8B:27:72
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:1b:a3:b5:e1:e2:a7:55:58:6c:47:62:9e:6b:7a:15:d4:8d:
20:02:59:c9:f8:5e:01:0d:f8:8f:44:6b:35:eb:37:fe:1c:26:
04:60:7f:4b:8f:ff:93:7a:7c:d1:92:d1:ae:51:4a:95:0b:26:
b9:f1:c2:88:43:76:61:d3:3b:ff:70:17:5d:3c:20:cf:62:4d:
b8:6c:9f:57:08:75:20:47:2c:9d:76:cf:bf:bb:b9:7d:26:10:
df:60:bd:3b:36:3a:20:a5:ba:e1:ef:44:10:44:cf:17:a0:f5:
6a:9d:bb:a4:80:6f:5f:ff:ab:eb:64:16:f0:19:56:38:5f:97:
34:7e:1c:7b:bf:fb:0e:6b:5a:4e:e9:da:f9:38:9a:09:cd:c5:
c7:85:de:2c:b5:ef:89:e7:3c:62:79:5d:2e:55:17:7e:97:eb:
b9:fc:e5:b0:fb:3b:f7:fa:6e:95:a4:c1:6e:26:08:e0:21:bd:
bb:fd:4a:6b:f6:44:93:22:e7:09:5f:de:a8:ca:a5:a2:e6:5d:
84:80:c0:4f:4d:ec:68:12:66:a3:34:3b:37:bd:9e:0e:b2:bc:
7d:85:c8:d8:ae:ca:e1:fc:6e:1e:62:70:74:af:68:fd:6a:82:
7e:4e:6b:58:32:93:38:54:bb:ef:f4:df:a3:a6:3d:30:9b:b1:
2e:56:96:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 05:28:46 2025 by rpki-client