Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: THin8jnhk5YrERNqVrHS0iTAMB5VyhztL/3tNVMM+Nk=
Subject key identifier: 34:C3:7C:69:5D:32:FA:0A:16:C8:43:3F:37:CC:29:E9:96:E7:30:86
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 0196A954B5FCDBB7F383D284EA9EE2C25D66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 126F
Signing time: Wed 07 May 2025 06:00:23 +0000
Manifest this update: Wed 07 May 2025 06:00:23 +0000
Manifest next update: Thu 08 May 2025 06:00:23 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: RLlX8eWyN13RminU0dUr+XA2oy0NXmccANeKjeeIsIg=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:54:b5:fc:db:b7:f3:83:d2:84:ea:9e:e2:c2:5d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: May 7 06:00:23 2025 GMT
Not After : May 8 06:00:23 2025 GMT
Subject: CN=34c37c695d32fa0a16c8433f37cc29e996e73086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:37:60:87:eb:43:58:4e:5a:e6:53:95:3a:a1:
54:b9:ff:e7:4b:0d:68:ce:7f:46:8a:2c:e3:bb:48:
7c:c2:1d:08:e1:46:16:e1:bc:90:3b:67:01:9f:71:
76:a1:e1:be:22:5d:25:ed:77:7c:e7:6f:53:b0:d7:
52:04:6b:81:0a:3a:c4:59:eb:9c:93:69:f2:56:0d:
2c:a8:35:50:2a:15:6b:05:72:94:99:0e:b4:8a:a8:
9f:e7:da:6b:37:6d:8b:79:1b:86:ce:43:eb:8e:69:
af:38:84:e5:3b:e1:fb:69:dd:c5:94:12:10:da:ec:
4a:67:df:20:26:3d:aa:36:bd:13:81:7a:1d:52:07:
1b:90:43:da:b7:6a:7d:31:e5:65:8b:e0:50:0e:2d:
23:82:9f:56:df:f5:d0:80:3d:18:8e:a8:0d:23:cb:
f2:84:e0:2d:56:fa:e3:21:83:a5:a5:1f:39:6b:f7:
f0:30:19:ff:1c:fe:48:39:e2:1c:94:3e:59:5c:8f:
5c:7e:b6:4d:8b:47:a5:21:2b:e5:05:61:3b:d7:24:
c9:58:73:e9:09:72:df:04:b2:6e:83:02:45:ce:15:
3c:1d:23:5c:f8:1a:b0:e9:02:e1:0e:cf:1b:c1:a2:
64:cb:04:ec:3a:9b:d5:95:8b:a2:db:3c:9b:51:14:
46:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C3:7C:69:5D:32:FA:0A:16:C8:43:3F:37:CC:29:E9:96:E7:30:86
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:e3:b3:c4:8f:2b:3f:8c:71:a3:53:47:b3:40:19:c9:51:6d:
e7:fb:d8:a2:5b:c3:65:93:f9:65:56:42:2a:2b:c7:bb:f9:10:
14:de:2b:e6:0d:c2:be:8b:ec:cd:6d:a6:01:ef:20:da:3a:53:
ab:00:08:b7:7d:d5:f1:77:3c:bb:da:f9:15:87:64:d4:78:1d:
e4:9a:3d:f0:a1:a2:38:7d:83:50:7e:d9:e8:a3:ba:64:f7:aa:
ed:0a:f6:57:c8:58:ad:5d:b0:3d:77:69:24:68:db:f4:f1:5d:
dd:3b:86:82:0f:f5:c2:62:2e:1e:54:bb:c4:83:0b:95:94:8c:
1e:b1:e3:9b:37:9e:ce:d5:de:fd:cb:4d:58:89:11:51:96:2f:
f2:95:c4:b5:33:24:77:4a:09:27:12:0f:85:b1:74:0f:08:75:
3a:c1:cf:eb:7f:cb:7f:e0:e8:15:33:ac:fa:af:89:01:47:f3:
60:9b:9a:6e:0f:2f:ee:2a:26:67:d4:8a:3e:e3:45:d8:22:e1:
8a:7d:9b:d0:fd:7d:1c:43:55:ea:38:b7:1b:5e:5f:cf:96:17:
b3:d9:ec:1a:fc:35:a7:98:3d:7e:7d:f2:b2:d2:f9:5a:fa:2c:
77:24:04:c4:3e:6d:44:d9:4c:e3:12:eb:c1:4a:d0:c7:b2:20:
37:e4:7d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:01:29 2025 by rpki-client