Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
File: it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft (raw, json)
Hash identifier: IVe8IviAXdWudyLGMJkDwsXEyywCUXXko8klhFErMWc=
Subject key identifier: 4D:26:68:2E:CE:31:ED:77:10:F6:F6:E3:1D:8A:50:BD:64:E9:92:82
Authority key identifier: 8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
Certificate issuer: /CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Certificate serial: 0196A79D4E7081D777AD690EFC83F3740846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
Manifest number: 1225
Signing time: Tue 06 May 2025 22:00:26 +0000
Manifest this update: Tue 06 May 2025 22:00:26 +0000
Manifest next update: Wed 07 May 2025 22:00:26 +0000
Files and hashes: 1: 5v7duN9Ge8yGISXqxG3qUzWZAS0.roa (hash: 1SA0Oa41y733C6WZxDupsHaqhvUOZQl7E3vDY0FiKPY=)
2: it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl (hash: 1KJc5Ym6gJccpRXEdOfrjF0MXaZoyTJRFI38CgQwRso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 16:14:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a7:9d:4e:70:81:d7:77:ad:69:0e:fc:83:f3:74:08:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Validity
Not Before: May 6 22:00:26 2025 GMT
Not After : May 7 22:00:26 2025 GMT
Subject: CN=4d26682ece31ed7710f6f6e31d8a50bd64e99282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:64:5e:dd:6d:45:06:45:65:d7:7b:9a:9b:e0:
19:da:d9:c5:8f:ab:db:aa:03:9b:a9:54:68:e7:85:
e8:f7:72:00:b3:69:ad:ce:d9:b9:56:69:40:0a:97:
a1:85:e3:66:02:03:f8:8c:ac:c5:37:b4:c4:2b:7c:
e3:ef:54:c4:22:1b:83:7f:5a:ed:f8:af:5b:d5:55:
17:fe:c3:a3:c3:2c:53:06:c2:a4:c0:a4:b2:82:67:
59:dc:46:46:5f:8d:cb:e2:a2:a2:99:e7:ca:77:c1:
ee:23:75:99:2f:5d:de:04:60:e3:dc:de:f7:04:d1:
e9:e3:80:34:3a:4b:aa:44:de:9f:15:e6:7e:dd:c6:
80:fe:58:fa:e9:cb:32:05:1a:87:46:65:97:a7:b0:
ce:17:92:32:5d:cf:61:f6:7e:2e:b7:ac:fe:3a:7a:
63:59:a8:a0:1b:bd:1e:6d:db:99:cd:26:84:30:21:
e6:c7:20:b0:0c:a1:3b:96:72:22:4c:53:ea:6c:51:
17:d5:8e:c3:b2:2c:c8:e9:d6:b4:30:76:87:b9:e3:
28:64:56:2d:83:be:66:d6:4e:d8:69:21:09:d6:a6:
69:1d:1e:33:76:97:2d:72:ca:26:3b:b1:b1:39:8d:
bd:c0:86:90:59:43:87:64:c5:33:94:aa:6a:c2:76:
76:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:26:68:2E:CE:31:ED:77:10:F6:F6:E3:1D:8A:50:BD:64:E9:92:82
X509v3 Authority Key Identifier:
keyid:8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:5f:bc:05:d8:f8:18:90:4d:c9:95:2d:7d:ca:99:42:ef:34:
58:c8:4e:7f:24:17:11:90:07:11:84:66:83:70:a2:8f:71:f9:
a9:11:f4:93:d8:da:bf:d1:b9:0c:e1:92:2d:39:0e:e1:87:1d:
73:c1:da:e0:4d:8b:69:3c:ab:4d:e0:9e:5f:bd:a5:77:69:48:
30:bf:3a:3e:b9:e5:32:c6:8c:45:9c:19:69:5f:b3:ea:34:95:
c6:94:4f:66:8a:2c:f6:09:90:4c:f3:df:b1:89:fa:bd:34:06:
3b:19:60:8c:3d:6e:71:af:75:a2:d5:4a:9c:9d:ea:2f:4c:5e:
08:bf:d8:c7:71:0b:e9:9b:a6:93:61:52:9f:7d:b9:bb:75:34:
6c:7e:32:2c:0c:17:c8:91:b3:e0:d9:7d:2d:ed:eb:77:4d:16:
0d:7c:b6:9e:02:b6:01:01:8f:bd:42:fa:58:1a:76:01:8a:3e:
b2:9b:d7:69:f5:8d:02:28:a6:55:8c:6d:cc:b2:d6:ef:20:01:
7b:10:b4:b9:90:2b:24:04:2a:b7:bc:79:67:9e:3e:04:ed:2b:
e2:5a:cb:7f:17:ca:dc:2c:28:30:8b:cd:bb:3c:e3:e5:df:c3:
00:d1:2a:12:6c:8e:aa:5c:30:a3:6c:8d:c2:1b:e2:9a:16:95:
fb:70:31:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 02:13:08 2025 by rpki-client