Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: RtnScPqR8fE97VmylvhrzHFJMsOUyz1OLrLvWPBk9BQ=
Subject key identifier: E1:5B:29:13:EC:9F:FB:78:3E:25:9B:2A:B2:32:9A:A1:02:F2:04:F7
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 0196C5A79883A7B3E8EBF42697CBBBA17DA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0BB3
Signing time: Mon 12 May 2025 18:00:17 +0000
Manifest this update: Mon 12 May 2025 18:00:17 +0000
Manifest next update: Tue 13 May 2025 18:00:17 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: bF4XU/Ori+UKUHgC0sCvNLywneht5m5Y0+1Xlx/iCnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a7:98:83:a7:b3:e8:eb:f4:26:97:cb:bb:a1:7d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: May 12 18:00:17 2025 GMT
Not After : May 13 18:00:17 2025 GMT
Subject: CN=e15b2913ec9ffb783e259b2ab2329aa102f204f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:37:cd:47:1a:9e:83:68:8f:7f:c6:02:2b:08:
7f:b2:81:bc:45:96:c5:00:4e:d1:6a:9d:42:0b:b4:
c2:42:dc:14:f2:73:f6:6d:8c:e5:84:ac:7a:92:f6:
9b:e5:5c:bc:47:8a:97:d0:e1:54:41:76:00:05:d4:
c0:e5:7c:ed:ec:dc:b3:14:20:79:a3:d2:0f:a4:93:
55:87:34:00:2f:17:21:7b:7b:0b:15:20:d3:9d:db:
e9:5b:86:ee:0a:00:ef:9e:dc:28:77:3c:9e:65:01:
60:ea:f9:61:52:6d:57:f6:af:76:f4:11:79:3a:f6:
5f:d9:e1:2e:8c:07:6e:ea:bf:4f:a5:4c:e2:87:a7:
33:a8:1f:25:a2:dd:fa:d1:d6:07:6d:be:52:2a:1d:
8e:ff:1e:e4:0b:f8:10:d9:6f:d3:c7:bb:8e:e1:fe:
06:e2:33:53:fe:92:0d:0c:15:90:f1:ab:a7:90:28:
59:1d:99:8f:62:f3:2e:5c:73:92:0d:24:12:fe:1d:
36:10:81:40:1d:3d:d0:73:8b:0f:ac:fe:f1:e9:ad:
dc:70:52:22:5b:9c:5f:02:00:2b:42:3d:01:e5:12:
9f:16:38:e9:78:f6:cb:78:fa:85:f2:99:40:bd:35:
3d:dd:05:4c:c1:21:74:d6:72:d1:a9:fc:06:ed:38:
27:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5B:29:13:EC:9F:FB:78:3E:25:9B:2A:B2:32:9A:A1:02:F2:04:F7
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d3:ec:31:f1:fa:f0:a0:97:4f:d6:2f:e5:57:fe:90:11:a6:
9a:63:ad:66:40:f4:65:d5:3f:24:15:80:03:4f:f4:21:b4:da:
30:53:91:cb:03:75:4e:ba:ca:82:28:dc:ab:7e:5e:7a:8e:36:
2a:b0:d2:6c:99:f9:c4:7a:b7:45:46:98:76:8b:cf:5b:e3:a5:
dc:36:9d:ff:24:7b:35:88:9c:97:7f:89:f9:87:c6:c7:b3:0c:
46:d1:94:d7:d1:52:31:01:01:85:3e:46:3d:e5:62:e3:c4:46:
37:04:70:3e:69:86:81:7e:37:4e:9d:0d:63:45:24:2f:e5:b6:
0e:7a:be:3d:c5:61:d6:04:4d:e2:b2:f0:a3:b2:87:cb:89:d9:
52:1b:ec:50:b8:2b:e4:5a:35:97:4f:c7:ab:ac:4b:3b:b4:e3:
16:d1:3f:85:60:c8:9f:d4:d5:8a:31:86:2c:75:fa:72:25:d3:
ef:98:69:10:0b:fc:bb:cb:56:c0:30:73:c1:35:75:eb:ec:04:
35:a9:ad:74:bb:81:26:4a:4b:7f:89:a5:0f:3d:dd:9c:97:18:
9f:1f:f9:5b:0d:db:45:49:6a:94:c8:f9:23:43:18:8f:6f:d4:
0e:54:8a:9d:73:f9:37:34:52:0c:4f:33:8c:53:bf:59:4e:5e:
4a:92:e8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:20:16 2025 by rpki-client