Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: 78RA4cEiffiju2k7yw5pI+2F2fjAfI1aEDS0CzatbwQ=
Subject key identifier: AC:BD:02:EA:78:64:8B:A5:D3:E4:D8:AB:C2:6A:60:B7:A3:1F:D2:C0
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0196BF37B70451CF967CD254E28FF7834A80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0BEF
Signing time: Sun 11 May 2025 12:00:21 +0000
Manifest this update: Sun 11 May 2025 12:00:21 +0000
Manifest next update: Mon 12 May 2025 12:00:21 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: w33gnYN+CHANhmMXug+5Qr83jY1+xCM5ucrHW9WN1H4=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 12:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:b7:04:51:cf:96:7c:d2:54:e2:8f:f7:83:4a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: May 11 12:00:21 2025 GMT
Not After : May 12 12:00:21 2025 GMT
Subject: CN=acbd02ea78648ba5d3e4d8abc26a60b7a31fd2c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8d:e4:bb:99:9c:3a:b2:5b:3a:79:8f:9a:38:
7b:af:d4:cf:8c:ae:91:ab:e5:a4:fe:85:f6:40:34:
e9:d7:99:e4:d8:11:94:84:21:f3:33:69:6c:25:cc:
78:71:6c:f0:5a:fe:69:4c:26:82:1b:c4:9e:b6:7c:
93:3b:dc:94:e9:07:49:7c:eb:99:9a:80:5d:93:4a:
b0:b4:6c:f2:d4:c4:1b:77:79:14:6f:49:27:81:dd:
75:b3:1e:d9:37:56:31:76:61:7b:1c:7d:62:b4:fe:
dd:8a:32:eb:94:81:f5:b0:14:d4:3b:e8:5f:26:f4:
63:34:71:5b:aa:19:c1:e9:c3:77:f6:23:72:34:f4:
ea:e9:d5:3c:18:13:5a:9e:2b:27:35:30:e0:ef:e5:
7e:23:b9:63:0d:11:49:47:b8:d8:63:3e:b6:56:79:
10:24:07:46:fb:f2:14:ca:f8:a1:cf:ca:c1:c2:5e:
9e:c5:7c:4b:af:a0:98:66:bf:97:2c:a0:35:61:81:
24:66:48:e8:1b:f1:6d:2f:67:f0:a4:2a:e6:a4:79:
ca:ec:07:4a:b1:b7:49:de:bb:65:e7:0d:e2:f0:8a:
4e:06:eb:50:b1:a1:6f:aa:d4:14:7f:18:c3:d7:3a:
29:0c:7f:1e:82:2c:b6:a8:2a:73:c5:d4:be:85:a3:
73:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BD:02:EA:78:64:8B:A5:D3:E4:D8:AB:C2:6A:60:B7:A3:1F:D2:C0
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:df:20:f3:f6:8a:98:e5:8b:a0:69:79:57:12:7a:32:b0:95:
66:c6:38:6d:c6:ad:c3:1d:bd:9f:c8:36:29:c3:e5:a5:16:8e:
1a:cc:ff:9c:eb:95:c7:5d:6e:47:2e:48:f8:89:e1:ad:66:56:
a8:6c:7f:16:7d:26:29:4a:f0:ce:76:99:ef:c8:d4:87:5b:1c:
c4:d6:c9:67:c7:de:b7:98:f3:10:8e:a9:f6:b1:2d:35:41:67:
49:e4:d6:d3:70:b7:d9:23:66:dd:c6:48:01:22:f1:64:1c:ee:
57:a8:d2:bf:c5:bc:1c:93:6d:2b:1e:a7:2c:06:6c:a0:b4:b7:
63:e6:a1:73:fc:e0:c9:43:70:dc:69:77:1b:a0:26:9b:d3:84:
e9:e4:12:27:cb:c0:fc:37:69:bc:17:7e:e3:cb:b8:f3:f2:31:
00:0f:dd:1b:1f:ef:3f:3d:f2:15:11:31:30:3f:6c:5d:70:e3:
28:0f:2e:83:27:57:db:52:69:81:9e:69:16:ef:ac:7b:f9:d3:
73:d2:e2:d6:c1:26:6d:40:c0:4a:a6:fe:cc:dd:a1:1d:b5:fe:
ca:01:e4:d9:91:c6:ad:27:91:c1:4c:0c:23:a3:16:ad:4c:72:
76:4d:7c:50:85:95:65:a8:95:6a:0d:5f:1a:0d:ec:62:d2:bd:
3f:cd:9c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 18:53:17 2025 by rpki-client