Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: sAXlBTWb+J8CI8d8nxeqhukj3ssFHATnH3iL1RWyZYE=
Subject key identifier: 83:00:EF:FA:30:30:32:2C:F7:48:3E:D9:49:F1:87:0A:94:09:28:03
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 0196BC6DCFB4FF1E8A424DAE9937594275EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 0EA4
Signing time: Sat 10 May 2025 23:00:35 +0000
Manifest this update: Sat 10 May 2025 23:00:35 +0000
Manifest next update: Sun 11 May 2025 23:00:35 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: 0WqzOc7QNdAJNETg+Kut0MNMZaO8C4W3pt8FBNcLUhY=)
2: oYl1-NMXXzEXtTi3L5l80mvOKew.roa (hash: HGKJcqJks4x1KvA9MPs1IeJtaKWdWbE52yFjhD/1Aak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6d:cf:b4:ff:1e:8a:42:4d:ae:99:37:59:42:75:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: May 10 23:00:35 2025 GMT
Not After : May 11 23:00:35 2025 GMT
Subject: CN=8300effa3030322cf7483ed949f1870a94092803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ac:23:4b:99:8b:bd:ce:35:f4:38:46:f4:c7:
2d:42:7a:74:00:05:6b:18:2e:e0:04:21:b8:3e:c9:
87:12:6d:01:8a:2e:26:a4:54:46:c5:dc:64:78:47:
3f:a8:5f:a9:9f:c2:ed:a5:26:fb:e8:64:d4:e6:29:
4c:32:82:e4:7e:c9:1e:4d:22:a3:a8:0c:2a:8c:92:
3d:dd:bd:7f:95:99:bd:f6:46:bb:a0:fa:c1:70:06:
b7:dd:36:1b:28:8b:b6:c5:6f:cf:b3:87:1b:0d:be:
47:45:dc:60:df:d1:0c:f5:57:08:e0:17:c7:f9:e0:
ea:9b:dd:29:33:de:e6:7b:91:38:a9:f0:1d:00:3e:
a4:7c:0f:e9:de:60:ac:70:b6:cf:35:8c:91:89:c3:
5f:bc:50:48:d4:11:76:c8:ce:bc:28:1f:59:6f:98:
17:74:bf:47:e7:a6:c4:bf:24:75:f5:4b:ea:7e:be:
37:26:07:d4:71:43:40:b2:99:64:f4:42:53:03:7d:
37:72:ea:8f:7e:ac:ec:40:68:b4:16:c8:e3:2c:9f:
ba:ab:7a:e6:01:b7:28:e3:82:1d:76:22:52:47:98:
ca:01:77:f5:3b:91:16:8e:f4:3f:b7:02:64:8d:dc:
66:73:18:df:5c:66:e0:db:22:53:ab:86:80:a8:bb:
46:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:00:EF:FA:30:30:32:2C:F7:48:3E:D9:49:F1:87:0A:94:09:28:03
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:f9:6f:aa:8a:c5:13:59:84:4f:47:fa:0f:c6:81:91:b1:55:
24:07:eb:11:cd:ec:cc:a1:35:df:33:50:51:94:40:f9:13:da:
a9:1b:6e:95:40:b4:72:51:19:98:a2:10:d5:ab:31:8b:ad:e8:
04:15:f9:00:d6:80:d7:b5:52:4b:5d:66:a2:71:6b:7d:ed:47:
69:2e:4b:b0:de:2e:0a:96:0e:d5:ce:b3:65:b5:a3:7a:18:9d:
a1:66:5c:62:9d:72:90:14:a0:c4:1a:5d:b5:f2:93:65:18:03:
4e:e2:c1:bc:5e:a4:3f:9b:65:4d:4c:17:ea:18:c0:b2:26:55:
f2:37:0f:3b:9e:42:25:f0:73:0c:d3:4c:10:52:3d:58:91:80:
8c:3f:fc:bf:fc:d6:db:34:62:f3:4b:df:c5:e7:70:71:a3:dc:
12:6b:ad:71:7c:e0:10:5c:46:96:4b:33:5d:46:a2:9c:a5:25:
5d:2d:19:f7:71:ae:38:5a:dd:0c:a6:a4:b5:96:34:fd:2d:59:
2b:f2:6f:1a:f5:5c:bf:1e:2b:46:3d:4d:46:1c:14:91:ff:c9:
87:27:e4:ea:f4:1b:36:9a:19:9d:a8:be:e7:22:2b:d8:6d:f9:
19:0b:92:f6:8c:5c:79:95:20:ad:e9:1b:58:a0:8d:56:2d:c7:
a2:94:4c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:11:28 2025 by rpki-client