Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: WBzADazIl9en2RqiHNi3yNH4SYSa0aSQ4chLATZohA0=
Subject key identifier: 86:FB:70:6C:4E:5B:BA:5A:48:2D:D0:85:83:F6:04:72:A9:AA:74:65
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 0196AEB2737EF0F4F947C4C2A1FC380FD101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 0F27
Signing time: Thu 08 May 2025 07:00:52 +0000
Manifest this update: Thu 08 May 2025 07:00:52 +0000
Manifest next update: Fri 09 May 2025 07:00:52 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: W3kvydC+OTmDdoDlgwz5bJPqc+kjKKnQJPEjP7ZSNCE=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:b2:73:7e:f0:f4:f9:47:c4:c2:a1:fc:38:0f:d1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: May 8 07:00:52 2025 GMT
Not After : May 9 07:00:52 2025 GMT
Subject: CN=86fb706c4e5bba5a482dd08583f60472a9aa7465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:49:d7:f0:a9:a7:97:10:90:eb:1b:89:51:b1:
5c:fc:37:09:95:db:d9:0d:8e:e0:e7:4e:0d:0a:39:
3b:53:49:fe:ac:55:58:54:d7:fb:36:94:de:8b:b8:
cb:99:1b:b9:70:67:fb:71:91:de:63:4f:d9:d0:0c:
1e:4f:87:99:8d:63:e1:b1:56:c0:2f:a7:4b:17:95:
df:17:c5:2d:b2:48:3d:7b:af:6c:cb:7d:7d:99:2c:
39:fa:8c:0c:ce:26:ba:f0:25:f3:5c:76:3c:e2:86:
70:1b:5f:13:c1:03:3e:ba:9f:1d:f4:de:05:cb:72:
3d:5b:b4:8f:87:66:04:2b:fe:8c:49:52:96:25:41:
94:35:13:63:0f:83:21:17:15:c9:14:2a:6c:5f:50:
6e:59:f3:b4:3d:00:c7:a1:8d:51:33:0f:4f:c5:83:
2f:38:05:51:94:ba:56:c2:65:51:66:48:92:83:bc:
e4:d3:da:49:9b:7e:0f:73:a5:a0:4b:58:f6:93:9d:
b4:10:ad:0c:2f:b7:b2:56:9e:7f:70:17:11:d5:57:
fc:36:c7:45:e7:da:cc:25:7a:9b:9e:6e:8a:04:85:
fd:fa:37:30:66:d6:23:9c:01:76:3a:4a:09:49:53:
98:5a:26:cc:60:d3:f4:48:33:26:69:e4:03:77:f4:
7f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FB:70:6C:4E:5B:BA:5A:48:2D:D0:85:83:F6:04:72:A9:AA:74:65
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:46:6d:c3:3a:90:95:46:f8:b9:a6:e0:6b:ac:8e:f3:57:95:
b3:de:e7:a8:25:92:21:8d:b6:53:48:49:e9:c6:1f:e1:79:47:
62:dd:5b:08:7f:ed:1c:58:d6:26:4a:83:4c:a1:6b:4a:44:5d:
61:6f:66:fa:fc:28:5a:d9:3e:7d:1b:ce:73:bd:06:2e:35:f1:
f1:24:60:c7:7b:9c:82:d0:18:00:ec:ff:d9:3c:d3:07:87:65:
50:2d:4f:e4:84:c4:38:2c:44:24:2a:4c:20:11:ef:90:99:42:
2f:34:6d:d5:61:bb:86:78:bd:cc:fc:69:f0:3e:80:8b:2e:64:
9c:a0:07:19:2d:ad:d5:57:26:10:3a:d9:97:4b:18:4e:11:15:
31:90:c9:6e:77:79:28:5a:e1:e9:b7:fd:bc:df:49:b8:05:1d:
2e:2f:64:78:e0:42:9a:3e:cc:19:c5:e7:8d:81:20:14:79:62:
9f:a9:2c:f7:1a:fa:5e:a6:3e:d4:1a:3c:20:57:07:1c:a5:a9:
e8:a5:d5:41:d0:7f:d0:5f:e7:6a:50:a1:fb:90:e8:36:01:85:
4d:ef:ce:4b:a3:6f:8d:e6:1f:cd:02:89:d8:21:f6:d2:42:f6:
d9:47:7a:a2:bd:bb:b4:c6:73:96:51:52:7a:2d:e0:79:d9:41:
b8:19:b5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 10:11:04 2025 by rpki-client