Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft
File: iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft (raw, json)
Hash identifier: vT7BRaGnh7l726QSJARmAMEzmf0Yqv2CH2I5S1BugP8=
Subject key identifier: C4:A4:7B:65:1C:40:B1:82:9E:F2:E3:0C:BA:7C:DB:96:07:A6:65:79
Authority key identifier: 89:36:DF:4A:C2:F4:67:EA:66:C1:19:7A:86:29:D3:F6:4B:B5:63:F0
Certificate issuer: /CN=8936df4ac2f467ea66c1197a8629d3f64bb563f0
Certificate serial: 0196B9A3FD50A0647D8E65C9ED585DD9333D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft
Manifest number: 1177
Signing time: Sat 10 May 2025 10:00:54 +0000
Manifest this update: Sat 10 May 2025 10:00:54 +0000
Manifest next update: Sun 11 May 2025 10:00:54 +0000
Files and hashes: 1: iTbfSsL0Z-pmwRl6hinT9ku1Y_A.crl (hash: JjFEJxWbBHru7lP+EkAcFpiz+QpV2mOlV6IT0X+yXuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:fd:50:a0:64:7d:8e:65:c9:ed:58:5d:d9:33:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8936df4ac2f467ea66c1197a8629d3f64bb563f0
Validity
Not Before: May 10 10:00:54 2025 GMT
Not After : May 11 10:00:54 2025 GMT
Subject: CN=c4a47b651c40b1829ef2e30cba7cdb9607a66579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:27:50:14:aa:56:7f:e6:55:58:ea:ea:38:1c:
07:bd:6b:01:e4:d2:8f:6a:4c:d7:02:c3:0c:4d:32:
56:ca:86:d2:bd:99:93:02:9f:79:be:53:05:1a:8b:
d4:f1:99:bc:39:b1:70:6c:6e:27:37:39:3c:df:7f:
8b:d3:92:8c:67:da:35:ce:28:3a:e5:62:38:8c:68:
ce:ea:86:9f:de:d9:d3:e2:2b:f8:0a:b2:cc:13:ab:
75:02:62:af:41:d5:d1:df:c2:e0:5b:18:f1:11:fe:
50:7b:04:15:06:1c:5d:e0:1a:5b:5b:e9:90:a8:ce:
eb:4b:de:80:28:6e:51:d8:a0:72:61:e8:47:f4:9d:
93:7c:de:1f:ef:4e:34:7e:c5:16:95:3f:01:e9:3b:
e8:8e:11:8d:0a:fd:ce:fe:dc:aa:e2:12:ee:54:e7:
7c:6e:89:e6:0a:ba:d6:ec:10:c7:87:8c:7b:7c:77:
ff:ab:54:1e:2e:5d:5d:72:72:1e:5c:21:5f:87:30:
57:8d:25:8f:df:2d:30:b5:d6:b7:b8:3d:d7:b2:30:
f8:26:77:df:6a:f1:5b:46:d9:2d:8f:44:83:26:19:
35:3f:61:a7:87:17:0a:8f:d2:0d:af:53:5e:4c:46:
2c:9b:be:58:7f:28:2c:ab:97:2f:9f:6c:f3:46:0b:
05:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A4:7B:65:1C:40:B1:82:9E:F2:E3:0C:BA:7C:DB:96:07:A6:65:79
X509v3 Authority Key Identifier:
keyid:89:36:DF:4A:C2:F4:67:EA:66:C1:19:7A:86:29:D3:F6:4B:B5:63:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/7895f8-ac31-4798-8404-4e278dd48a3f/1/iTbfSsL0Z-pmwRl6hinT9ku1Y_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:b9:e0:2f:5f:eb:9c:ac:80:b9:cd:ba:7c:78:3f:17:fa:60:
83:bc:84:e1:1f:12:40:5b:fc:95:c6:4d:15:f4:4b:c0:30:1d:
58:05:16:69:43:92:94:1f:7a:2c:7c:36:e0:ad:db:0d:99:ed:
d8:11:4f:a0:a7:be:76:30:a4:15:2c:0e:88:68:c7:53:b5:ca:
84:16:f3:eb:5c:8a:d1:95:42:0e:61:8d:62:ef:5f:e2:66:2b:
4d:6e:a9:1a:66:32:92:eb:93:63:47:2a:dc:03:ac:e8:a9:19:
f0:f6:69:fb:16:49:8b:d3:cc:0a:eb:77:54:81:f4:c4:5a:eb:
f6:43:4d:23:33:f6:f7:06:b0:28:86:93:3d:b8:c9:dd:b7:2b:
13:af:7b:75:5c:60:89:39:af:9e:da:01:0b:34:a8:2b:a8:f2:
be:4b:52:0f:97:b3:6a:f1:0b:30:c8:5b:92:d9:ed:31:cd:4f:
07:e4:a7:39:1d:66:59:85:98:61:0c:41:41:05:e2:37:2d:cb:
1e:97:40:52:ad:51:aa:b9:4b:6f:1d:b6:24:07:32:03:29:fc:
47:ed:d1:34:8d:8b:ed:c7:18:4e:ea:05:5d:b8:7c:e4:e3:28:
17:c6:2f:2e:3f:4b:b0:b2:3f:4c:f3:69:6e:32:06:8b:06:e8:
21:12:42:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 17:42:31 2025 by rpki-client