Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
File: IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft (raw, json)
Hash identifier: 8GKqaWnNkeF4GzIzw23epEBf3TdHtiPiF3tVd+bMHqs=
Subject key identifier: 56:AB:32:5B:1E:DE:B4:C1:31:E3:67:D8:27:DC:28:8C:94:28:C3:CB
Authority key identifier: 21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
Certificate issuer: /CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Certificate serial: 0196B7B587C1F8A4BA313EB3275819D68BAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
Manifest number: 0521
Signing time: Sat 10 May 2025 01:00:49 +0000
Manifest this update: Sat 10 May 2025 01:00:49 +0000
Manifest next update: Sun 11 May 2025 01:00:49 +0000
Files and hashes: 1: IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl (hash: jZrsICK6PVeBnWbv8P5i/SBKMGFX9I41lz7/jVfZySk=)
2: ZXtK8i0ZkTBxTFkF4gT8SCIZTmw.roa (hash: KikSjMlfZMQPJYB8hmRvlc00FrgqM6UWZDTUG/QEicY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:87:c1:f8:a4:ba:31:3e:b3:27:58:19:d6:8b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Validity
Not Before: May 10 01:00:49 2025 GMT
Not After : May 11 01:00:49 2025 GMT
Subject: CN=56ab325b1edeb4c131e367d827dc288c9428c3cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7b:d7:ab:75:c2:10:5b:b8:0c:c8:ae:22:30:
9a:1c:63:e5:bc:d7:a1:8c:6e:40:a6:4f:9f:2a:da:
61:0d:01:de:f3:8c:e8:74:90:de:73:62:9e:f0:36:
da:f8:99:00:71:a7:02:2f:9b:62:6a:20:b3:94:6f:
b5:db:93:48:7c:6b:82:30:88:e1:98:a0:3d:6f:11:
61:09:7f:ff:34:47:a7:8d:e5:16:69:41:e4:8f:5a:
8b:a0:f6:fb:4f:e2:09:bc:bd:d5:84:49:4a:73:73:
42:99:17:a9:ed:0a:90:24:13:17:59:4c:50:b4:3f:
f8:98:69:31:d5:b1:88:1f:63:05:7b:15:a9:4d:c4:
c9:33:60:5e:67:e7:c4:0a:c8:03:d3:72:d6:d7:b5:
53:24:af:bb:38:9a:63:45:46:15:6c:33:b0:9d:3f:
af:e6:79:0b:b3:97:3c:ae:f2:fa:49:b8:9a:ce:fb:
19:ba:59:13:84:d1:87:f7:56:5c:7d:2c:10:10:df:
ed:cd:85:b3:63:57:e1:90:86:45:db:61:e3:6a:ae:
3b:c1:8b:3a:98:10:00:79:5d:0f:95:c7:54:e5:36:
fd:50:ca:84:a2:98:59:f9:e4:94:2a:ce:bb:df:4c:
ca:f2:62:4c:bb:98:55:f7:91:d2:ba:07:b2:2c:dc:
91:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AB:32:5B:1E:DE:B4:C1:31:E3:67:D8:27:DC:28:8C:94:28:C3:CB
X509v3 Authority Key Identifier:
keyid:21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:2a:fd:59:d1:ac:cb:c3:12:f3:08:f3:2d:50:29:ac:1e:4e:
ff:f1:95:c6:3a:de:4e:fb:99:52:51:2c:54:96:b9:29:99:17:
00:08:18:54:01:80:81:f8:75:97:17:2a:4b:da:54:29:1a:d5:
18:99:d9:73:e0:5f:d0:0a:8f:4d:7d:fa:7a:a4:57:5d:bf:d2:
c0:68:00:87:b3:0c:01:44:e7:b0:72:91:8e:dc:ce:84:71:b5:
05:12:33:ad:da:1e:98:4e:87:ae:b5:ca:99:74:f8:e3:8a:57:
10:3b:4a:56:3c:0c:8c:af:bb:7b:6c:b1:29:bd:b0:ef:57:6e:
d9:9d:bf:40:f4:7a:d2:fa:54:e9:e5:ed:47:dc:1b:a5:a6:d7:
24:2a:74:9b:0f:df:a0:51:5c:78:63:46:b9:a2:d0:52:37:fb:
fd:49:38:98:01:2b:5d:80:e9:a8:c9:b0:65:ee:72:67:6c:7c:
b6:3d:61:ba:94:5e:1e:71:1d:03:c0:d0:69:44:6e:71:eb:3c:
16:df:06:03:ce:3c:8f:61:4c:0c:cc:a7:c6:f8:c5:03:43:ab:
23:0a:36:57:79:8d:26:0d:60:2d:cc:c0:27:f9:ea:3c:1d:e9:
74:72:20:1c:c4:37:1b:b8:5e:57:54:cd:f3:b8:72:0e:f9:17:
72:e1:db:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 06:55:44 2025 by rpki-client