Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
File: IxMMmax6pAhscXVxFKQWP4AJAUI.mft (raw, json)
Hash identifier: 8FlJcR2Y4umFM36OKO2JSm2GoIAxJR0A9/kOMxFjWUg=
Subject key identifier: 42:7F:4A:64:4D:D6:BB:25:EB:0A:0A:23:21:E1:0C:7B:8D:B9:FD:0B
Authority key identifier: 23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
Certificate issuer: /CN=23130c99ac7aa4086c71757114a4163f80090142
Certificate serial: 0196A91DC0281C45E7532E75BEFE271400CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
Manifest number: 0872
Signing time: Wed 07 May 2025 05:00:21 +0000
Manifest this update: Wed 07 May 2025 05:00:21 +0000
Manifest next update: Thu 08 May 2025 05:00:21 +0000
Files and hashes: 1: 7LeNtT1Py-375udT6tgnEczdaA4.roa (hash: KcUWkl6MBuk85woap7zLa0rzE+sobb9Vo8npqesilrw=)
2: IxMMmax6pAhscXVxFKQWP4AJAUI.crl (hash: PUnzWayqXm1Snoz5w4qWvg1sJJbrE5emkPU2qE/8Smw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1d:c0:28:1c:45:e7:53:2e:75:be:fe:27:14:00:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23130c99ac7aa4086c71757114a4163f80090142
Validity
Not Before: May 7 05:00:21 2025 GMT
Not After : May 8 05:00:21 2025 GMT
Subject: CN=427f4a644dd6bb25eb0a0a2321e10c7b8db9fd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1c:76:9d:4f:64:61:24:a3:2f:34:4a:3e:f0:
a2:75:3b:ba:87:58:77:e8:15:a5:be:87:49:1c:68:
e6:ea:76:36:85:a8:77:03:07:92:7c:b1:2c:72:7c:
f7:83:c8:2e:35:8c:02:08:e2:c6:9f:56:a1:61:5d:
11:83:3c:4a:d4:b8:a9:2b:cb:d5:e8:5e:52:77:a6:
88:ab:af:8e:6e:1b:b6:89:5f:21:25:7d:ef:29:aa:
62:15:86:cc:39:11:fe:8d:2b:fd:08:1e:be:06:1d:
c0:36:f5:f9:c9:bb:79:92:a9:fd:33:ea:62:a3:7d:
a7:68:55:a9:fa:07:87:74:67:06:c1:0c:c6:23:c0:
1c:6f:04:19:d8:b4:4e:2f:0c:c2:37:2d:68:f8:79:
c5:90:fc:8a:b9:ac:0b:dd:8c:4c:96:d2:ba:76:13:
02:e5:c2:0a:5e:5f:9e:5a:10:64:2a:45:31:31:16:
a5:ed:1a:f2:1d:f8:83:1d:61:32:18:85:0f:ee:89:
e9:e1:2b:24:98:41:6f:5d:ad:ba:59:e5:47:f2:cb:
f5:c9:d0:18:24:a8:d8:7d:bc:d9:36:b9:a2:da:c8:
6c:c3:30:cf:68:b3:5a:55:09:05:77:da:9e:78:b2:
13:70:ca:3c:63:9f:c1:38:b7:31:06:e8:41:57:06:
a0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:7F:4A:64:4D:D6:BB:25:EB:0A:0A:23:21:E1:0C:7B:8D:B9:FD:0B
X509v3 Authority Key Identifier:
keyid:23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:9f:d7:db:ef:73:99:21:26:b8:ad:ac:bb:aa:24:65:84:07:
81:1f:75:36:4f:25:c5:18:73:d3:37:ee:b9:81:36:17:b6:e9:
7e:d1:f9:6f:9b:41:66:97:f3:32:03:70:1a:4f:46:ba:b0:7d:
f5:6a:82:2f:dd:57:9f:06:91:1c:77:03:8e:60:c0:0d:34:87:
05:a6:1f:be:3a:31:a0:48:99:90:61:05:ce:33:83:4e:73:b2:
a8:79:d6:ff:39:12:a8:e9:f1:8f:a7:69:c5:f4:33:74:7f:bd:
69:7f:25:55:81:83:a3:37:ce:16:52:6f:52:75:75:db:94:55:
d9:69:7e:9e:5d:f6:4d:f3:4b:f6:39:c2:d9:30:7a:c2:27:ed:
6d:65:15:f2:99:7e:4f:ab:a3:d8:13:2a:0e:f9:30:5f:cc:79:
73:36:9a:5b:4e:d8:94:72:2c:55:a2:23:8d:b8:04:8f:19:87:
10:e0:9b:cb:18:d0:1e:a5:08:de:75:df:bf:a0:f3:e4:a0:c6:
69:5b:cc:79:3a:aa:ce:95:c0:4e:44:ed:54:9f:a4:95:4a:fe:
e5:81:4e:29:27:fb:70:9b:9d:4b:c3:b8:00:f6:13:44:08:92:
5e:95:69:9f:1d:70:c3:f1:53:9d:c9:b2:b6:e9:24:73:92:b9:
a4:da:55:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 14:10:19 2025 by rpki-client