Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: 2sUP2a4/vTBySJ7ifwxPa+A6Q2kumQ2MX5uTSPS2NcQ=
Subject key identifier: 87:68:93:74:5C:92:C4:A5:1A:64:BE:B7:7C:B2:9F:CB:CB:19:D7:5B
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 0196BC3713D5A4E0452C6F978A6E2C2CAE1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0D14
Signing time: Sat 10 May 2025 22:00:48 +0000
Manifest this update: Sat 10 May 2025 22:00:48 +0000
Manifest next update: Sun 11 May 2025 22:00:48 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: w+YPfIqJRsOlEkS20Nw++2LL1F1KmLP3nd2FairTwcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:13:d5:a4:e0:45:2c:6f:97:8a:6e:2c:2c:ae:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: May 10 22:00:48 2025 GMT
Not After : May 11 22:00:48 2025 GMT
Subject: CN=876893745c92c4a51a64beb77cb29fcbcb19d75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0d:48:af:77:54:ea:67:36:bb:5b:7a:71:35:
78:83:4d:0d:f9:40:22:d8:f1:58:dc:d4:2d:38:f0:
8f:0d:a3:f6:3f:5f:2f:81:9e:b9:9e:08:cf:02:39:
82:36:6e:82:3f:9b:71:bd:c6:a8:5d:b7:e9:58:75:
f7:5d:ee:c4:f3:dc:31:c3:7f:b2:92:43:96:bb:2d:
7e:e3:71:6b:f2:aa:ca:56:fc:65:c3:6c:21:07:80:
89:1a:14:9f:89:2d:06:1a:f6:b5:ff:d9:01:f4:d1:
26:d6:a2:93:5f:a9:da:a0:7a:42:c6:f9:fa:c6:89:
6c:22:2f:c3:29:64:c9:87:5e:d3:d4:a1:88:07:a1:
18:85:ae:2a:bd:28:1b:93:b2:9a:0a:31:9a:95:68:
56:e7:cf:48:c4:55:2f:1c:9f:c1:e4:8d:20:35:77:
e7:ab:60:b9:11:89:5e:e5:a4:cc:55:d0:33:da:eb:
5d:e1:78:0d:07:7c:a2:d8:24:15:37:ef:b6:c9:d7:
fb:18:f9:74:e0:47:9d:6c:93:52:77:d0:91:3f:19:
cc:b2:da:a2:99:ff:1f:79:29:01:aa:8c:1f:6d:d7:
59:49:8f:f4:8a:40:8e:1c:e5:c3:fc:48:a0:e9:b4:
62:15:72:cd:89:b7:9d:25:bc:3f:61:00:62:23:0d:
f3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:68:93:74:5C:92:C4:A5:1A:64:BE:B7:7C:B2:9F:CB:CB:19:D7:5B
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:83:e8:a5:f6:25:fe:e8:a4:1c:3f:15:8b:3d:48:f4:db:6c:
e3:a5:5b:ca:c6:15:75:f1:9d:63:12:b3:8a:51:21:3d:04:9e:
eb:16:5c:27:a3:3e:57:36:0a:2d:14:f9:ca:67:8b:ff:38:b6:
be:2e:75:bc:90:6d:7b:c6:9f:fa:45:66:df:34:07:31:5e:92:
02:7b:ff:70:05:fd:ee:59:21:01:ce:17:66:28:a7:99:2e:0e:
f6:99:63:f4:1f:da:89:72:f0:da:65:e6:99:75:e5:cb:c1:21:
fb:43:61:7d:83:f7:0f:9f:7b:b7:a9:18:b8:1e:59:5f:3b:a8:
9a:5f:b9:91:24:d0:94:7d:e3:c7:e1:33:76:30:54:d4:07:cc:
a1:90:b3:69:32:e0:f2:a2:43:af:0e:a3:46:ef:f6:73:ef:52:
d2:3e:a3:4f:a4:92:37:30:5e:e9:5b:69:0c:b8:2e:06:de:a2:
eb:b6:aa:8f:17:01:d8:0f:d6:96:df:c3:c7:33:22:e3:ec:4e:
23:7a:4e:e5:19:c5:e6:f7:36:61:a9:01:de:57:71:ba:07:78:
8d:d7:e7:5c:da:1a:5f:d6:96:17:83:ae:eb:fb:20:68:6e:25:
66:11:73:0a:dc:4c:15:ec:04:17:62:4e:84:51:98:52:b1:85:
f3:40:67:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:20:36 2025 by rpki-client