Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: sCXp+JkhbrXcPGoRNhtPejM1XWDvHTQc2/eiDDMBxM8=
Subject key identifier: 01:B5:22:29:2B:5B:EE:1A:7A:60:F0:60:F2:36:AE:07:F2:D2:EF:8A
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 019659B95DAC94971FC4E8F7B26AF7D491FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 0260
Signing time: Mon 21 Apr 2025 19:00:42 +0000
Manifest this update: Mon 21 Apr 2025 19:00:42 +0000
Manifest next update: Tue 22 Apr 2025 19:00:42 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: u6g8iYV2gXZXspUW14QbNRqoAFy3D0Py0hyWmR7gxHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:5d:ac:94:97:1f:c4:e8:f7:b2:6a:f7:d4:91:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Apr 21 19:00:42 2025 GMT
Not After : Apr 22 19:00:42 2025 GMT
Subject: CN=01b522292b5bee1a7a60f060f236ae07f2d2ef8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a2:6e:b2:00:bc:8f:1d:bf:fd:fb:9c:6f:c8:
4c:91:2d:4b:79:14:45:be:05:ee:eb:bb:d1:7e:b2:
c9:89:3d:f0:21:eb:d6:5d:b0:64:4a:66:dd:3b:b0:
5f:03:03:07:d8:00:75:1d:d1:87:ce:ad:05:47:ba:
78:65:2d:3c:32:47:49:4c:eb:48:29:8e:e4:c7:21:
d0:86:09:f1:7d:77:13:51:c2:72:8a:f4:ff:1b:1f:
bc:0d:a6:c2:e3:5a:48:e0:6f:f1:76:65:8c:2e:79:
b7:3b:35:59:2f:64:bc:3b:8d:db:f9:09:50:23:ff:
62:d0:65:ce:2f:0a:90:73:61:9c:a6:ea:6a:80:09:
17:2b:e7:95:9c:a5:8d:58:33:43:43:0b:16:e0:62:
e6:e5:93:4e:02:b2:c2:33:49:76:4b:79:a9:d4:8a:
17:56:83:c6:2d:b8:ce:7f:32:1f:08:d3:6f:84:fe:
b6:e0:f1:4e:2d:d4:ce:2f:fa:69:a5:b8:bd:31:0c:
5e:60:0c:9d:dc:1d:5b:f8:88:e5:da:76:9e:fa:90:
ce:44:29:b9:c2:38:60:be:6b:01:81:ba:00:ee:62:
02:f2:c5:90:8a:cf:b7:6f:7b:9b:3d:0a:5d:a7:c1:
fa:1b:fc:50:8a:68:e7:0c:c4:69:e5:ea:63:fd:bf:
76:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B5:22:29:2B:5B:EE:1A:7A:60:F0:60:F2:36:AE:07:F2:D2:EF:8A
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:c7:7a:ea:bd:64:4d:69:6e:96:5b:ef:42:93:90:e4:a1:72:
f7:5e:36:3b:23:55:b2:94:5a:77:cf:21:08:2a:18:aa:cd:79:
cc:0d:ff:7c:0c:29:cf:8b:cf:93:12:d8:66:81:70:46:99:a0:
90:5b:ce:d6:39:b3:9b:a9:4a:01:32:c9:cd:b8:28:6d:4c:54:
f0:21:31:0f:b4:14:cb:25:47:c5:40:14:22:c3:33:c7:17:16:
de:a7:db:d2:2d:d4:43:c9:4d:65:cf:0f:33:0a:42:7d:18:bb:
9a:cd:66:3d:e4:8c:82:8b:e7:fe:7e:58:5c:ab:77:19:70:ba:
49:c0:50:cb:dd:e2:80:23:9a:ec:d1:3c:b4:ce:12:cc:da:ab:
a3:c4:c7:c2:d7:56:35:66:68:27:94:fc:7b:ab:7e:01:ee:29:
25:c3:b5:4b:bd:ff:72:8d:55:06:fe:d1:1f:a5:f6:b4:a8:4e:
31:90:98:29:58:fc:eb:95:3b:f3:40:df:cc:9b:19:d3:a1:47:
fd:2c:b8:d5:b8:e4:be:49:3b:d0:f4:8f:1d:7e:93:e0:25:51:
da:75:71:8c:58:dd:57:2f:dd:12:06:55:74:98:37:d2:43:90:
5e:07:93:9d:fd:7b:2c:66:ec:d3:55:62:0b:67:be:9a:df:66:
72:53:30:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:22:26 2025 by rpki-client