Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: pSc/vqH2NrsaqXrDB7zmeT5Msx1ZJ82VYd6H9F/K+Bw=
Subject key identifier: 0C:CD:6C:0D:8F:FE:F9:6B:0B:92:70:35:E6:25:34:D1:5E:63:FB:A8
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 0195116C12C2D887D409F904FB7F87F67D92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 01B6
Signing time: Mon 17 Feb 2025 01:00:49 +0000
Manifest this update: Mon 17 Feb 2025 01:00:49 +0000
Manifest next update: Tue 18 Feb 2025 01:00:49 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: NwOAbl9CYa3qlweGU37/+K6E4/2mzaXiC+jYVh1q+PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:6c:12:c2:d8:87:d4:09:f9:04:fb:7f:87:f6:7d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Feb 17 01:00:49 2025 GMT
Not After : Feb 18 01:00:49 2025 GMT
Subject: CN=0ccd6c0d8ffef96b0b927035e62534d15e63fba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:15:b7:51:8d:bf:3c:10:00:98:fb:6b:38:e4:
ea:56:05:82:43:07:72:bf:31:fc:36:20:71:86:05:
19:02:bb:f2:96:ea:f2:31:fc:bf:62:50:4b:d2:9d:
c6:9a:c4:75:a4:47:56:db:3d:89:d0:d1:f8:3b:4f:
32:30:b2:5f:cd:66:4e:6c:47:8c:80:c3:d1:a1:53:
51:df:8d:9c:ea:1b:66:4f:ca:77:ea:a8:48:e0:85:
07:19:e3:d2:27:ee:0a:a6:18:34:cf:66:6b:8e:b8:
7a:f4:0d:2b:53:d5:87:5d:c8:d3:13:c0:84:00:ff:
fe:a0:63:88:ac:a3:6b:da:8a:77:61:ca:bb:1a:70:
80:4c:63:29:d6:4e:e9:d8:7b:71:58:15:51:b4:c9:
00:f3:61:87:b7:d3:2e:a3:06:91:56:80:6e:dd:94:
d2:b4:ba:85:1b:7b:ee:53:fa:73:eb:57:ea:2a:9f:
7f:e8:36:94:b0:52:f3:92:2b:ef:91:72:7a:39:5f:
31:2f:3a:36:00:19:3f:a6:b8:3b:d4:bc:b5:f1:e7:
3c:a9:e8:06:76:5b:dc:f7:e9:bd:c8:da:e0:31:f9:
5c:ed:14:10:c2:f2:ab:61:f7:c5:b1:f8:8f:ae:02:
aa:35:ba:64:cf:28:7f:35:0a:1f:1a:87:32:4f:10:
f5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CD:6C:0D:8F:FE:F9:6B:0B:92:70:35:E6:25:34:D1:5E:63:FB:A8
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:63:0f:6d:f7:5f:e1:aa:8d:a1:0f:26:72:91:f0:cd:10:35:
5f:9d:0b:5c:65:41:c2:ad:eb:d1:d4:fd:d0:84:ef:d4:36:f0:
03:1b:5c:91:14:87:2e:9d:cd:c0:d0:b1:68:bb:93:79:a2:97:
a9:d4:79:54:44:05:e8:26:14:5f:d2:de:40:70:db:68:31:3b:
9e:aa:37:e8:2b:b9:f8:8a:fe:b6:62:cd:0a:6a:14:e3:a6:23:
fe:03:18:c6:47:4c:c5:cc:78:64:a4:61:bd:b9:2c:5a:4a:9c:
8d:5f:94:52:f5:20:97:db:9e:9c:18:37:bd:0d:1e:ba:26:1c:
d3:71:f0:d1:2b:95:c8:46:45:d9:6f:0e:64:20:d4:5b:f9:17:
8f:a8:30:63:00:21:43:94:6d:c6:01:9d:d7:d6:f5:85:7a:fc:
4a:90:fc:5a:ef:12:7f:b3:ea:79:1f:4f:79:ab:0c:db:7e:36:
cb:31:df:70:fb:74:68:aa:ca:6d:22:f2:13:6b:f2:87:f9:ab:
1e:8b:4a:f4:8b:df:aa:78:56:63:bb:d6:a8:9c:b7:a7:78:c2:
5e:50:76:8a:bd:59:5b:f3:e6:c5:89:47:f3:24:95:ea:57:2f:
7a:91:de:c6:06:50:3f:9f:ea:8a:cb:01:e4:cf:95:e9:23:b8:
71:76:89:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:49 2025 by rpki-client