Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: fwfOxLR1JtZTnc+arnzo9m89E8L0DqI205NyuS2o/v8=
Subject key identifier: 84:41:DC:96:AE:5C:57:4A:07:9D:D1:C7:7D:A8:7B:E5:76:53:AC:3E
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 01958B16796C1BF61638C456B4F1417E7204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 01F5
Signing time: Wed 12 Mar 2025 16:01:00 +0000
Manifest this update: Wed 12 Mar 2025 16:01:00 +0000
Manifest next update: Thu 13 Mar 2025 16:01:00 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: vgDVAaa0BWSbWnB57p7nYqid9++rAGpbrLtPbx5aHS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:79:6c:1b:f6:16:38:c4:56:b4:f1:41:7e:72:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Mar 12 16:01:00 2025 GMT
Not After : Mar 13 16:01:00 2025 GMT
Subject: CN=8441dc96ae5c574a079dd1c77da87be57653ac3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e7:c1:16:1d:b7:2a:c6:d4:e1:95:f9:b8:8b:
f0:c3:ff:42:f5:a7:3a:b4:31:53:02:ef:c6:f3:3a:
4d:4a:3e:6d:20:5f:27:84:8b:6d:62:77:95:68:6d:
19:95:52:fb:aa:40:b6:f7:e9:2f:a4:8e:79:00:cc:
5a:49:3f:40:03:ac:7f:2e:70:e7:29:3b:20:bc:da:
84:03:e3:e6:ba:5d:f1:97:29:25:41:ca:0c:28:ec:
13:71:5f:1e:83:39:b7:da:f1:b3:d6:3a:fa:8d:20:
18:b0:eb:28:12:d9:4f:3b:dc:9d:9b:54:29:d6:98:
8c:5c:bf:78:1c:1e:1b:2d:53:2c:90:ec:ac:e3:f9:
8e:30:6b:6b:38:c5:67:b7:ee:99:fd:e7:be:0e:ce:
de:8b:76:c3:a1:c2:c4:52:5f:88:da:5b:78:a6:e6:
44:08:f5:17:e7:1e:34:ae:98:44:93:33:22:01:40:
94:52:3f:d8:76:48:6f:03:17:eb:47:1a:e0:14:73:
99:fb:b6:b2:18:24:68:7e:18:53:d1:48:b1:ba:d3:
0b:ca:db:a4:df:59:98:ee:e4:6f:a9:37:f3:9e:6c:
40:26:3c:dc:81:ea:f2:a1:8b:a8:70:45:a0:36:4b:
21:5f:fd:11:bc:b3:d3:26:de:43:61:3e:b3:b7:ee:
1d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:41:DC:96:AE:5C:57:4A:07:9D:D1:C7:7D:A8:7B:E5:76:53:AC:3E
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:e3:09:e2:51:dd:15:15:47:53:c8:4c:ce:a7:bf:5c:1d:fd:
49:c1:88:b9:ef:62:96:78:4e:ba:b1:ca:ae:c7:f6:33:d1:f0:
11:67:b4:a0:8e:c8:50:4f:4b:fc:fa:f0:72:86:fb:b3:7e:bc:
6c:65:a8:df:a0:cd:b6:b9:90:08:b5:17:5e:c5:bc:8c:b1:3a:
ce:0e:f2:18:eb:15:32:72:29:92:23:a7:7e:2d:3c:04:97:f4:
2a:1f:8e:64:29:d1:76:ad:fe:6e:f7:0c:14:b7:08:50:bf:fa:
6f:2a:ca:94:db:5c:53:4e:85:ff:3e:8e:d9:24:4c:66:21:45:
2e:ff:ce:ac:e0:05:57:ff:92:e7:e5:06:9a:98:18:1c:84:4b:
8a:65:e2:a5:6b:2d:f2:22:79:ed:23:e8:d5:a4:67:59:5d:e1:
17:af:96:90:19:36:fe:38:0d:e4:b5:e5:57:06:bb:d3:d0:a7:
c4:17:66:e9:0a:39:e6:57:0e:e2:61:70:06:97:d0:2d:e4:72:
d8:55:a0:fc:49:95:f3:11:02:ad:2c:5e:d3:0b:34:23:07:11:
15:c0:fb:90:67:7a:14:b7:3c:e7:25:5f:ce:75:54:86:27:e8:
26:05:ca:99:d5:a6:8f:64:92:d6:37:f2:4e:7e:35:18:e1:08:
04:41:2a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:25 2025 by rpki-client