Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
File: iay4iT6UGAdH7sGXXtVgTE3b4MU.mft (raw, json)
Hash identifier: wzaAokErF4dVXgL3sBNdvf6EvhFct+mJWLR/mIcuSAc=
Subject key identifier: AF:CE:CD:B1:2D:FD:C1:E8:47:34:63:CF:A5:4E:63:EF:07:4E:4B:65
Authority key identifier: 89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
Certificate issuer: /CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Certificate serial: 019644442C769F94A250DAA6EA48889FDD69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
Manifest number: 14F4
Signing time: Thu 17 Apr 2025 15:00:40 +0000
Manifest this update: Thu 17 Apr 2025 15:00:40 +0000
Manifest next update: Fri 18 Apr 2025 15:00:40 +0000
Files and hashes: 1: UoDvXAabOFEhN_Ur6iO6IlEoQNY.roa (hash: C2nYBT6rKIdGBRSYm5JfeMMp+MUUrWzb3x2zB3OMlgE=)
2: iay4iT6UGAdH7sGXXtVgTE3b4MU.crl (hash: Uf7AhVLwlxlfy1N14QfQDKi6QPtxbInU2o5ZIFMY19U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:44:2c:76:9f:94:a2:50:da:a6:ea:48:88:9f:dd:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Validity
Not Before: Apr 17 15:00:40 2025 GMT
Not After : Apr 18 15:00:40 2025 GMT
Subject: CN=afcecdb12dfdc1e8473463cfa54e63ef074e4b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:53:ca:1f:57:58:87:fe:23:33:85:dc:45:69:
f5:20:2d:bf:5b:cc:0b:41:9a:17:22:11:82:3c:50:
d4:4e:2c:2f:10:af:8e:0b:a5:72:09:8d:3c:ba:db:
0c:52:28:ce:8e:b0:0c:be:73:a8:0a:3e:1b:84:55:
28:83:d3:1e:bd:30:d6:ad:d5:05:79:7a:1f:06:90:
41:81:bb:92:0d:85:43:37:83:93:61:fd:07:9a:81:
9b:c8:02:1a:e0:e0:2e:0c:f9:4a:1c:d1:7a:2f:d1:
9f:58:24:94:8b:a8:30:2d:d5:81:52:ea:cb:20:38:
01:1d:85:99:72:1c:62:fb:56:64:2b:03:b0:9f:8e:
0c:f6:a7:0a:ed:b5:59:25:f6:18:9c:5a:20:db:d2:
77:2e:d7:17:19:33:11:69:c1:8f:29:ee:21:a4:8a:
e3:61:85:52:9d:a3:0d:98:f4:9e:c3:d2:9b:60:26:
9d:99:c9:68:8c:3b:12:81:8c:6a:49:11:a3:05:ec:
ec:4e:4f:73:f0:cf:3d:b2:0c:a1:c0:52:f8:05:10:
b7:a4:a1:b8:43:ba:42:e9:2e:2d:8a:f4:7e:1f:bd:
27:c8:23:0b:2e:82:1f:28:36:09:4e:52:2f:44:38:
92:5f:be:ed:59:7f:de:53:d3:4b:cf:52:3f:b2:36:
44:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CE:CD:B1:2D:FD:C1:E8:47:34:63:CF:A5:4E:63:EF:07:4E:4B:65
X509v3 Authority Key Identifier:
keyid:89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:fd:06:17:11:04:15:48:5b:d1:f8:45:fc:9b:9b:e3:2e:c6:
21:ea:c7:06:2e:5f:74:5e:87:5d:28:02:70:1b:e8:5c:ac:9f:
f0:08:41:08:29:f1:81:e1:1a:5a:97:c2:4b:82:d6:f5:83:a6:
1a:ba:a9:ee:d1:ec:2a:0f:e6:be:65:cc:7b:96:10:08:00:cc:
0e:49:cf:f4:80:52:18:99:ea:b0:3b:57:01:1c:5b:a7:f0:b6:
d3:50:8d:e7:4a:5c:97:1b:16:62:61:9f:cf:0d:68:83:25:9b:
2f:e8:f9:0e:d6:3b:4f:fa:65:1d:d6:31:6e:75:af:eb:69:33:
3e:ff:d3:4a:2c:69:ca:93:2a:72:b4:90:fb:2c:4b:f3:54:d6:
18:1b:1c:2e:0a:63:d9:2e:82:1e:46:2d:81:eb:ca:32:4d:8f:
1d:56:7d:89:ee:38:f9:8e:33:9e:77:e3:02:7f:75:24:f1:4f:
3b:3d:cc:aa:d8:cc:89:02:b0:50:18:b4:af:16:3c:6e:1d:5b:
81:bd:27:5e:a7:ac:ab:62:ff:86:fa:3c:b9:f0:13:7e:be:24:
1e:c8:ae:be:4f:a9:c3:a9:20:90:28:6b:b3:79:32:00:e1:ff:
14:9b:f6:e0:9a:a1:ea:29:33:2a:8e:d3:b9:a7:bf:d5:ca:e6:
32:e5:e0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:35:02 2025 by rpki-client