Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: no1I8nmZS65hnMFclnGQUArYzPp7tkWLUXjv7hZnrOs=
Subject key identifier: 77:D0:04:63:D2:7C:C3:1F:1C:D8:9E:6C:19:81:94:69:70:CC:05:73
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 019659B9B6CAD9DAC52C6CD56402D584AC82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0C9E
Signing time: Mon 21 Apr 2025 19:01:05 +0000
Manifest this update: Mon 21 Apr 2025 19:01:05 +0000
Manifest next update: Tue 22 Apr 2025 19:01:05 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: +CWfx4KNG/ipIDLcvK+me9KgMfgep1NaMvRAg8XUsDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 13:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:b6:ca:d9:da:c5:2c:6c:d5:64:02:d5:84:ac:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Apr 21 19:01:05 2025 GMT
Not After : Apr 22 19:01:05 2025 GMT
Subject: CN=77d00463d27cc31f1cd89e6c1981946970cc0573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d9:fc:51:f6:1e:2b:79:5b:81:2a:d6:21:75:
d0:4d:73:6a:0d:41:d2:13:aa:10:c1:2c:5b:e8:69:
04:24:e6:8a:ca:09:f7:b9:26:9a:f6:50:f4:86:53:
de:e8:a1:88:d6:86:65:90:fa:fa:b5:69:0a:9c:52:
4b:c1:58:a6:52:fa:2c:1a:85:3a:b1:13:f4:83:6f:
e3:5a:0f:55:84:1f:8f:94:e6:b4:70:48:dd:a0:40:
c0:64:c2:bb:4c:a9:d1:df:a3:aa:54:af:b1:1b:5a:
d1:14:2e:fa:66:01:cd:a3:ee:1a:f2:35:0a:85:6b:
08:2e:b7:f1:3f:74:1e:62:70:db:b8:c9:5e:49:8f:
ad:aa:74:f3:7d:8a:07:03:84:55:6c:b5:40:ab:d5:
1a:0e:b6:7b:fa:8e:11:e4:16:35:ad:8b:81:19:2f:
a7:65:a5:7f:a5:f7:e0:be:4b:9f:68:e4:39:59:1c:
55:52:7b:a2:ff:2c:9e:3e:b2:39:7c:68:91:bf:86:
7b:22:37:d3:2d:a6:42:f7:90:3f:e6:e3:47:21:89:
32:86:ae:ad:e5:66:ba:11:eb:86:f3:a2:89:00:f0:
1e:82:17:33:0a:f7:0d:6d:25:e9:ac:03:84:4d:c4:
83:d7:02:ef:9c:34:bd:c4:51:a9:25:32:7c:ed:d0:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D0:04:63:D2:7C:C3:1F:1C:D8:9E:6C:19:81:94:69:70:CC:05:73
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:a2:d9:a7:4b:f0:7e:7b:c7:d8:3f:0a:0b:4e:2d:7f:b3:b0:
6a:e5:87:85:4d:f9:ea:62:f4:67:9c:63:b3:ba:2c:fb:4f:d4:
f0:a0:01:aa:d2:3e:b1:6a:04:6b:f6:a2:30:ca:ff:8c:82:83:
b5:d2:f0:5e:f2:59:7c:2c:36:f2:63:b6:e0:25:70:f7:75:27:
9b:04:d5:2a:5b:d0:91:10:fe:dd:d4:ec:65:6f:9c:29:25:75:
e7:13:cf:9b:2e:c3:61:ed:ab:f3:b0:75:9e:6b:fc:46:86:b8:
aa:a5:e5:23:4f:ec:1b:c4:8f:ed:34:5d:3c:0a:4b:8e:d5:08:
11:3a:6a:d3:28:08:e3:63:af:f8:07:df:e4:20:9f:b3:63:e4:
0f:41:76:c6:53:92:ee:70:b5:e9:84:b8:69:0d:45:61:3b:5f:
06:ea:7f:b1:24:ff:fb:cf:5f:16:3c:d4:6e:49:ec:70:0c:33:
4c:2f:80:96:d3:eb:eb:12:7f:4e:3e:d6:e8:7d:a4:47:6a:58:
f7:39:dd:30:e4:6b:81:cc:99:e7:c9:11:29:32:78:f1:e8:aa:
86:5e:a6:a3:a3:16:12:a5:0e:7c:51:cf:96:f1:42:fa:8a:0b:
0a:b3:18:39:39:bf:29:98:c5:50:5d:05:bb:98:f7:23:07:49:
20:e1:f8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:40:39 2025 by rpki-client