Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json)
Hash identifier: 3Z9/F1RMP2mlNNhC5luXCBUdgcg2YJ+mdSaeaAILsoM=
Subject key identifier: 72:8C:47:44:98:20:80:68:63:8A:B0:47:17:D7:07:C5:D6:8F:9B:94
Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Certificate serial: 0196458DB022A352B5E500B56E2DB46920BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
Manifest number: 14FC
Signing time: Thu 17 Apr 2025 21:00:35 +0000
Manifest this update: Thu 17 Apr 2025 21:00:35 +0000
Manifest next update: Fri 18 Apr 2025 21:00:35 +0000
Files and hashes: 1: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: 3ztUzoAldKWNcHCwZgr7wy+jlLnWu/jLa4Yex+0QqRE=)
2: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=)
3: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=)
4: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=)
5: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=)
6: cf3WHfeWDYu7TWnELnXzycteCaY.roa (hash: TcxuwVKWwTiShtI0Unrv/gZ/YwHGK8T1H3ocBzBxMZk=)
7: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:b0:22:a3:52:b5:e5:00:b5:6e:2d:b4:69:20:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Validity
Not Before: Apr 17 21:00:35 2025 GMT
Not After : Apr 18 21:00:35 2025 GMT
Subject: CN=728c474498208068638ab04717d707c5d68f9b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d7:27:5f:05:c7:14:5d:18:f5:b9:34:fc:d1:
d1:55:e1:34:2a:02:74:78:0c:08:b1:ed:c0:3c:88:
6f:ee:b1:e9:5d:69:7e:0f:23:72:ae:af:04:10:fb:
62:c6:c9:f2:b3:b3:c6:39:b7:0d:e1:07:2e:34:9b:
76:16:ca:b2:ea:58:6b:ff:36:28:93:e2:49:22:ae:
02:63:64:de:a9:60:af:58:6e:a9:4a:f0:b8:f4:c7:
1d:c7:39:e4:5a:04:40:c1:05:33:53:c5:56:3c:f0:
38:41:d2:89:ac:01:57:10:55:ef:ea:7c:e9:6d:77:
d4:9a:57:f3:59:91:98:06:b7:73:56:ee:48:58:a2:
3d:04:42:74:90:85:bb:57:b5:79:2f:ff:b9:e5:0a:
d9:b2:d5:9b:92:d0:40:4b:55:22:57:bd:4c:a1:0e:
91:5e:50:d7:d9:00:07:e5:1e:77:ff:8d:3e:bf:60:
a6:34:18:84:3d:9e:5b:69:a5:40:4d:7f:40:a2:1b:
44:88:75:6c:90:04:4a:75:66:32:07:65:16:db:18:
bd:c5:12:1b:55:2e:ab:6c:76:29:d4:87:bd:6f:f3:
f9:a6:15:3c:00:d5:dd:61:de:98:4f:1b:41:4f:e6:
65:ad:1a:87:ec:07:c1:f0:40:d7:98:db:8a:0b:41:
9e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8C:47:44:98:20:80:68:63:8A:B0:47:17:D7:07:C5:D6:8F:9B:94
X509v3 Authority Key Identifier:
keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:6a:e1:bf:92:08:bb:17:1b:e5:bf:86:77:36:b2:61:50:f2:
21:0b:3d:ba:de:8e:14:01:73:35:08:fb:74:46:52:67:f7:7a:
f4:13:28:4f:7e:b9:81:e8:18:0d:a4:00:50:f0:2e:b3:96:8f:
55:06:38:ea:84:ed:58:4d:ff:e5:c1:8a:88:d0:e6:6b:e4:69:
cf:4b:96:6a:df:f6:33:89:fb:32:5e:36:a2:cf:53:d3:0b:cf:
2d:74:04:e6:8e:37:15:c3:77:5a:63:3c:4c:d5:94:79:95:fa:
e6:c1:6f:ae:fa:ca:c2:bf:98:af:fb:2d:ab:b2:53:44:e3:71:
6e:8d:2d:22:30:d7:23:aa:d6:16:91:38:06:3f:95:a8:7b:20:
b0:ac:7d:12:59:f0:9c:a2:f8:7a:38:ba:2d:58:b3:eb:b1:71:
15:1b:40:d1:20:62:32:2d:91:d2:1a:50:8f:41:d8:e8:96:6b:
ba:2e:7a:ee:fb:4f:cd:28:86:2a:1b:a8:81:d2:cf:a5:2c:13:
3c:24:99:aa:57:82:ec:46:3d:56:42:3c:35:a6:58:e2:74:01:
66:96:03:62:90:36:ff:48:3b:0b:17:3c:1e:5e:b4:0b:23:79:
86:77:08:1c:36:c2:78:8f:64:f0:e2:c6:a0:f3:45:12:02:61:
cd:85:97:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:56:19 2025 by rpki-client