Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: aiLSIThBsezs8ANgpQeA6fe+fb5mxg5/uYCHSHiCrwo=
Subject key identifier: CF:1D:D1:61:AC:50:84:B5:E1:C6:19:1A:43:71:B2:A7:16:25:A8:C0
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 01963B41198F92D161E830A1737A7AAC5D67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 1102
Signing time: Tue 15 Apr 2025 21:00:44 +0000
Manifest this update: Tue 15 Apr 2025 21:00:44 +0000
Manifest next update: Wed 16 Apr 2025 21:00:44 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: LNrFk28vLK9L1IlKbCKvZCY1NxXto196tUHkAmaHKfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 21:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:41:19:8f:92:d1:61:e8:30:a1:73:7a:7a:ac:5d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Apr 15 21:00:44 2025 GMT
Not After : Apr 16 21:00:44 2025 GMT
Subject: CN=cf1dd161ac5084b5e1c6191a4371b2a71625a8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4c:05:11:bb:b0:89:59:45:f7:77:38:e5:94:
e0:bb:a7:46:c0:77:f1:e6:f7:e3:3d:08:a4:65:e7:
8e:00:c3:6f:6b:cf:57:cb:1a:c4:6c:1a:27:63:89:
88:67:98:63:68:84:2e:a3:4b:b2:9f:21:c1:a9:f1:
fa:df:6c:30:ed:7f:d2:ed:0a:98:06:ab:d0:6f:51:
03:96:12:62:e5:b6:9c:76:fb:a4:e7:d2:21:44:d5:
4a:87:94:56:06:3a:0e:7c:2b:67:1e:c0:06:5a:b0:
fc:cd:be:69:1a:83:88:90:45:c8:03:e1:82:5d:06:
09:40:33:d8:6c:29:03:88:65:2b:3c:6f:6e:ad:c5:
e5:92:f3:8c:dd:6d:f0:72:5e:6a:3e:16:93:e3:51:
3e:52:42:0c:8a:cc:dd:ed:74:e6:4a:d6:74:c3:74:
c5:9a:dc:65:a5:c8:a6:b4:fc:78:44:de:34:bc:61:
28:17:6c:70:72:97:51:70:07:2f:57:47:44:9a:ad:
46:64:09:f8:1c:b5:02:fb:d4:95:e2:30:b8:ba:40:
1f:94:4f:0b:5a:09:e5:37:7c:32:bb:a0:c0:77:36:
55:aa:ba:5a:99:a5:15:0b:2d:5f:bf:46:12:7a:5b:
83:66:a9:6b:2b:49:61:81:9c:da:45:cf:1c:12:17:
03:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1D:D1:61:AC:50:84:B5:E1:C6:19:1A:43:71:B2:A7:16:25:A8:C0
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:74:a3:7b:cb:e3:4c:e6:77:f1:fa:7e:85:41:6b:7e:ef:15:
a3:24:68:a9:69:02:1e:bb:ba:73:ff:ee:21:f7:0e:46:b7:ac:
5a:1c:6b:4f:cf:27:1d:8c:c8:47:26:69:0f:0e:db:d2:07:e1:
48:fa:36:1a:fe:64:00:59:14:58:72:39:dc:19:ba:3a:cb:e0:
28:5c:3e:91:32:3c:77:7d:bc:09:a4:12:7b:c0:d0:92:e6:e8:
4c:b4:b8:51:bd:fb:87:fe:21:cc:f1:12:cf:a0:aa:8f:81:8e:
67:73:0e:ba:13:43:88:86:0d:ab:b3:90:fb:af:8c:be:aa:25:
ae:ab:16:09:03:28:a2:8a:dd:2d:bc:f5:af:d4:e0:2a:3a:f2:
55:8a:ca:d2:6f:a8:c7:fd:7e:c5:27:95:26:f8:c1:b0:4c:db:
71:56:cc:0c:17:96:b1:25:a7:a5:a8:fd:1a:f6:c4:62:85:f3:
cb:14:3a:ce:e5:93:17:a2:42:a9:37:2b:58:52:67:7a:26:c6:
a7:cd:5e:65:f7:33:76:aa:c2:37:02:5b:59:ad:94:ce:cd:73:
fb:42:3c:d4:6f:5c:13:cf:26:f8:5f:29:64:15:c5:cc:1d:c8:
8f:85:5e:87:bd:a1:28:c5:cd:f7:d5:02:7b:df:45:fd:a4:7f:
94:79:a6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:07:33 2025 by rpki-client