Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
File: iydIPcFsMY5a__gyKTDIF_0ZLJE.mft (raw, json)
Hash identifier: TZ+GbpCRJ2e7OojnGm0ujPzEgA+mQz2vnwAj9N7IACU=
Subject key identifier: 8C:9C:EF:7B:9B:4F:AC:10:8A:00:46:8F:CF:40:6C:A2:EE:7D:4A:C9
Authority key identifier: 8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
Certificate issuer: /CN=8b27483dc16c318e5afff8322930c817fd192c91
Certificate serial: 019652366AFC34DE4ED660FE050EB2411D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
Manifest number: 085C
Signing time: Sun 20 Apr 2025 08:00:20 +0000
Manifest this update: Sun 20 Apr 2025 08:00:20 +0000
Manifest next update: Mon 21 Apr 2025 08:00:20 +0000
Files and hashes: 1: WG1KTWwRB1pYbj2P1y-YbJWElMQ.roa (hash: /RcbZ2ujStzbSPjPDGEz6Qg57WsDieIVmjOcowRraSQ=)
2: iydIPcFsMY5a__gyKTDIF_0ZLJE.crl (hash: J0Z6wbSwyMNtqDN/qT5+jgnu+p4x3wlDnPd+1w1XYJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:6a:fc:34:de:4e:d6:60:fe:05:0e:b2:41:1d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b27483dc16c318e5afff8322930c817fd192c91
Validity
Not Before: Apr 20 08:00:20 2025 GMT
Not After : Apr 21 08:00:20 2025 GMT
Subject: CN=8c9cef7b9b4fac108a00468fcf406ca2ee7d4ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2d:4b:ce:cb:e3:3b:0c:53:b1:13:e6:e9:bf:
d0:65:ca:5c:c6:26:99:60:de:fe:89:9a:b0:10:65:
55:84:bb:ce:a4:c1:df:e6:d1:fc:6d:a8:00:db:70:
8d:67:f5:98:7d:1a:f7:05:62:13:20:3f:c9:18:c0:
fd:17:e2:39:65:10:5c:a9:36:62:b6:af:67:49:e8:
49:35:1b:f0:a1:68:5c:8a:d5:80:87:19:ad:3f:92:
b4:6c:bc:d2:57:12:22:ba:6b:64:17:b0:e0:12:b2:
13:ca:ce:03:f8:92:ce:1b:f4:b9:b1:88:8c:f0:37:
bd:d6:4e:23:54:f9:4d:59:e3:15:85:1e:c7:1a:52:
be:83:21:d3:fb:8b:6b:65:6b:7a:10:bd:3b:d9:13:
5c:2e:85:87:ab:25:86:08:f9:5f:c4:d9:ad:82:67:
ff:19:e3:7a:70:64:01:0b:6f:13:97:fd:04:92:09:
03:4d:5d:30:e9:1a:13:3a:9d:a1:61:b8:8c:c0:34:
a3:64:fb:57:3b:a7:e2:66:08:eb:95:d3:47:3b:52:
c2:c2:d4:4c:01:e3:1c:c8:1c:8e:41:4f:b4:d3:c1:
34:00:15:de:c4:1d:ff:f4:01:aa:3c:a0:c7:04:cc:
bc:6c:91:7b:86:cc:fd:50:51:b5:09:88:ff:30:1d:
b5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:9C:EF:7B:9B:4F:AC:10:8A:00:46:8F:CF:40:6C:A2:EE:7D:4A:C9
X509v3 Authority Key Identifier:
keyid:8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8a:97:2b:e0:3e:d4:03:7e:5f:36:07:fb:1b:80:3a:6c:50:
75:03:97:9b:f9:f0:91:49:6c:94:ac:d3:cf:88:46:e6:96:16:
aa:c2:2e:2a:46:8e:e5:85:cf:a3:f7:6d:ae:a5:54:5d:ce:54:
5a:f0:3c:64:36:45:fd:17:f8:32:d9:d4:b3:c2:23:15:f2:cc:
1b:b2:57:b4:96:95:90:04:98:4f:9c:33:6f:84:80:23:d7:d9:
e9:c8:e6:15:4a:e3:46:bf:c0:5c:70:b6:e4:83:18:f8:c0:10:
bb:09:b4:75:cb:5d:8f:6c:9e:76:bb:df:1c:cf:ea:2a:b3:c3:
7b:0a:92:7e:c9:a3:f6:cf:7f:83:2b:63:5f:81:f9:e6:1f:ae:
e5:cb:1f:d1:6d:73:f5:35:45:c4:c4:e8:b4:bd:50:5c:a9:dd:
f3:f0:96:3c:af:b5:9b:ad:e7:07:d6:44:35:71:22:c1:0e:e7:
de:3c:cb:b7:fe:92:8f:dd:ec:c1:1b:c5:9c:85:95:0a:6c:0f:
ac:dd:82:77:48:24:d6:30:5a:c0:2d:aa:6b:cb:96:3c:32:bf:
b4:15:4e:21:2e:09:b4:f3:26:d5:6e:40:35:60:60:35:81:61:
34:67:2f:7c:0b:40:da:0f:50:45:cf:b6:94:1b:d2:0e:fc:2c:
a6:4d:99:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:00 2025 by rpki-client