Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
File: iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft (raw, json)
Hash identifier: 1YEEA7bnjxqoixg7EVgSxvuYgX/RhbGnTKbmZBiAlXA=
Subject key identifier: 4D:84:1D:0C:5A:19:78:EF:6E:24:43:7B:FB:98:AD:2E:C5:22:8C:4B
Authority key identifier: 88:E8:82:BF:96:4F:70:92:C4:3C:DC:F7:55:0D:E9:56:2C:26:A0:28
Certificate issuer: /CN=88e882bf964f7092c43cdcf7550de9562c26a028
Certificate serial: 01974AB17365F0B6AA74AB3D372C53EC4FD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
Manifest number: 01CD
Signing time: Sat 07 Jun 2025 14:00:32 +0000
Manifest this update: Sat 07 Jun 2025 14:00:32 +0000
Manifest next update: Sun 08 Jun 2025 14:00:32 +0000
Files and hashes: 1: UZVUY94sqKLEh0icWoOQh0bntwI.roa (hash: vpvG9SY3H1VjvlXeI35sSNyZFm3fdFFooAVPM0TU2c0=)
2: iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl (hash: 0QqjN/XdTLx6xh+/+iJ/zX946Df71FFxQ1EaTMB/ddc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:73:65:f0:b6:aa:74:ab:3d:37:2c:53:ec:4f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e882bf964f7092c43cdcf7550de9562c26a028
Validity
Not Before: Jun 7 14:00:32 2025 GMT
Not After : Jun 8 14:00:32 2025 GMT
Subject: CN=4d841d0c5a1978ef6e24437bfb98ad2ec5228c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:bf:9b:1c:e0:77:59:5b:21:15:62:ce:64:84:
f1:c9:c0:60:c2:93:7f:81:13:55:17:10:f6:04:24:
55:40:5a:c0:86:22:06:d5:0a:b1:ee:a7:28:92:1a:
ff:2b:36:5d:be:84:50:c4:5e:d3:a3:9e:d2:a2:4e:
0a:96:63:73:8c:0a:d6:08:01:58:51:2d:6d:84:61:
59:56:04:d8:71:0d:11:af:ad:1c:e8:86:78:aa:3e:
27:af:b5:20:68:f8:f8:b5:ec:7e:fb:f2:39:df:94:
7a:d2:2e:77:74:3e:67:4c:3f:10:1c:c4:19:4d:a9:
98:e1:87:f4:54:40:e2:f0:df:f8:39:39:0a:53:c2:
20:80:29:9b:31:76:63:d9:f2:e0:ea:0e:1c:c2:69:
a0:5a:e7:39:80:73:44:85:45:1b:cb:d1:14:64:d9:
34:3a:21:98:a0:aa:92:09:c3:72:b1:2e:88:37:cc:
a5:e2:de:3c:d8:3e:fb:42:de:8e:5d:5e:ce:65:15:
d8:da:df:af:2d:df:2b:82:06:f0:8c:2c:72:3d:c6:
a1:da:ce:81:59:f7:ff:7a:14:60:2e:79:3e:9a:bd:
9c:2c:05:01:09:08:2a:45:e8:aa:c0:df:65:db:03:
77:69:43:23:89:ff:e3:57:df:0a:e8:21:08:f5:fb:
ba:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:84:1D:0C:5A:19:78:EF:6E:24:43:7B:FB:98:AD:2E:C5:22:8C:4B
X509v3 Authority Key Identifier:
keyid:88:E8:82:BF:96:4F:70:92:C4:3C:DC:F7:55:0D:E9:56:2C:26:A0:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ff:c0:6f:87:cf:6c:90:32:4b:d7:6f:0f:b6:85:9b:5a:2f:
f3:1b:d6:17:16:36:f7:01:cd:a2:d3:e6:57:5c:67:06:af:40:
a5:ad:ee:30:4a:49:ac:2e:db:6f:b5:38:9c:ee:70:6a:7e:4d:
99:9c:ee:51:91:44:fb:56:16:75:e1:3f:89:8e:72:fc:83:dd:
31:b4:85:9b:9e:0a:e8:15:19:47:fd:95:2a:e8:43:6d:4d:1d:
d0:cc:23:ae:4d:b4:fe:29:da:a7:70:7b:f1:66:c0:79:d4:b8:
86:51:a5:dd:f9:d4:47:7e:fc:ba:f5:36:a3:39:6c:ce:53:fd:
0e:03:d6:e0:43:ce:f0:c7:db:c6:80:6c:3d:76:eb:05:be:6a:
0c:07:2e:9b:15:bc:1d:8e:27:da:4a:46:3c:f1:d0:e1:63:9c:
95:e7:9c:78:90:7d:4b:b7:c5:3a:49:df:08:fe:bf:8f:d2:13:
4e:f2:62:21:38:5d:c8:08:53:6a:fb:32:ce:75:23:a3:44:c9:
46:d4:dd:98:71:79:67:42:83:59:7d:ff:96:15:44:04:70:d2:
53:13:60:1b:5b:87:ff:d9:64:76:f8:fa:ac:ec:82:1f:9c:a9:
56:f0:e3:8f:96:f1:c6:fa:03:ea:fc:b7:79:6b:51:4a:5a:cd:
49:cf:96:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:02:30 2025 by rpki-client