Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: YJTJTrn+NhlC53Inmc5cUxEzaou9iHZvE3Hoj+lIMJI=
Subject key identifier: F7:EC:F6:5B:49:CE:7F:33:21:C6:38:5E:42:88:09:38:F2:20:72:F2
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 01963FF91448303D9CB13613BB04BA0665E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 14F3
Signing time: Wed 16 Apr 2025 19:00:10 +0000
Manifest this update: Wed 16 Apr 2025 19:00:10 +0000
Manifest next update: Thu 17 Apr 2025 19:00:10 +0000
Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=)
2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: U12jqFgbOuLWKOk93ZgF35NBcwKS8eqtZ6QHnJR/P4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:f9:14:48:30:3d:9c:b1:36:13:bb:04:ba:06:65:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Apr 16 19:00:10 2025 GMT
Not After : Apr 17 19:00:10 2025 GMT
Subject: CN=f7ecf65b49ce7f3321c6385e42880938f22072f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:c8:12:f1:71:b4:c7:1f:93:1c:be:20:63:
de:63:b4:82:da:a2:f6:f9:26:62:b6:d3:b2:7f:66:
2e:38:23:86:28:01:34:b5:f1:97:3d:a3:f2:a4:b0:
3b:1c:ad:df:73:ec:9d:79:60:83:da:0a:e7:45:1b:
5f:b7:d1:11:73:9d:93:21:d0:93:54:04:ba:e1:37:
3a:48:2d:fc:b0:6e:67:e4:8d:7a:a7:42:5b:e3:e9:
5d:bb:e6:08:dc:ee:fa:f3:41:02:0f:62:5a:b5:1e:
8b:3b:f6:48:2d:e5:d7:7d:37:2a:20:8d:8d:3c:91:
3f:b6:79:c2:fb:f8:37:46:7f:4e:6e:39:24:bd:66:
bc:b3:b3:09:ce:b1:19:a9:fe:61:ed:cc:cc:f5:dc:
76:c6:5e:55:c1:8c:51:c8:46:b1:8b:c0:a8:5f:8e:
2b:8d:2e:71:1e:63:31:d0:8f:55:0f:52:56:31:23:
51:34:6b:bc:bc:f8:e8:99:77:50:df:cb:52:0a:89:
6b:63:88:c9:a1:b7:12:75:ac:a7:e2:67:ed:40:f0:
fc:63:e3:2e:21:70:eb:85:be:8c:3b:63:7b:04:a4:
8b:6a:4e:9d:47:6d:76:cb:6d:94:cc:f8:84:64:a8:
cb:39:0e:2d:02:ac:62:9f:82:d2:3a:08:9c:4a:62:
fe:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:EC:F6:5B:49:CE:7F:33:21:C6:38:5E:42:88:09:38:F2:20:72:F2
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:98:6a:38:c6:1b:28:99:33:a9:a8:a7:4f:cd:a5:9d:f1:11:
4f:9a:4d:7d:d4:00:c5:d3:c5:63:16:99:2d:21:9d:6c:20:5e:
1a:a9:c4:ce:d3:d5:ba:9f:ea:2f:d6:0b:3c:e4:08:e9:74:5c:
41:4d:44:43:b3:d1:42:d0:7e:57:95:cf:65:97:09:94:02:19:
bb:86:d3:b3:df:b7:7a:08:a2:eb:b0:30:5b:c4:8e:28:82:73:
73:ca:8d:f1:14:e2:e3:2a:78:20:b5:3a:d6:88:0f:0f:4d:8a:
76:34:2b:58:47:00:62:7b:7a:2a:2d:d9:63:9b:9c:12:ca:c2:
9b:0d:e8:1c:16:c2:a6:c1:f4:a0:b7:6d:78:46:26:cc:eb:1e:
1e:f8:4e:3d:8d:1e:d4:c9:cc:7a:e1:15:cf:c4:9c:0f:cc:74:
15:be:54:89:a1:02:90:b3:46:ca:7a:81:e7:9a:0b:44:9b:38:
ee:ba:af:d1:49:bb:ee:28:47:27:07:ad:8a:ab:19:02:f6:10:
c7:00:d9:03:48:ee:e6:ad:1d:ef:bf:42:2b:74:29:b9:d3:9e:
29:b4:93:7b:9f:f4:20:4c:a3:1f:2c:61:2a:e5:e4:7f:97:f4:
4e:a6:b0:4a:ec:62:37:90:d7:d3:42:75:4c:ae:a8:fa:5b:b7:
f2:04:77:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:16:15 2025 by rpki-client