Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: 9zoNy5FwO6dECN/zjTtpWjKJWgqpb33UmYWcxm3nog0=
Subject key identifier: B2:CA:9D:83:E5:DB:C9:34:BE:3F:1F:E3:03:3B:22:B7:0C:55:95:12
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 01964D47256DEE8C94241B55989151A3FEAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: 9D
Signing time: Sat 19 Apr 2025 09:00:30 +0000
Manifest this update: Sat 19 Apr 2025 09:00:30 +0000
Manifest next update: Sun 20 Apr 2025 09:00:30 +0000
Files and hashes: 1: 9WCM-NfBtEzVC0bLgcXxGw_dKs0.roa (hash: +AotBLTXOYZ2qqQz68W39gfX7TdnqXgGz673AR3fS9c=)
2: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: +XeW2AqWeqCuIfGVYkW/Xomyj3hvNyxn0TKzT8I+tQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:25:6d:ee:8c:94:24:1b:55:98:91:51:a3:fe:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Apr 19 09:00:30 2025 GMT
Not After : Apr 20 09:00:30 2025 GMT
Subject: CN=b2ca9d83e5dbc934be3f1fe3033b22b70c559512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:99:3e:92:a0:0d:cf:a5:e1:86:16:26:fc:44:
09:98:1a:9d:ff:73:b6:d8:a9:92:bf:df:fe:cc:2d:
2f:db:f1:68:20:82:4a:72:b9:74:78:0e:3e:24:29:
45:bd:71:c5:88:83:24:76:a5:82:95:d6:6e:2d:df:
18:4c:14:9b:34:a5:04:86:ea:44:bc:4d:ee:3d:68:
0d:5b:b9:6f:a5:75:c2:bb:92:85:ea:56:9d:55:c4:
c4:36:fb:65:91:d6:63:93:82:ca:0b:2f:e1:2a:21:
e1:89:e7:c1:01:87:a2:7d:50:44:9d:b7:bb:f6:76:
78:f4:17:99:9a:dc:a8:e1:e2:fe:fd:40:e4:e4:7b:
4f:e8:ed:eb:4b:fa:e1:2a:78:02:02:fb:32:a0:c6:
af:18:ac:47:71:58:2e:c0:2a:61:d3:f7:ac:08:38:
9c:e7:33:13:ef:ea:54:a8:61:b3:17:3b:b0:0f:f9:
44:75:dc:c8:b9:ea:16:0c:2f:a9:22:d7:eb:44:3c:
48:5c:89:37:60:9a:be:bf:64:e5:ac:f6:ad:57:60:
a2:e5:6b:dc:31:a8:98:aa:90:18:c1:20:f2:1e:91:
f1:b1:a9:e3:9e:e8:89:75:04:6b:60:2c:b6:f0:79:
c3:09:8f:3b:85:67:37:7f:65:3b:63:a2:bc:c2:cd:
31:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CA:9D:83:E5:DB:C9:34:BE:3F:1F:E3:03:3B:22:B7:0C:55:95:12
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:48:f7:b7:d9:bb:a8:7a:42:71:39:dc:41:df:4e:e4:3f:8d:
2e:89:ed:cb:e9:fa:62:f7:3b:67:59:f9:02:ae:06:d8:93:fd:
06:70:10:20:40:5c:ec:f2:27:f5:92:7c:0c:18:4a:7e:93:43:
17:eb:78:ab:12:ea:b0:f5:64:c8:56:2f:d6:2c:90:fc:35:40:
df:58:21:f9:04:d5:ed:f0:b8:28:0c:be:0f:b8:93:6c:71:47:
2c:a7:24:07:96:b3:19:5c:b7:a8:bb:c5:8c:89:a9:45:5b:32:
70:55:14:56:6c:d3:1f:cf:61:c7:eb:e3:b9:bc:ba:2c:44:a1:
1f:7f:a5:2b:9b:a9:78:07:f0:14:2f:64:f9:1b:cb:08:62:90:
09:14:e4:c2:04:7f:98:ac:d1:19:03:f7:08:04:13:89:97:06:
2d:64:70:66:85:f3:43:93:a3:da:cc:8e:c8:96:cd:33:98:ed:
6f:5b:4a:26:be:6c:7b:7e:8e:30:06:aa:86:00:1e:f4:19:dd:
05:dd:c6:f5:42:78:c0:ef:4e:d8:0d:7a:45:a4:6b:e8:e2:0b:
3b:a1:95:ad:aa:91:6c:1d:7f:cc:be:03:2e:81:c0:13:4a:b0:
63:e0:25:a5:ab:a5:1a:92:86:2a:78:d4:62:48:fe:d1:b2:38:
93:ed:fa:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:27:58 2025 by rpki-client