Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json)
Hash identifier: x8elbe7eyYbAu4p3B7wmU930jAHw0n+JbdA/oeMQEOc=
Subject key identifier: 54:39:A3:62:A2:58:45:1B:95:5B:C3:C7:33:79:64:4D:86:5B:10:99
Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a
Certificate serial: 019656EED4F27FB9C7BCB7CD4D9065E551AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
Manifest number: 1501
Signing time: Mon 21 Apr 2025 06:00:14 +0000
Manifest this update: Mon 21 Apr 2025 06:00:14 +0000
Manifest next update: Tue 22 Apr 2025 06:00:14 +0000
Files and hashes: 1: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: HMd/7PfGXUjagoMrGpISYU8aE9njYrbiGYlFAIhPEIU=)
2: qABhsOLWjcCV2-NCnGtwC8QlYyU.roa (hash: md9z/89P3sn3nXo5h/larqHDUL4eXCPfvLewxfl/iTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ee:d4:f2:7f:b9:c7:bc:b7:cd:4d:90:65:e5:51:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a
Validity
Not Before: Apr 21 06:00:14 2025 GMT
Not After : Apr 22 06:00:14 2025 GMT
Subject: CN=5439a362a258451b955bc3c73379644d865b1099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:34:d9:22:23:3b:78:8e:6e:8b:73:e5:90:a7:
ce:01:01:63:c0:d7:c7:f9:4f:47:14:6f:37:3a:6d:
3d:13:54:bf:e0:81:2d:62:6e:f3:f2:ec:0f:47:e2:
a7:06:67:a2:fb:b8:34:7e:a6:82:1b:25:bb:7b:8a:
a0:b7:5f:7b:9f:38:32:61:0d:5a:ad:11:e2:a7:98:
bb:59:2a:25:c7:da:61:cb:01:34:f6:c1:38:13:6e:
b9:82:c7:2f:a3:9c:5c:aa:09:e3:62:54:3b:9f:24:
f4:60:91:a3:23:2d:30:31:9f:56:93:e3:84:04:87:
b8:77:b7:82:54:da:e7:6b:9b:6d:88:47:2c:bc:b5:
4d:83:b5:2b:d4:c7:24:6c:d3:ed:cb:ed:80:3d:96:
ec:46:32:f5:1f:b3:b8:39:61:b4:ed:6c:cf:2c:e4:
03:17:37:05:cc:41:b8:49:54:ad:6f:06:58:a1:9a:
70:d4:a2:13:03:dd:4f:fe:19:bd:61:7b:c1:e9:30:
43:cc:22:49:b7:85:04:2d:eb:ac:23:51:83:34:3c:
26:3c:1c:da:8f:d3:04:4b:cb:9f:8e:e4:66:01:78:
d1:1c:e2:64:b2:05:09:fb:4f:74:51:5e:de:fc:9a:
54:32:79:45:1a:67:10:b3:0b:88:6d:ff:56:0a:1e:
55:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:39:A3:62:A2:58:45:1B:95:5B:C3:C7:33:79:64:4D:86:5B:10:99
X509v3 Authority Key Identifier:
keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:44:f9:45:28:49:37:36:42:cd:e6:8e:b1:57:3a:43:09:5c:
c3:9f:03:19:f1:64:26:1c:96:2c:b6:77:c7:0d:f4:0e:cb:48:
a4:cc:19:4e:83:db:36:07:40:6f:ff:61:a6:6c:3a:93:1e:6d:
68:20:fc:44:28:6e:b7:3a:68:ec:95:e7:b5:48:69:57:5a:3a:
ee:23:53:a5:59:7c:2d:c7:57:6c:7f:1a:27:74:6d:bb:59:65:
39:50:70:09:9b:3d:50:aa:a5:d4:8d:48:20:0f:7f:27:41:2f:
d6:0a:b3:ec:8d:31:4f:15:99:7b:29:55:f6:57:85:c6:02:d7:
be:5b:a5:07:4e:1e:f0:6f:4b:a5:68:5a:85:b1:dc:83:db:16:
68:fa:59:99:2b:65:7f:07:d8:a6:6d:6f:3a:48:cb:4f:92:a3:
4c:81:97:35:c1:07:da:24:1a:79:d2:4b:e3:2a:86:e9:4c:98:
f8:98:fd:19:8c:c3:7e:2d:ad:94:ed:6d:3e:f0:6b:81:65:ac:
c3:4e:6b:71:cc:de:45:aa:4b:b7:da:8c:05:f0:d9:a9:2a:f5:
7c:65:b3:a5:91:79:46:61:4f:38:d7:58:da:d0:57:9d:e2:e0:
2b:1d:59:35:cb:92:d3:b1:53:b0:5c:11:f6:3c:96:51:1a:26:
fe:d7:f5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:56:35 2025 by rpki-client