Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: nhYp1XjMqVmEJCCKyRiqgtnijkTr4UGuGwtQk7TVX2c=
Subject key identifier: 35:3F:E8:F7:6E:40:3B:0E:02:9C:26:E6:09:E5:8A:B5:F9:78:B7:DD
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 019650ECE29D87DC9C3A596BB2E94FE714C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 0FE0
Signing time: Sun 20 Apr 2025 02:00:23 +0000
Manifest this update: Sun 20 Apr 2025 02:00:23 +0000
Manifest next update: Mon 21 Apr 2025 02:00:23 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: fjPrJ6tjGcjALPBYKRjp+xSRiIVnOmJY2jvcMC1UiW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ec:e2:9d:87:dc:9c:3a:59:6b:b2:e9:4f:e7:14:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Apr 20 02:00:23 2025 GMT
Not After : Apr 21 02:00:23 2025 GMT
Subject: CN=353fe8f76e403b0e029c26e609e58ab5f978b7dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:55:6f:c1:30:e7:a9:7f:d4:b7:b6:0c:aa:
12:8f:ef:2a:a3:ab:90:3a:02:ec:f8:67:c2:92:2c:
7d:e4:c5:38:07:a8:fc:c0:0d:bd:80:1c:9c:c8:17:
84:e6:d2:c7:9f:6a:0e:b3:d5:6d:20:4d:ae:88:cc:
71:35:9b:a5:71:77:de:dd:53:71:5b:3d:cc:73:db:
fd:65:0f:1c:66:dd:2b:73:4c:33:b9:3d:0c:e0:cc:
55:6e:de:2e:3e:cb:01:7b:c4:b5:e9:49:df:ac:83:
df:4d:ef:8d:25:78:df:62:3c:91:5a:b3:ee:0e:65:
4e:83:e8:a5:68:1b:d1:7a:00:c4:3b:ca:0b:d6:d4:
19:34:ad:46:7b:3b:d7:02:64:0c:64:99:58:56:7b:
c1:57:45:a9:c1:f6:37:f2:f8:94:48:96:02:0c:20:
f9:05:af:bf:ac:d6:25:09:f4:64:10:ff:45:f4:12:
80:c0:da:e9:ef:42:5a:e6:e8:d0:78:e8:5b:b0:92:
b6:1b:89:3f:5b:8e:32:19:63:c1:ba:3d:65:25:d2:
0f:78:8a:83:48:80:dc:0b:69:fd:44:9d:44:63:09:
ee:20:55:f7:2d:5f:53:a7:d6:38:97:9a:2c:20:0b:
b6:d8:a9:fb:f4:d2:12:11:b2:91:c0:4a:1a:17:34:
24:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3F:E8:F7:6E:40:3B:0E:02:9C:26:E6:09:E5:8A:B5:F9:78:B7:DD
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:c7:aa:8a:73:89:93:83:fc:b2:60:40:14:6a:d5:2e:45:6d:
66:9f:01:50:70:c9:64:b8:60:e6:cf:04:de:61:59:f8:e5:70:
a1:1d:25:8f:63:fb:c0:61:03:df:ef:88:d3:f1:c7:37:81:a1:
7b:cd:ce:20:cf:04:9e:bb:ee:4e:00:44:75:e9:87:7d:38:96:
1e:21:25:4e:fe:74:3b:92:48:17:78:1d:ab:60:2d:6a:40:56:
ec:08:0b:c9:89:2a:6d:a1:a7:51:71:e4:84:4e:d9:48:53:56:
bb:b1:01:59:c8:c5:6c:19:06:5b:ca:88:d1:60:08:f6:37:f7:
a5:2c:5a:c8:92:ab:d2:ac:8d:7a:10:da:86:e8:36:27:a7:f4:
8f:16:c7:86:1d:c4:89:4e:43:af:1e:d7:d7:ca:9e:62:bc:d3:
09:96:65:84:23:d7:34:2e:51:f1:f0:43:48:9b:19:e5:26:05:
ef:39:e7:29:bf:c0:ef:95:73:04:8e:5e:93:25:14:a4:cd:0c:
86:23:30:1d:80:d9:38:fa:c2:ec:aa:01:b0:95:75:29:db:2e:
80:51:79:48:38:12:c2:58:bf:28:6f:64:f7:85:bf:0b:1b:6d:
05:00:86:28:4f:a1:72:21:aa:57:04:5f:47:18:27:28:98:dd:
1c:a2:7a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:57:54 2025 by rpki-client