Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
File: IKf8vlkxTDcraPIyIjgoseM6A-w.mft (raw, json)
Hash identifier: FftcDZdJ5rxf2+bAOrwhdr/9YS8dcGHf7LkoVKWKdKU=
Subject key identifier: 1D:ED:D9:FF:52:2E:E2:22:E5:C7:1C:13:67:0B:48:C5:AB:20:F1:87
Authority key identifier: 20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
Certificate issuer: /CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Certificate serial: 019643D648C97B136024A223EE8C5C9BC92A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
Manifest number: 1154
Signing time: Thu 17 Apr 2025 13:00:38 +0000
Manifest this update: Thu 17 Apr 2025 13:00:38 +0000
Manifest next update: Fri 18 Apr 2025 13:00:38 +0000
Files and hashes: 1: IKf8vlkxTDcraPIyIjgoseM6A-w.crl (hash: Lkbw+UXJDq1GV5sGANFTynxm+T7gaaqGBweUlcYNQZM=)
2: d-01XFis9cLH8BZUIJJWfcsmDG4.roa (hash: NudOKOFu9rScWQsymrxK2r70c3aFtGLF+JDUyVcCcnw=)
3: rwFlopf5Xa6Dqk29FmnWdxdlBsc.roa (hash: sHbPcAOKBddNPUyuRRzIjyvQe1AGIhhOwA82JfuKSsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:48:c9:7b:13:60:24:a2:23:ee:8c:5c:9b:c9:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Validity
Not Before: Apr 17 13:00:38 2025 GMT
Not After : Apr 18 13:00:38 2025 GMT
Subject: CN=1dedd9ff522ee222e5c71c13670b48c5ab20f187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ea:e8:15:0f:e3:0d:fc:27:f0:96:56:af:11:
42:bc:93:20:18:19:cb:dc:c8:71:7d:15:64:fb:5f:
a6:48:bb:a6:e9:8a:da:2c:78:fd:f4:d6:59:e8:b4:
d3:9c:f8:2b:e9:ee:0c:9c:2b:c6:f7:69:2c:9a:c3:
48:4c:e8:6c:a7:13:4d:a3:75:b4:6b:e1:e6:2a:20:
8b:93:81:d9:5c:0e:7c:66:b2:04:6f:b5:ab:54:ee:
29:e9:29:88:92:b8:b1:fd:2e:bd:79:f2:32:50:bd:
9d:40:8c:66:4a:9d:ad:9f:e7:95:94:32:67:c1:d9:
ea:f5:e4:71:ae:96:24:54:6b:0f:6e:b8:d7:cb:84:
6a:18:ef:11:25:31:a5:22:e5:1a:38:8d:89:95:17:
7e:4e:f7:b4:bf:63:bc:86:b8:78:ae:01:df:41:72:
f9:6b:a0:a2:d5:22:f6:c8:f5:52:a6:3d:51:91:a3:
96:81:9d:fe:24:4d:08:45:df:1c:2c:eb:ee:92:f7:
53:92:d1:36:4f:96:f7:e8:92:21:31:38:08:db:51:
3a:b6:f0:9b:8e:c3:f9:d2:49:7a:ba:58:ab:f7:10:
61:bd:f9:9e:98:a0:ef:ef:3d:c9:4a:e0:c1:33:9e:
0a:e4:67:68:86:8c:b3:88:55:6d:fc:3c:7c:e3:e3:
b8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:ED:D9:FF:52:2E:E2:22:E5:C7:1C:13:67:0B:48:C5:AB:20:F1:87
X509v3 Authority Key Identifier:
keyid:20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a2:66:69:bf:c2:14:f6:06:9a:b9:cb:c8:8e:85:1a:4e:64:
b3:4b:b6:1d:b8:d1:13:6f:6c:96:61:e8:c7:a6:16:bd:3c:ce:
05:a4:7a:41:83:4d:95:93:20:44:5a:71:0f:8a:9d:81:94:3a:
32:11:cd:8f:be:e3:73:8b:bf:63:d2:e7:51:3a:3e:3c:39:f5:
0e:49:78:53:02:64:b5:48:c2:cc:97:bb:f1:ef:81:24:d1:65:
0e:2c:17:4b:98:8e:eb:c0:85:15:58:19:53:ff:a5:13:19:2f:
ca:eb:41:fe:60:98:55:2e:a5:4d:21:68:03:3a:8c:73:9b:2d:
87:b0:66:1d:eb:6c:56:a0:a6:7b:a4:1a:27:5e:8e:81:e8:03:
84:87:1d:31:7c:99:63:47:66:c0:01:20:3e:23:60:00:12:bc:
d4:19:b5:6b:cf:12:f9:90:a2:1d:95:e4:ea:7a:ba:3b:0b:37:
e4:f4:d7:d6:2e:2e:c7:25:43:00:10:0a:db:8f:09:b1:e2:95:
0c:70:ac:01:0f:54:bf:35:77:20:41:e1:39:1d:70:ae:d7:da:
76:07:ce:02:50:1c:f0:c0:45:82:9b:6c:de:f4:50:89:ff:ca:
79:6f:76:91:1e:7d:fd:8a:ae:41:87:11:40:9d:31:b5:1b:3a:
f3:b4:4f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:06:34 2025 by rpki-client