Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: GL5ojH2BjIcwVOdo3Xad5cWqLF1JdbI/+LCnsi1VSL4=
Subject key identifier: 00:49:4F:19:0E:19:CA:6B:0F:FD:10:9F:03:49:22:7B:DE:27:34:C5
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 01963FC26DE84757FE51DDBB9F6F59AFBB60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0BAD
Signing time: Wed 16 Apr 2025 18:00:28 +0000
Manifest this update: Wed 16 Apr 2025 18:00:28 +0000
Manifest next update: Thu 17 Apr 2025 18:00:28 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: AcIhPOAdVG1iXEm7NYQpN/8DdxH+O3ct0fLmtsyNucs=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 18:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:6d:e8:47:57:fe:51:dd:bb:9f:6f:59:af:bb:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Apr 16 18:00:28 2025 GMT
Not After : Apr 17 18:00:28 2025 GMT
Subject: CN=00494f190e19ca6b0ffd109f0349227bde2734c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2d:09:b7:fc:c5:ef:73:62:fc:90:dc:f4:82:
24:36:33:aa:94:6d:f4:74:6e:23:33:5b:ea:5d:46:
5d:08:90:26:10:61:b1:1d:74:25:b2:fd:cf:42:a7:
ed:66:cf:65:aa:c2:cb:9d:6d:aa:54:aa:8d:ba:78:
76:38:8d:a3:70:44:72:6b:36:21:ce:05:15:22:02:
35:a7:a9:e3:67:f4:6d:5c:00:e8:3c:4c:a8:f0:13:
59:ae:b5:df:46:e1:f6:71:31:68:a5:e5:eb:e0:0b:
82:53:02:5d:94:15:7e:d8:86:b1:b5:dc:61:bb:a9:
52:48:f0:4d:62:6e:e1:65:e0:37:03:27:49:f6:c9:
b3:7b:69:fd:e5:3e:98:fe:51:9e:93:a7:1b:86:e2:
2f:eb:be:7a:e8:74:12:a5:7f:c6:f4:43:9a:34:b4:
ae:6c:65:b8:02:3a:bc:5b:79:30:aa:44:e6:ca:46:
9d:11:26:53:81:c4:7f:24:bf:b6:63:00:25:ac:7a:
e1:b0:10:30:ca:69:a0:0d:39:5c:09:ec:dc:31:36:
4f:d9:55:7c:91:4f:45:19:33:f4:51:bd:37:88:9b:
aa:b0:ef:c4:a5:3b:7e:63:67:d7:de:c3:92:24:b8:
c8:1d:20:f1:0e:3e:a8:3b:bd:1e:a3:c1:4b:32:3a:
88:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:49:4F:19:0E:19:CA:6B:0F:FD:10:9F:03:49:22:7B:DE:27:34:C5
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:2c:6d:ee:bb:26:b1:78:9d:9b:ab:14:77:72:1f:d3:ae:ad:
29:60:c5:87:d2:ac:7b:25:40:31:a2:6b:0f:a2:b7:93:3a:18:
0d:dd:30:48:89:db:a1:4c:89:57:c9:18:47:f6:be:0c:35:43:
7f:ed:e3:f2:53:87:e3:7c:17:97:7c:a9:3d:ae:1b:ed:a9:be:
bf:b1:c7:d7:79:31:3f:92:ee:1e:75:f1:25:86:91:14:7d:2c:
70:c1:8e:79:fd:60:30:2e:8e:b0:c4:b7:55:0d:da:8e:e2:d9:
45:95:a5:07:75:a0:3c:98:c7:09:fa:3b:43:46:fc:6a:b7:89:
82:6b:68:5d:1d:e3:47:f8:6f:e8:a4:83:08:ab:9e:64:87:da:
3d:2d:d7:eb:cd:8d:6d:b4:1f:96:76:e7:cc:4d:b7:61:e0:ef:
fc:fd:22:ed:21:e5:52:e1:76:d5:8b:a1:04:f8:62:b6:69:38:
3e:ef:f4:52:37:e8:73:80:d1:32:b4:99:1f:ff:40:6e:69:15:
7e:b3:a8:7c:01:72:e6:03:6e:f2:ef:12:ad:82:b6:b1:5e:c0:
7e:76:52:32:50:68:99:2a:64:e6:eb:bc:cb:5c:00:b9:b7:0b:
6a:32:9a:70:8b:ba:49:14:3a:f4:26:58:f5:fb:95:04:a3:f0:
18:1b:7f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:35:31 2025 by rpki-client