Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: GXeITbdzw63zltqeOzZ709Pt4tKkcy2HYN2/kvm0LFE=
Subject key identifier: 48:0B:14:F1:A7:60:6B:31:54:E9:33:7C:20:7C:92:B2:14:53:5C:9C
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 01964B22018FFE0244D2A23AFCCFF9DD7831
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 0F15
Signing time: Fri 18 Apr 2025 23:00:41 +0000
Manifest this update: Fri 18 Apr 2025 23:00:41 +0000
Manifest next update: Sat 19 Apr 2025 23:00:41 +0000
Files and hashes: 1: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: MC6O0PJ38HQyrmsRoTgP4Xvemzoc6zO0ePE5CXKW4Fs=)
2: qaZCGy8ImKVej6couAVTC--aSzI.roa (hash: dKUZq0YlDWheyPATDjfQQ4lypZzKgD8qgqRTkln0uKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:22:01:8f:fe:02:44:d2:a2:3a:fc:cf:f9:dd:78:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Apr 18 23:00:41 2025 GMT
Not After : Apr 19 23:00:41 2025 GMT
Subject: CN=480b14f1a7606b3154e9337c207c92b214535c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:54:ba:cd:43:8a:0c:01:31:92:fe:c4:cf:
79:23:f1:1e:6b:91:59:91:63:95:b2:8b:ce:04:88:
29:84:64:ef:bd:10:21:ab:24:77:ff:70:6f:54:51:
35:94:1e:5d:0c:e7:db:9e:62:bb:70:a4:97:16:4a:
28:56:72:8a:d5:4a:2f:27:af:af:93:65:1a:35:05:
1e:32:9e:b0:67:d7:8d:95:6c:12:b4:92:56:e2:e6:
a3:e4:12:5a:c9:dc:0d:45:32:42:c9:4e:37:c0:c2:
23:8d:86:1e:c4:6c:e3:fb:a0:e1:50:e1:37:95:d7:
6e:01:4c:d6:03:79:94:2d:1c:7a:20:f7:38:f1:ba:
d5:04:d2:fc:c4:a6:ae:85:0a:56:c9:4c:3f:a8:33:
7b:b9:1b:23:f6:93:8e:62:80:c7:0f:6e:7a:3d:32:
3d:72:dc:89:45:a9:d5:0c:c4:19:4b:b1:6e:7b:9f:
85:a5:46:52:a6:17:6f:1b:6d:bf:a1:25:8c:d3:36:
02:c7:ef:a4:c4:ac:36:48:79:69:71:fc:1d:5a:2e:
85:52:0d:2d:df:dd:c3:06:be:3f:8b:a9:e7:01:4c:
c2:f0:52:46:d2:01:5c:9e:bb:36:dc:1c:08:71:54:
04:c1:ef:cb:d2:62:8b:0b:2a:0c:41:05:44:5e:c4:
03:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0B:14:F1:A7:60:6B:31:54:E9:33:7C:20:7C:92:B2:14:53:5C:9C
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:79:8f:ff:ba:54:34:76:21:2a:22:c9:b0:ec:75:1b:56:0a:
3d:b9:51:c6:eb:2b:1a:f1:18:b5:32:f8:52:c6:37:41:27:79:
b0:25:69:d9:4f:a3:f4:12:cf:7a:ea:e7:e3:b1:c6:60:c0:3a:
9e:6e:28:98:0b:17:94:40:ff:3c:7b:e4:27:c3:50:ad:6d:f1:
9f:b0:7c:ab:aa:d4:ce:d2:77:2d:ec:77:9d:33:12:55:13:c2:
2d:e4:15:32:34:45:b9:74:e1:b9:bf:dd:00:0e:02:6d:52:05:
44:85:72:58:a2:2c:f2:64:08:86:83:90:f2:81:73:c0:23:b6:
1d:04:14:78:80:43:26:ae:1b:2a:c1:cb:fb:cd:c0:68:83:e4:
30:ca:4f:58:45:fe:40:50:cd:de:e0:f1:e9:97:12:4b:28:7a:
6c:34:02:f6:b6:73:74:4e:4b:92:bc:46:b5:cc:fa:5a:3b:b0:
7f:b0:d5:a9:a7:ac:e0:22:b3:5a:69:fb:6c:d3:53:32:25:a1:
1a:56:28:48:d0:93:87:5b:54:14:e5:f9:73:fd:a5:73:52:f7:
a8:e4:48:df:5b:d1:63:ed:8f:59:09:4d:ff:fa:2b:09:6c:d6:
27:f5:35:d9:3c:d8:68:7d:3e:a8:52:eb:0b:bd:c4:9f:95:35:
81:7a:01:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:15:26 2025 by rpki-client