Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: 2kdiUjAXBpTit006lZCs9QEz85VBpkR4TH9ZNGzc7bA=
Subject key identifier: 54:5D:49:CB:24:9D:40:9D:87:48:4B:C2:22:7C:B0:9F:3A:22:59:09
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 01964C34C7CF8182019B03536F27FD2097FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0604
Signing time: Sat 19 Apr 2025 04:00:49 +0000
Manifest this update: Sat 19 Apr 2025 04:00:49 +0000
Manifest next update: Sun 20 Apr 2025 04:00:49 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: qG90+lsR9LDJegOPv6BSBJph/vHqML/iav1WfobZD6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:34:c7:cf:81:82:01:9b:03:53:6f:27:fd:20:97:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Apr 19 04:00:49 2025 GMT
Not After : Apr 20 04:00:49 2025 GMT
Subject: CN=545d49cb249d409d87484bc2227cb09f3a225909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:61:17:6b:ea:57:db:06:0b:76:0e:6f:d1:a6:
0f:0b:12:fa:2b:e9:32:11:8d:eb:00:ed:f0:06:10:
71:2a:07:46:69:f9:8f:b7:4c:40:62:e6:18:cd:c9:
cb:99:1a:cd:f7:9b:10:9b:87:1e:61:a2:cb:25:30:
23:da:bf:b6:fc:f1:f2:3a:fc:37:82:5c:fd:a9:f9:
67:87:38:9d:1e:36:aa:95:5f:67:0f:3c:cf:88:0d:
0a:5e:6c:95:35:31:2f:de:22:ef:27:eb:8f:b6:c7:
91:07:2b:9f:8d:c4:20:58:ca:d1:36:45:3e:2a:63:
d7:76:88:c9:ad:26:10:51:42:5d:47:a9:9b:d3:eb:
d2:b1:9e:d7:b7:2b:c7:89:e9:69:58:30:ac:be:64:
21:32:39:67:2e:cc:a2:da:d0:00:7f:e7:06:c7:ab:
f1:e1:d0:26:df:08:98:58:e5:d7:d6:20:1b:d2:59:
3c:b4:b9:1e:c6:d2:25:8c:c3:ff:97:60:c5:57:d5:
28:a1:fd:56:53:33:3c:5b:6a:e2:3a:ad:4f:50:5e:
87:2a:b4:02:bb:07:7c:b8:46:b9:67:3b:a6:cb:21:
fb:cc:15:19:a4:05:d1:2a:f7:df:75:5c:cd:31:92:
05:b0:bd:32:18:d7:99:89:3e:b7:8d:fa:63:5f:64:
42:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:5D:49:CB:24:9D:40:9D:87:48:4B:C2:22:7C:B0:9F:3A:22:59:09
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b6:e3:cb:df:a3:79:bf:c8:7d:42:3b:19:b2:a6:e7:94:be:
93:f3:8e:f0:16:a3:15:51:ec:de:58:20:1f:0c:b6:72:b2:41:
f0:0a:ad:05:5a:22:83:d3:9a:0b:73:a7:83:fd:e1:88:29:e0:
62:81:01:ea:92:25:2e:14:06:64:9a:1d:2c:35:22:a4:f4:92:
3b:72:12:9e:62:0b:9a:5e:99:98:3c:6e:79:2d:da:df:d2:40:
9a:e0:c1:41:62:24:5a:b1:91:9d:66:d3:74:68:fb:93:de:b4:
a2:c0:e7:c6:60:99:4c:93:11:1c:d8:83:4f:6b:10:4b:e8:b5:
a3:09:f4:3a:59:eb:58:a9:6f:13:38:73:94:c9:4a:0e:e3:32:
9d:36:af:aa:86:52:50:c6:87:bb:9c:2d:69:6d:00:43:e3:96:
b5:5d:36:be:f5:3e:85:f8:37:bf:6b:00:b4:3d:29:7c:57:34:
ae:bb:fc:75:7b:c3:34:0d:d6:36:ef:ca:ab:af:0f:15:dc:4f:
6a:ad:f3:a0:67:b4:65:ad:64:c2:21:c8:e6:8a:a7:35:c7:c5:
67:f5:a7:2d:fd:e3:dc:3d:08:93:16:da:86:b3:6c:4d:87:9b:
8f:b7:10:7c:8e:34:2b:b6:6d:7f:81:08:9b:4a:d4:f3:81:3c:
e8:44:3b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:28:22 2025 by rpki-client