Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
File: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft (raw, json)
Hash identifier: 1U0eGmvu1QXecCMKpqO1BXoHHLy3MmYYSEVkeU993Y4=
Subject key identifier: 82:1D:70:AC:85:E4:6C:08:E8:18:10:60:2F:82:E5:36:A4:81:04:0C
Authority key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
Certificate issuer: /CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Certificate serial: 0196580178F2CFB5995A2CF013B5AB57F6D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
Manifest number: 1502
Signing time: Mon 21 Apr 2025 11:00:13 +0000
Manifest this update: Mon 21 Apr 2025 11:00:13 +0000
Manifest next update: Tue 22 Apr 2025 11:00:13 +0000
Files and hashes: 1: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl (hash: HK7x5L4EJoHoMZVKjPB7EOwl6FBy531Z4ApDrkpEnXI=)
2: ZUnY6DcgMFOkn5YPuY63h16XVew.roa (hash: j75VTgwm6ax4o8jG9UYWYEtlaoF5sYfNI7iKEcRNxJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:01:78:f2:cf:b5:99:5a:2c:f0:13:b5:ab:57:f6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Validity
Not Before: Apr 21 11:00:13 2025 GMT
Not After : Apr 22 11:00:13 2025 GMT
Subject: CN=821d70ac85e46c08e81810602f82e536a481040c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:72:e9:73:81:6c:bd:cd:e7:d3:76:59:ab:ce:
fb:b3:0c:ce:d0:ff:15:fe:55:6d:54:7f:30:18:79:
9c:64:83:65:0c:f7:d1:17:56:88:9f:cf:62:b2:92:
44:ae:aa:0b:02:68:74:d1:5b:af:5d:f4:7c:cf:ca:
8b:86:72:db:08:aa:77:bd:09:7a:08:f2:36:76:96:
11:55:41:3c:4a:de:68:9c:8c:40:07:1d:e4:6c:1a:
d9:4a:23:c2:2b:e7:29:a7:97:57:2f:38:8c:90:00:
e1:0e:5b:3c:f5:31:82:fd:31:de:4e:e6:d6:9f:3c:
88:32:33:a4:46:b6:1c:eb:85:57:59:57:b2:e1:ec:
df:e4:66:a8:6b:b8:2a:f4:59:61:a4:e8:f6:a2:de:
77:83:23:06:f0:4c:13:ab:8c:fa:1b:75:99:76:58:
c2:ae:13:db:95:bb:e5:35:30:0b:bb:32:cd:65:4a:
d4:c4:a4:6f:f9:32:01:39:d2:cd:57:a3:7e:a7:a8:
5a:0b:ff:2d:1a:6d:3d:37:67:fd:e1:f6:ee:61:60:
e7:0d:ec:c8:57:29:b2:d2:6b:d6:6e:ff:26:58:cc:
9f:dc:73:16:ac:49:eb:05:e3:87:62:47:21:a3:88:
5e:cb:c6:df:48:df:10:91:89:96:a8:9d:ea:a7:3b:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1D:70:AC:85:E4:6C:08:E8:18:10:60:2F:82:E5:36:A4:81:04:0C
X509v3 Authority Key Identifier:
keyid:21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:3b:61:32:d6:55:bf:07:8e:0c:af:27:49:ee:fa:39:53:d4:
8e:d4:30:b2:9f:b1:9c:46:b1:dd:2f:90:fa:50:28:94:6e:56:
37:9a:4d:7d:95:eb:da:52:69:71:17:4f:f2:22:9e:ad:b4:59:
6f:66:43:6f:13:47:dd:49:e9:be:c9:06:d8:d1:85:04:67:b0:
a5:3e:79:ea:64:92:38:08:03:77:f1:58:dc:d9:50:aa:60:aa:
fc:9f:62:f7:73:50:08:09:67:e8:12:ec:89:9b:57:2b:ff:f5:
0f:64:c8:a7:3b:b5:6c:51:e9:df:2b:8c:1d:ee:70:86:35:a5:
af:62:a5:73:ce:e8:b1:f5:d0:02:64:bd:2f:9f:19:87:bd:58:
7e:45:9b:5d:3e:fa:c3:94:32:05:49:46:dc:cd:ac:b6:77:21:
19:25:d9:1e:81:ac:a1:d3:69:02:10:86:51:d8:f8:72:1a:be:
24:9c:f3:50:86:f6:fc:e4:f8:c3:bb:0c:08:1c:3a:46:fe:eb:
5a:09:83:19:d1:0d:b0:4c:79:8b:b4:62:bb:99:af:b4:45:2c:
9f:f9:11:d4:da:df:e3:f3:b9:74:4a:5c:cc:f7:27:f3:20:5d:
b6:43:e1:7f:b1:d8:f8:30:1c:16:57:1c:14:90:cf:68:8e:e4:
a0:65:29:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:31 2025 by rpki-client