Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: JAZyn86CNdoYW3EsVGWYfImzOyM13Re5cQhWbxjff7Y=
Subject key identifier: 6C:D4:FF:78:10:63:51:87:8F:78:D4:E8:A5:A2:02:F0:FC:9A:81:80
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 01965011CD7E6E31502CD8DE578E6BDD90EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0CDC
Signing time: Sat 19 Apr 2025 22:01:06 +0000
Manifest this update: Sat 19 Apr 2025 22:01:06 +0000
Manifest next update: Sun 20 Apr 2025 22:01:06 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: mcdXkgzjjZYapM3btbmg/aHkeQIwkGEU7xxqmwWqvuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:cd:7e:6e:31:50:2c:d8:de:57:8e:6b:dd:90:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Apr 19 22:01:06 2025 GMT
Not After : Apr 20 22:01:06 2025 GMT
Subject: CN=6cd4ff78106351878f78d4e8a5a202f0fc9a8180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:08:24:71:3c:30:7f:2a:b5:01:5e:f2:45:40:
1a:a9:e4:97:fa:d2:b2:9c:ff:1a:3e:38:72:ad:5b:
37:6d:c2:6a:ff:f9:15:94:15:ba:f8:2f:27:15:63:
da:42:c3:1b:49:8d:af:3e:b2:ed:c6:29:81:7e:28:
99:d2:cc:9b:03:fd:18:55:7a:11:91:f2:8c:ab:e7:
d3:96:74:d8:83:2a:b0:71:32:51:4b:d2:20:ef:7a:
05:38:83:15:bd:69:92:be:ac:66:c2:24:35:50:69:
f1:6f:a2:cd:13:df:cf:c8:91:e2:c7:59:64:c6:bd:
10:51:44:99:47:df:b4:11:66:f4:e8:f0:f0:00:a5:
af:cc:e4:fc:30:19:a4:a7:24:5c:92:78:e7:55:d5:
89:8d:4f:07:7e:ce:b0:39:ea:60:9e:b7:66:26:cf:
1d:d8:92:ee:0d:19:c8:df:e1:20:32:d1:ff:4c:4c:
f4:a4:be:c0:98:9a:bf:81:2d:55:03:65:56:5f:1f:
ca:8c:e6:de:48:fc:cb:62:db:d0:71:9d:87:57:90:
5e:7b:a6:4e:93:fe:20:d6:61:19:7d:68:17:a0:ff:
d9:9c:72:15:66:f1:b3:23:ff:3a:74:54:5d:e5:fe:
2e:2c:0b:4b:f1:d4:1d:7d:c4:00:1e:c6:74:e1:2e:
b9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D4:FF:78:10:63:51:87:8F:78:D4:E8:A5:A2:02:F0:FC:9A:81:80
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:fc:6a:f2:f5:ab:27:15:cf:b4:0d:c5:dd:56:0d:4b:f8:5a:
70:81:e5:fe:ac:2d:19:96:5c:d7:ce:41:f3:80:f0:79:fe:46:
71:d5:f0:2e:1a:f9:37:22:1f:99:8f:bd:c3:24:21:6d:96:ec:
49:d9:11:16:5d:9e:f3:e4:47:50:26:3a:68:bf:38:40:9d:47:
6b:ce:40:0f:48:b2:1e:6d:17:e0:4e:4b:b4:d5:4a:55:28:b8:
9b:6d:bf:c3:36:6e:fb:21:d9:7b:90:0f:c8:18:b2:ff:d8:5c:
29:ac:31:8b:5f:ea:d7:df:2f:d5:49:f0:4e:f0:a7:61:71:c7:
cb:b0:ac:8a:b9:d5:8c:d4:21:9a:91:07:33:37:fa:f6:36:cf:
b3:27:51:e0:b8:39:0a:d2:84:7e:c3:53:1a:41:b9:c9:8b:12:
1e:5a:16:67:c4:b2:7c:dd:ec:e5:1e:47:8e:95:8f:6e:6d:95:
0f:7c:51:f8:21:95:1b:67:21:a9:d4:bb:f9:4f:f4:df:41:4e:
93:5b:c1:5f:ae:63:37:e3:17:13:71:bb:05:85:9d:5f:8e:92:
a3:d5:e0:e9:ef:96:7b:45:7f:25:78:ab:dc:71:74:90:fd:34:
2f:eb:40:f3:e7:07:35:d1:51:32:84:4c:35:a8:41:c8:2a:27:
c2:6f:72:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:35:29 2025 by rpki-client