Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: 5sfZ8xnRJoqXjaieTu8A/EMLmr3XAx5YgO/vFnOOe2c=
Subject key identifier: 43:F0:62:80:E1:6A:CB:07:C1:37:93:15:76:A2:77:BC:EA:34:AA:4A
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 0196BDB7613944066306CA2224608F5FE6E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 01D2
Signing time: Sun 11 May 2025 05:00:33 +0000
Manifest this update: Sun 11 May 2025 05:00:33 +0000
Manifest next update: Mon 12 May 2025 05:00:33 +0000
Files and hashes: 1: i8Wo923xVof4NEHJprVUV48831c.crl (hash: zTMiql6dKoLbF7jbyIAJ7EkDy3ZtAs4Tt/9G+H6rG54=)
2: xqruQTCgxIM4PNAxf9wXVycyPyQ.roa (hash: hdKTf9nYGB8AkPxxLnuI6L7FG/INFNDmxrZRzLc1Xt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:b7:61:39:44:06:63:06:ca:22:24:60:8f:5f:e6:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: May 11 05:00:33 2025 GMT
Not After : May 12 05:00:33 2025 GMT
Subject: CN=43f06280e16acb07c137931576a277bcea34aa4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:95:2a:66:c6:94:ef:15:b6:75:aa:0a:6e:
8d:a4:9a:20:9a:6b:63:1f:56:40:8b:b7:4a:b5:bf:
99:b0:63:f1:4d:32:cb:c0:60:b1:8f:c5:44:eb:64:
b3:6c:19:e2:2b:f5:df:16:aa:d8:d4:69:fc:db:9d:
3c:50:42:4f:32:d4:95:35:06:b8:b2:cf:df:30:3c:
71:c8:27:7d:3c:80:90:a0:3e:3e:ad:23:65:5b:07:
e9:fd:d4:a8:2b:5b:38:7b:40:89:72:28:f6:bb:74:
45:1c:13:06:dc:c2:79:88:3a:38:5e:3e:90:1a:14:
77:f1:d5:b5:4c:67:c2:5b:2f:39:f7:15:0d:e6:7e:
ad:4b:11:dc:d1:54:47:e3:72:d9:d7:31:c8:69:39:
89:35:52:76:b0:b6:94:af:cf:ee:38:74:54:2f:55:
4e:91:77:3a:7c:da:a3:64:67:9a:50:49:79:23:70:
3f:11:63:d7:ba:60:f2:30:29:5a:e2:7e:34:a2:8d:
6f:6d:a6:33:23:fe:3b:66:d9:62:4c:da:ec:3d:21:
30:16:23:ae:24:ce:ea:6e:96:4f:7f:1f:be:82:a9:
ac:ba:dd:81:61:59:65:39:83:18:5d:36:d0:79:5a:
b7:3a:ee:45:cd:d8:bd:77:4d:d7:ea:2d:6a:b1:bd:
60:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F0:62:80:E1:6A:CB:07:C1:37:93:15:76:A2:77:BC:EA:34:AA:4A
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:93:76:9b:05:6a:a1:18:2e:f2:95:d1:0c:82:72:fc:f1:b4:
1f:85:3f:1b:e5:89:5a:c1:15:3a:ca:49:ad:11:43:87:b3:63:
08:9c:6f:78:9e:a1:44:8f:10:f1:e2:22:62:b3:15:72:b1:5f:
98:3d:2c:03:a8:f6:46:e5:50:cc:66:99:b3:f0:eb:40:f2:1d:
73:9a:f8:2d:ac:52:78:e4:87:08:ad:c2:df:c3:03:67:fc:43:
45:ca:6c:c4:b3:6a:02:44:19:55:2d:5a:af:5a:70:0e:d8:dc:
98:c5:1f:cf:e2:72:74:99:79:f8:1f:d9:ed:dd:51:b7:99:4f:
b1:79:fa:6d:b7:d8:31:bc:07:fb:0e:91:40:b2:e2:b6:ca:71:
bd:ac:27:fc:2d:b2:f4:a6:2f:a9:b5:80:ae:77:01:28:02:1b:
68:7e:dd:36:ee:35:30:56:db:84:dc:17:5f:15:55:3c:23:64:
2c:6b:29:c9:72:ac:56:60:98:d1:9a:41:c1:14:62:46:c1:f8:
96:4b:2a:91:bd:e4:b4:14:bf:7a:f7:2b:b2:33:01:2c:b8:02:
ab:eb:d5:2b:27:9b:c4:5d:2e:07:4d:b8:4d:61:a0:a5:14:9e:
ca:ca:a2:02:2b:c8:66:55:06:19:f4:8a:9b:75:32:b8:fa:a1:
d3:97:48:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:39:57 2025 by rpki-client