Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
File: IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft (raw, json)
Hash identifier: wAgD+zcWwFAN0qy2XR65iXioGRKU0Pk+IiiQ5vxj2zM=
Subject key identifier: 56:4C:71:AE:E3:57:7B:B6:41:47:EC:A9:3D:F0:95:51:16:39:23:CD
Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Certificate serial: 0196C26FC841FDB11BDA6221165146C7873F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
Manifest number: 131D
Signing time: Mon 12 May 2025 03:00:27 +0000
Manifest this update: Mon 12 May 2025 03:00:27 +0000
Manifest next update: Tue 13 May 2025 03:00:27 +0000
Files and hashes: 1: 6LkNfXDGOHhf8gBsIaO1gA2Q-VM.roa (hash: NThSJkZPm+DD4/mAcNhw9miEjuzZudxLC0TeMXxTy6I=)
2: IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl (hash: oY3/wNkmh0cbOHfcDfM5KlwGPaZmUpFhN4SmT7Q2tTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:6f:c8:41:fd:b1:1b:da:62:21:16:51:46:c7:87:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Validity
Not Before: May 12 03:00:27 2025 GMT
Not After : May 13 03:00:27 2025 GMT
Subject: CN=564c71aee3577bb64147eca93df09551163923cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:97:54:b0:1b:41:b2:6f:d8:5f:10:58:95:ea:
b6:eb:54:01:88:e7:fa:7a:8a:b1:47:a7:39:7a:55:
a9:f2:b0:2a:ab:5b:17:78:1b:21:21:21:f0:2e:ce:
1a:5e:00:94:a6:fe:d2:f0:33:20:ca:4c:99:63:63:
4c:ca:05:cd:4e:15:7b:ac:bd:ce:f4:97:95:c0:79:
28:d7:49:0c:95:6d:0a:d3:22:a5:19:1a:9f:21:a3:
c9:72:f0:03:02:19:c0:8b:ed:15:8f:a1:bb:b3:28:
5a:07:57:34:8e:6d:4c:8a:ae:2d:a0:3a:33:fd:44:
c0:b4:e1:63:b1:88:b2:f1:ae:ef:0e:dd:dd:3e:14:
41:01:32:6f:f3:d6:0d:c8:ea:ef:b2:4e:57:9e:00:
f8:31:0b:36:66:f4:6c:5d:30:3b:00:73:9d:3a:8a:
41:90:a4:26:d1:d1:0c:58:76:62:29:36:f6:c8:50:
b9:18:b4:97:00:f3:0e:11:12:ae:dd:8a:50:ec:ef:
e5:48:50:a6:17:bb:c3:07:f9:7e:2a:89:b2:3c:a6:
73:b9:7b:7e:fa:5c:5a:b8:41:81:81:ad:d9:4f:f1:
0c:72:d4:79:c0:cb:5e:3f:b7:a8:92:d5:28:06:48:
43:86:07:6c:17:b9:84:2d:74:db:8a:08:a8:7f:40:
b6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4C:71:AE:E3:57:7B:B6:41:47:EC:A9:3D:F0:95:51:16:39:23:CD
X509v3 Authority Key Identifier:
keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:28:d0:4f:63:0c:b0:71:7d:e9:61:02:08:ab:a8:c2:7e:45:
dd:2b:df:f1:3f:fa:cb:8c:27:bb:95:25:52:99:34:a9:9e:06:
25:05:e5:65:a0:5b:9a:49:2a:36:23:de:2a:fd:ff:3b:7e:2f:
d2:41:6d:d4:bf:84:e8:f6:cc:9a:b8:1b:47:da:01:5e:4b:8d:
19:f5:58:38:fc:54:84:f8:f4:cf:4f:6c:dd:08:f4:6e:76:1d:
ca:93:18:cb:35:98:61:f6:75:0f:e6:24:23:37:de:63:76:ec:
c8:6d:f3:80:e3:06:71:dd:74:8e:85:39:29:dd:ce:e1:0e:f3:
73:76:15:5d:1e:84:ff:24:72:f7:73:30:96:9a:e2:a8:39:34:
03:ca:ae:aa:c1:e0:c7:df:ff:9c:a3:b1:65:23:ab:c0:6d:35:
a1:50:92:3d:49:00:46:01:43:10:e9:94:ab:77:86:e7:2c:05:
c7:91:7d:b9:9b:8b:d7:1f:0b:7e:f8:c4:73:40:87:87:96:5f:
ba:f4:02:56:db:49:7d:33:21:ba:64:7a:d8:57:d7:da:17:c9:
cc:98:3f:76:64:df:2d:a6:06:ce:0f:bd:cc:ef:4e:94:5d:78:
0d:e6:21:e6:5c:d7:f7:fc:31:a3:18:9e:75:dc:f8:08:1b:7f:
8b:04:8b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:14:12 2025 by rpki-client