Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: wSI0N9B3JnFgTBioyzpstxXmCmVUg2WQf/DU4exIW30=
Subject key identifier: 6F:FA:47:4E:40:B4:84:25:B9:04:90:03:C6:F1:BB:20:78:8C:16:7F
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 0196BCA4B32514D9AFB3E71DA4665DA6AF08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 0584
Signing time: Sun 11 May 2025 00:00:32 +0000
Manifest this update: Sun 11 May 2025 00:00:32 +0000
Manifest next update: Mon 12 May 2025 00:00:32 +0000
Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: ke/hEmbbvIsHiZNw3I9587kWXrYhSdhfGy6fM7amvMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:b3:25:14:d9:af:b3:e7:1d:a4:66:5d:a6:af:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: May 11 00:00:32 2025 GMT
Not After : May 12 00:00:32 2025 GMT
Subject: CN=6ffa474e40b48425b9049003c6f1bb20788c167f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9a:9e:ec:35:9a:10:a6:6b:43:82:cf:0e:f6:
bd:7d:e2:a4:62:78:a8:cd:a1:00:17:33:57:ec:63:
84:94:8c:37:cc:7c:21:0e:e5:9c:8e:fc:9d:d2:16:
7d:ed:28:c2:e0:f7:23:62:2c:3f:60:10:e4:ba:9b:
ff:18:f2:51:7c:20:0a:a5:e6:39:f1:f7:d2:25:20:
fb:45:d5:32:14:97:2e:bf:28:4b:fc:8a:b7:f1:34:
68:a6:3e:55:95:74:7e:f1:40:cd:bd:34:a2:ce:dc:
da:c0:4c:86:b6:3f:65:e1:8d:06:4f:6b:75:63:16:
39:28:e5:a4:16:f7:cd:66:ec:9e:65:b8:1e:08:6d:
97:3f:bd:cb:c6:b3:0f:6e:49:fc:82:dd:9c:e2:81:
6c:46:59:3e:b9:24:96:cc:2a:d6:7c:d9:98:e5:db:
36:f6:14:e1:e4:57:ab:16:b5:be:69:4b:f8:04:33:
a7:6f:26:6f:fa:c5:a4:ea:06:d5:4c:2a:47:5a:4c:
24:52:16:27:2e:e6:37:02:63:3b:d0:2d:3d:12:26:
19:c5:6e:77:86:5e:31:69:78:d7:10:f1:16:e6:bb:
64:17:0e:5a:b4:14:f3:ca:e2:3a:84:f5:6c:25:73:
b4:32:92:a8:95:47:9f:9c:d1:f1:23:68:35:eb:46:
ce:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FA:47:4E:40:B4:84:25:B9:04:90:03:C6:F1:BB:20:78:8C:16:7F
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:de:4f:0f:6c:9b:54:4a:3e:5e:bf:60:c5:f3:b1:e8:fa:df:
cb:ea:b4:fe:eb:87:7b:d1:a4:fa:9e:a7:1d:3f:41:3d:db:21:
bc:df:96:1a:1a:a7:29:71:94:61:7a:b0:b0:b5:b8:ec:8c:42:
a1:bb:d8:e8:9c:31:7c:0b:f2:4c:19:99:97:e2:fd:12:4b:bc:
26:48:bf:bf:e4:c2:be:12:58:fd:62:0d:b5:9e:76:35:e3:d7:
68:92:aa:9a:0b:e4:fd:28:6a:c0:23:30:12:d8:77:5a:db:b5:
61:0a:4a:f0:91:90:e8:8c:7f:18:81:80:47:2a:6a:ed:3c:43:
34:b0:aa:1e:4e:ba:52:e5:9f:48:36:e5:bd:ed:72:4b:02:82:
9e:cf:df:60:59:4e:d9:8f:96:f9:bd:ae:74:e9:49:cf:af:ec:
c6:53:c2:c9:76:b9:ff:8e:58:86:25:5d:06:f4:4e:f1:f9:15:
75:60:21:e5:91:27:24:c7:3a:e9:d3:da:07:34:cf:aa:e8:ab:
99:93:a6:f7:80:c9:c7:22:89:f1:ac:23:8c:87:b8:fa:84:e3:
0a:33:1f:6d:e7:1a:4e:20:19:b0:31:9a:8a:8a:26:29:e4:14:
b5:5e:ef:68:d4:9d:78:d1:0f:ac:ce:4a:e1:84:bd:c9:82:dc:
24:50:6a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:21:03 2025 by rpki-client