Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: k8zPYNHrXeiWW305lLy6T5u6uLJiE+WiWn0PH6T9pAY=
Subject key identifier: 45:2A:CE:3D:2C:08:CA:DB:E7:09:8C:69:E3:FD:03:D2:1B:4A:17:57
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 0196A509FD290644A500D4F4EFD1F1B59429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 090F
Signing time: Tue 06 May 2025 10:00:17 +0000
Manifest this update: Tue 06 May 2025 10:00:17 +0000
Manifest next update: Wed 07 May 2025 10:00:17 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: ESZrXw8zNP3u/5VVcWuuVV8gnvoHVv7YJkEVjsY8MQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:09:fd:29:06:44:a5:00:d4:f4:ef:d1:f1:b5:94:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: May 6 10:00:17 2025 GMT
Not After : May 7 10:00:17 2025 GMT
Subject: CN=452ace3d2c08cadbe7098c69e3fd03d21b4a1757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:b1:de:23:c8:72:db:b0:28:00:b4:27:dc:
6a:f4:5e:e5:aa:b7:b1:47:85:6b:12:cf:a5:ea:b0:
ce:42:b6:2c:e4:62:cd:86:f1:9c:44:9e:86:d9:f8:
32:e9:4f:a5:6a:27:f5:c9:54:c6:e2:29:b3:cf:7e:
bf:be:c5:11:3a:94:27:40:61:c9:b1:06:d8:8b:6f:
d7:90:14:0a:7f:e7:ff:47:d8:69:34:d0:b6:85:64:
43:c5:1e:6b:94:c8:d3:30:59:b8:66:57:db:24:60:
f8:da:de:ec:90:61:5e:94:7e:83:da:21:80:90:c6:
8e:ca:8b:da:b6:ac:cb:cf:d7:2e:cf:67:52:d2:6c:
78:20:53:30:a6:bd:b0:f2:fe:a1:3c:1e:10:fe:d3:
d0:c8:34:c9:bd:3e:81:37:e8:9e:af:a5:e6:40:c0:
b8:6f:2c:0d:6b:80:e7:c1:50:b3:cf:34:a7:32:21:
a9:46:24:86:9d:7e:06:c2:50:77:4f:93:fc:f2:26:
c1:33:9c:1f:3e:b9:46:83:9c:cd:fc:05:d8:e1:28:
fd:a8:c2:5f:94:f5:a7:ff:61:f7:49:53:11:c2:70:
22:19:57:80:53:e4:90:a6:b2:eb:30:94:f0:60:94:
65:65:e2:d7:62:40:01:db:6e:49:f8:c3:bf:98:b8:
46:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2A:CE:3D:2C:08:CA:DB:E7:09:8C:69:E3:FD:03:D2:1B:4A:17:57
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:5f:d6:37:24:10:d5:43:1d:ec:5e:6e:f1:fe:ef:ca:cc:97:
31:12:77:9b:93:d9:80:87:24:09:77:1d:03:d4:59:ef:f0:6e:
6f:d5:90:95:bf:3a:c9:1e:0c:cb:ec:b2:f9:c2:d9:08:18:f0:
5b:ec:74:7b:a5:8d:42:2c:55:19:96:f0:a9:2e:47:79:30:23:
9f:d1:fe:02:4f:de:4b:b5:cb:e8:db:92:ab:22:f0:fe:db:41:
a0:50:e4:3e:f2:2d:fd:37:11:3a:6a:a5:1f:6b:c4:51:5f:b5:
ff:51:d9:8c:d8:b2:63:48:66:e6:5f:c7:7a:5b:f7:aa:9b:7d:
51:dd:79:26:51:f1:6f:08:42:ef:ee:11:9e:d2:57:a6:03:d8:
0e:d9:2c:6d:9f:22:2b:7e:64:a4:34:5a:bf:bc:ed:df:fd:c3:
30:ae:64:ca:42:dd:ba:c4:f7:f4:b3:f4:9d:66:65:ef:ce:58:
98:23:87:36:7b:97:fe:d1:26:aa:78:16:d8:ca:f3:09:79:9e:
5d:89:6d:40:ff:30:84:2f:92:3e:40:9e:04:dc:2e:b6:b2:7d:
b0:08:46:fc:c4:20:a1:35:85:4f:60:20:8f:63:d7:1b:5a:97:
cd:9b:2a:f1:56:4b:27:de:4a:bc:4c:e5:09:96:f0:70:db:b2:
2a:dc:2a:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 18:37:43 2025 by rpki-client