Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
File: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft (raw, json)
Hash identifier: WRbbQnl1PdKpzvOc0qODY2Kz8a7uIZPMPOCyrBRLRbE=
Subject key identifier: 6D:3C:FF:FC:C1:E5:A2:24:C4:37:53:D4:FA:8E:78:44:83:19:78:B5
Authority key identifier: 89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
Certificate issuer: /CN=89af8769339703da3b0cb5e831023d3bf63f022e
Certificate serial: 0196B0D7A1F655576F3DF504382159681784
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
Manifest number: 0DD7
Signing time: Thu 08 May 2025 17:00:43 +0000
Manifest this update: Thu 08 May 2025 17:00:43 +0000
Manifest next update: Fri 09 May 2025 17:00:43 +0000
Files and hashes: 1: JBBfWvBvIPbMFEPW3wW2A3eZfMw.roa (hash: HPVfysoAPIIkBoYBVqV/VP2S0bfAf3Hk6zV6kpgHup8=)
2: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl (hash: M5uyrznc5X0fZRa7B1anxTQT8/Dns6oORy7xt2nkQhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:d7:a1:f6:55:57:6f:3d:f5:04:38:21:59:68:17:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89af8769339703da3b0cb5e831023d3bf63f022e
Validity
Not Before: May 8 17:00:43 2025 GMT
Not After : May 9 17:00:43 2025 GMT
Subject: CN=6d3cfffcc1e5a224c43753d4fa8e7844831978b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:97:08:8c:b2:9d:05:ef:12:90:55:64:b0:78:
e5:cf:ba:15:28:03:60:ef:af:44:84:c8:1d:66:b9:
08:6b:15:dc:0c:a9:50:6b:56:cd:3c:6b:6a:49:1d:
fc:27:bc:aa:e4:ad:a6:5a:b4:c6:d9:76:95:3b:40:
3c:5b:7d:87:81:d4:c0:34:9f:a5:b7:97:f3:31:70:
29:5d:48:c2:cf:a5:aa:57:28:98:9c:7e:74:d1:d6:
91:20:3d:13:f7:7c:fd:92:ff:7f:d0:90:be:2c:9d:
ff:49:ad:70:46:4a:2f:79:c7:ee:01:db:b1:05:b6:
5e:6a:7b:c2:18:0c:b8:44:cf:f1:bc:22:64:29:de:
3d:f2:a7:7c:bd:01:f5:3a:f5:a8:90:45:05:80:99:
a5:8e:e8:4b:30:bf:88:a1:ac:d5:91:75:c1:e9:5b:
27:4c:53:cb:8f:5c:35:3f:37:83:bd:be:9d:c7:9c:
44:c5:8a:83:83:a0:cf:a4:94:8a:54:cf:bf:41:66:
76:53:79:05:cd:f3:1e:2d:8d:90:52:85:db:ba:78:
5b:d5:76:ad:5e:10:77:f2:d4:0b:5e:be:9a:61:1d:
b7:5a:8d:d4:08:b7:e9:cf:3b:e6:e6:40:83:64:21:
41:c9:22:1c:ff:e1:14:d4:2e:98:c4:26:0b:0f:eb:
28:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3C:FF:FC:C1:E5:A2:24:C4:37:53:D4:FA:8E:78:44:83:19:78:B5
X509v3 Authority Key Identifier:
keyid:89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:cd:77:1a:cc:bb:8b:86:9b:f6:e5:39:7f:fc:72:1c:d2:8b:
a3:9b:f8:c7:ec:2d:4e:81:16:30:ca:3b:d1:75:93:13:96:55:
43:19:4a:4d:40:08:66:64:17:fb:b9:38:8a:e3:09:7c:ef:1e:
e1:5e:6d:11:e0:62:c1:40:b9:db:d9:e3:55:2f:59:42:af:04:
18:76:5b:a7:9e:79:04:f1:ec:00:bf:aa:b7:53:a2:3d:09:34:
22:fd:fc:f5:95:15:47:44:2b:ef:6a:80:67:15:13:79:6e:f0:
91:54:06:ae:2a:27:c3:29:65:26:87:eb:af:e9:a2:d3:ca:86:
98:4a:e3:77:60:5e:11:b9:a7:1d:26:a4:c8:03:72:16:6d:b1:
a2:f6:ca:89:a9:3d:b8:ed:50:51:26:1e:9e:62:49:2b:9a:3f:
94:b2:52:d1:a7:71:c3:34:8c:2f:6d:d9:4a:67:0e:10:38:10:
30:d4:4a:fa:6b:61:9d:d7:fc:9d:d3:1d:f0:a5:89:3c:73:84:
98:c6:9e:4f:ac:92:b5:4f:86:41:b3:50:85:1b:3a:5c:b5:99:
ad:eb:17:ac:f7:b8:a8:36:f1:c4:0e:1a:d6:0e:86:d9:cc:d4:
35:fd:6c:54:cd:73:b6:d1:00:a3:3f:64:d2:14:c4:7a:6e:d2:
15:c2:ec:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 19:18:07 2025 by rpki-client