Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json)
Hash identifier: GINIDyjVyU4aqP2i3Zkhz16cGQA23XmpqEEQxkIK84c=
Subject key identifier: 80:7E:59:03:F7:F3:76:DE:D4:62:4D:00:07:6E:69:BF:44:7C:E3:2F
Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3
Certificate serial: 0196BB930C71E3401A61EC3A0498357F4F00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
Manifest number: 13B5
Signing time: Sat 10 May 2025 19:01:38 +0000
Manifest this update: Sat 10 May 2025 19:01:38 +0000
Manifest next update: Sun 11 May 2025 19:01:38 +0000
Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: E/a4Y29uXVj8GFDfqzzEy3KlPxHr6KtdF+d3cgQlBI8=)
2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:93:0c:71:e3:40:1a:61:ec:3a:04:98:35:7f:4f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3
Validity
Not Before: May 10 19:01:38 2025 GMT
Not After : May 11 19:01:38 2025 GMT
Subject: CN=807e5903f7f376ded4624d00076e69bf447ce32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:f4:6a:0e:3c:a3:94:fe:b8:18:ab:8c:fe:
28:7f:15:b7:f9:f8:50:11:69:b2:a9:77:b0:a8:53:
1a:8d:a8:25:20:65:8d:13:6c:8f:16:b3:4e:d9:45:
8a:ed:4c:0a:41:95:65:35:b4:c1:39:8b:eb:7f:d9:
b5:91:58:cb:c0:ba:f9:19:3e:95:69:61:24:a1:cc:
66:05:40:77:5b:a4:55:6d:8e:23:5f:1a:1f:ad:ae:
a4:72:72:90:46:cf:e1:4f:5a:35:31:43:f3:bf:04:
33:26:e2:a9:3b:ef:c0:50:7f:31:bc:78:07:0a:51:
4a:06:26:f5:2f:71:dd:dc:4f:24:23:36:b1:d0:fe:
f9:1c:16:d3:59:69:a8:2f:02:42:5f:dc:33:f9:bb:
2c:fa:39:48:4e:83:10:57:55:3a:31:4c:e1:39:62:
dc:95:07:ac:f1:1a:b7:a6:08:55:d0:db:42:5d:58:
93:d1:81:e7:ff:92:36:b7:e8:3a:29:76:3d:e9:c2:
30:1a:5a:d6:7a:bd:12:9f:e0:c2:2b:e5:36:cf:9f:
c9:24:6c:4a:e4:1e:85:b8:44:e2:1e:08:3a:d9:dc:
4d:74:26:68:a0:6b:91:9a:54:8c:83:49:4c:dd:8b:
7c:02:85:32:67:0b:c8:7a:ee:66:4b:92:22:32:61:
f7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:59:03:F7:F3:76:DE:D4:62:4D:00:07:6E:69:BF:44:7C:E3:2F
X509v3 Authority Key Identifier:
keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:68:e5:8a:94:e6:e8:bb:f7:a9:ca:64:99:7b:eb:b7:64:04:
07:c1:12:00:57:fb:a2:7d:65:a5:7e:50:49:9e:b9:a9:52:e3:
e2:a4:28:5d:da:e6:15:26:9b:79:88:00:16:d3:ee:fd:06:9b:
fa:53:a3:1d:a1:6c:ab:47:2f:1f:a0:f4:a2:8d:dc:82:f5:38:
f3:47:73:59:c4:69:29:17:df:65:fb:37:0d:6c:3d:9e:87:90:
80:1a:8c:86:7a:3e:9c:0c:e3:3b:46:4d:65:86:5a:2e:b9:8b:
76:15:15:ad:b8:f7:6a:ef:0f:63:6d:23:93:d5:d2:a6:eb:19:
b0:77:d8:0c:95:67:f0:df:2a:0b:ab:16:ee:70:82:2a:e8:a3:
fb:02:39:b6:a7:8d:d6:8f:39:fe:cc:9b:3d:2b:53:c5:dd:4b:
1f:2d:75:04:f8:fa:fb:74:d6:7e:55:75:d4:35:6a:c7:c7:c9:
68:9a:a9:78:f6:bd:02:4b:0d:ba:2d:97:9a:0e:ee:c0:66:4f:
eb:05:68:ac:ea:82:2a:4d:7d:85:ae:26:0c:e0:1c:b3:b4:de:
3b:0f:82:0c:76:97:5b:23:28:5a:1c:f7:bf:c1:b1:64:2e:80:
67:73:7f:d2:09:c8:52:db:5b:35:1b:65:5c:8c:6a:0e:c8:90:
2e:c6:8f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 03:06:12 2025 by rpki-client