Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
File: iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft (raw, json)
Hash identifier: ZNf861mV8Btrkt9FQqGmGEL3m74YS850c8mE7A8OMH0=
Subject key identifier: 7D:E1:98:D5:A8:D8:D4:18:EE:80:6E:D5:CD:45:86:0B:1C:A0:0A:A3
Authority key identifier: 88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
Certificate issuer: /CN=887fa37371d7d4593ba290ef45669ea0de293782
Certificate serial: 0196C34B7BA4A015A19B9E85F7F852278175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
Manifest number: 0659
Signing time: Mon 12 May 2025 07:00:26 +0000
Manifest this update: Mon 12 May 2025 07:00:26 +0000
Manifest next update: Tue 13 May 2025 07:00:26 +0000
Files and hashes: 1: XWaEMNo4oCmJKw7xuT_lUqU1a9o.roa (hash: vlh1Ps1w/BBZ8U+fD5oVlO0yHpfRUnw+NHa2xAJ40qE=)
2: iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl (hash: tC4sdwVK0DtWW8vmA1RQEEkpMeMH9FQrCfLpKXr7DW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:7b:a4:a0:15:a1:9b:9e:85:f7:f8:52:27:81:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887fa37371d7d4593ba290ef45669ea0de293782
Validity
Not Before: May 12 07:00:26 2025 GMT
Not After : May 13 07:00:26 2025 GMT
Subject: CN=7de198d5a8d8d418ee806ed5cd45860b1ca00aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:16:7a:8a:44:a2:cb:7e:fd:4f:21:9f:65:66:
d4:e7:40:6b:41:a5:60:38:3e:d0:16:73:d2:03:3f:
14:73:54:03:e3:dd:db:d0:74:28:84:a3:0a:e4:fc:
9d:58:69:b1:31:e1:a5:29:30:cc:eb:24:24:5a:89:
71:2f:7d:c0:60:be:3f:90:05:b3:da:29:50:41:bc:
ee:b7:d3:99:c3:a1:9f:6f:fd:2b:95:ff:f7:ea:8b:
c0:c3:2a:cc:ea:05:f6:c0:bf:e8:54:50:2c:40:11:
ef:da:04:64:e6:04:de:df:27:fe:14:6e:fa:f9:7c:
f8:bf:b5:81:ee:dc:56:1f:25:8f:b1:0a:c8:8e:37:
11:92:b7:b0:ca:30:2d:db:68:85:30:43:fb:2f:f1:
b9:5c:ab:a4:f4:5e:01:89:4f:ac:b0:cd:65:c2:ba:
09:3c:6b:17:73:98:19:87:92:0e:e7:96:ac:9b:31:
4f:7f:5e:8a:cf:3f:9b:18:0b:9d:a9:9e:98:f6:45:
d9:b3:8e:dc:46:85:21:0b:19:ca:91:3f:b6:4d:44:
b6:7d:db:d4:62:23:f7:4e:3c:0c:79:ba:e3:14:66:
97:ed:88:b5:bc:39:37:c2:35:9f:0d:f3:80:41:5a:
20:d4:95:07:80:14:04:b5:c7:f8:e4:7c:52:30:ed:
06:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E1:98:D5:A8:D8:D4:18:EE:80:6E:D5:CD:45:86:0B:1C:A0:0A:A3
X509v3 Authority Key Identifier:
keyid:88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:e6:67:d5:b5:dd:a2:21:9b:94:62:db:b5:56:a1:a1:fd:04:
eb:5f:53:5e:39:70:7f:74:8c:d2:67:d9:2b:84:7b:0f:a3:15:
73:ef:db:bb:fb:e9:33:c9:1c:2b:56:77:a7:ed:23:c4:83:56:
d2:6f:d1:fc:db:3f:76:c9:70:08:e7:53:73:8d:6c:6a:9a:7a:
f9:ce:07:18:47:f5:02:87:7e:45:11:c7:bd:16:b6:0c:53:7c:
49:17:d6:29:9c:7a:ba:2e:54:ca:aa:e4:a4:59:52:9f:5e:81:
7f:46:1b:4b:98:92:93:5e:70:9d:9d:c2:30:ba:90:a8:aa:cc:
fa:ca:38:ef:76:03:b8:9d:c4:21:54:29:a9:fa:bd:48:27:c3:
86:9b:37:2f:40:3b:f0:0e:74:33:65:d8:0e:ac:b5:78:7e:11:
53:0d:c4:70:af:05:83:73:d8:27:a5:19:da:3f:c8:9a:7a:f5:
fb:2b:9e:9d:11:8c:f5:bf:c7:fe:90:d4:ab:a1:fc:cf:f2:2a:
b0:55:f3:f2:d0:10:0e:ed:7f:30:56:ba:ae:c7:e7:13:b3:20:
ee:9e:ed:84:90:0b:c3:e2:1a:a1:d0:64:25:48:63:a4:d2:b5:
08:10:e6:42:0f:1e:f1:8e:d2:26:fe:7e:7d:a9:f2:e0:e3:f6:
d4:3f:c8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 17:03:13 2025 by rpki-client