Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: wfokv6JIaOGeFCm4lrCBT5viVMwjKrJOulxWEewMkcM=
Subject key identifier: 1D:C5:D9:78:A2:FD:0A:18:AB:EF:63:20:9D:16:F0:55:1A:02:94:23
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 0196AB0C4D4C831B0761C1CFE5E366DE15BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0D25
Signing time: Wed 07 May 2025 14:00:32 +0000
Manifest this update: Wed 07 May 2025 14:00:32 +0000
Manifest next update: Thu 08 May 2025 14:00:32 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: C3jmrg+VJmuyTcP1Qn19tDEpXGlSmOyk0sifQefFdUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:0c:4d:4c:83:1b:07:61:c1:cf:e5:e3:66:de:15:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: May 7 14:00:32 2025 GMT
Not After : May 8 14:00:32 2025 GMT
Subject: CN=1dc5d978a2fd0a18abef63209d16f0551a029423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:46:ae:e2:a9:4d:d5:8c:63:04:1c:83:f4:05:
71:b3:a7:ca:bc:6d:99:68:18:9a:e2:ef:63:e4:9a:
81:22:96:72:a7:fc:79:17:03:ca:9e:1e:40:41:ad:
44:ed:e6:45:bb:3f:9c:b2:01:82:8c:9a:00:e8:39:
4f:55:f4:66:2e:da:c1:64:a5:29:77:4a:ab:8f:bb:
f6:ad:16:b9:6b:61:a3:af:70:bb:f7:78:ac:b1:af:
50:83:9a:9d:2c:f4:92:35:c7:69:b6:99:3b:b3:85:
a4:e9:6a:c2:df:11:72:cc:4a:1a:87:3a:62:59:92:
03:0f:8c:01:5d:5e:ad:5b:25:8e:2f:30:b9:07:b6:
63:60:b9:3c:94:7f:e8:fc:1a:21:4f:a2:04:09:4d:
15:ea:5b:f7:c4:91:60:f0:2d:af:f3:3b:b1:e8:aa:
43:bc:90:27:ab:72:9b:6c:69:e7:29:10:00:5d:6d:
df:79:02:f7:27:9b:c1:20:c8:8b:ba:75:ca:ee:c4:
3e:40:21:ea:cb:4f:11:fb:56:af:1c:9f:2e:ad:18:
7d:d0:22:f6:fc:79:7d:44:fd:87:41:92:79:68:5c:
06:9d:b2:b8:fa:4e:cb:55:2b:ca:9b:22:18:fe:8c:
54:ba:bf:a9:89:79:76:fb:e5:24:92:ae:35:14:09:
c1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C5:D9:78:A2:FD:0A:18:AB:EF:63:20:9D:16:F0:55:1A:02:94:23
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ea:98:09:eb:13:7f:d0:f6:80:93:46:b3:c2:9e:e8:94:a0:
39:b3:8d:52:6a:e4:5c:f9:3f:45:43:89:ef:45:5e:7f:37:60:
63:e7:f7:64:42:b2:02:3f:e3:89:47:75:6c:27:ce:8c:8c:32:
b8:71:e0:ee:71:17:8d:6d:97:18:7a:55:71:1a:e4:6b:3c:52:
06:54:31:6b:20:04:7b:66:70:24:3e:23:91:6e:7d:d7:a6:d8:
e6:c3:88:25:07:b7:a0:c4:6f:a1:9d:0a:89:48:e5:ec:7b:13:
8a:04:53:da:6f:95:b6:0c:64:28:7c:5d:37:ca:71:cd:90:e4:
8d:7a:33:dc:63:2e:80:7a:a1:ec:90:fa:b5:b6:4a:2e:9b:33:
c9:16:75:af:48:aa:d1:15:59:75:b8:e7:7e:89:4b:6a:96:1b:
e2:55:ea:d6:35:2a:6c:37:55:db:af:75:f4:3e:bd:1b:94:16:
b8:47:a8:d9:82:29:5d:27:27:78:75:e0:2f:32:62:5b:d2:bc:
bb:bc:f0:b2:04:ee:98:61:c8:ab:cf:12:c8:7d:7e:dd:c2:f3:
cc:ae:7b:af:e0:06:37:ab:20:4f:db:bf:5e:da:d5:aa:95:c2:
fb:4b:84:ad:bd:ea:3b:8f:2f:fa:7a:9d:46:7d:a5:1b:1f:39:
14:80:86:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 16:44:51 2025 by rpki-client