Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: Ii+VZBqNnFyRSE0uGifKFZy+fP2+1kpB1t46wILd8v4=
Subject key identifier: 98:07:D4:20:99:6A:48:36:F3:F4:AD:18:C6:39:6D:89:88:E9:11:77
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 0196CCF3ABDCC3A161C7BB8A118044130946
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 153D
Signing time: Wed 14 May 2025 04:00:43 +0000
Manifest this update: Wed 14 May 2025 04:00:43 +0000
Manifest next update: Thu 15 May 2025 04:00:43 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: Eq/Twl8li1M+QbK3Aru3OZGDvo/N1ZdL/I2HaQelRYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:f3:ab:dc:c3:a1:61:c7:bb:8a:11:80:44:13:09:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: May 14 04:00:43 2025 GMT
Not After : May 15 04:00:43 2025 GMT
Subject: CN=9807d420996a4836f3f4ad18c6396d8988e91177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9b:fd:fb:b6:51:ed:48:dd:78:2a:aa:c9:1e:
ac:5d:e6:09:28:1d:40:b4:39:fc:78:36:ce:d1:71:
cc:79:63:6f:3c:bf:a6:6e:6a:e3:ae:31:b0:a2:1e:
b7:55:fd:ed:64:fd:b2:e5:77:db:f0:4f:73:5f:5a:
ae:49:2f:71:d3:99:9a:56:7e:26:90:26:51:23:77:
7e:2d:5a:59:9f:a4:f8:0a:3b:78:98:ae:6d:d8:78:
f9:07:0f:d9:8e:23:be:2a:b4:e8:04:f8:9d:e9:db:
0c:6f:2a:97:9e:b8:06:da:16:97:8e:fd:a8:76:b6:
f4:75:95:47:0e:6f:7e:42:06:0a:18:3f:29:ad:e6:
e5:fd:5e:1b:b1:ba:d1:c9:5e:2f:70:2e:97:77:2a:
25:23:59:38:bf:76:22:e8:5d:af:c9:f6:7d:f2:b9:
28:6f:8e:f1:6d:4a:af:b6:5f:a2:69:06:ae:c6:0a:
15:b6:4c:6a:e6:f7:f7:d4:82:21:9a:05:9d:58:fa:
2d:01:ab:75:a3:c1:5f:9f:e0:11:20:2f:fe:34:50:
6b:b1:9b:ab:12:16:0e:35:3e:e4:18:e7:61:11:ad:
49:0c:32:7a:a7:10:1a:84:f5:3b:a9:25:4c:10:c3:
0a:dc:6d:69:69:5b:74:da:07:39:a0:f9:22:ec:12:
0b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:07:D4:20:99:6A:48:36:F3:F4:AD:18:C6:39:6D:89:88:E9:11:77
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:99:fa:24:3b:d6:29:8b:93:6f:ed:7e:92:73:13:02:75:d8:
66:e7:b9:0f:99:37:45:c1:25:84:f5:f3:1c:b8:28:1e:62:27:
ac:7a:74:c0:ee:01:47:d5:70:2e:71:9a:7f:81:b8:cf:2a:1b:
ae:71:64:34:e8:ab:15:a7:f5:dc:aa:21:4a:14:26:1f:6e:b1:
08:f4:0f:1e:2f:2d:2e:24:95:ef:02:7b:e2:42:a0:0e:5c:68:
32:37:6b:60:3c:eb:bf:9d:0b:4f:eb:8d:30:19:0a:12:f9:74:
db:2f:37:1f:d4:39:02:74:97:e0:ec:d5:7f:77:92:5b:17:e8:
ac:9d:68:d9:04:b7:89:fe:5f:33:02:0b:35:dd:53:9f:75:bd:
a8:1a:d1:f0:53:41:7d:b3:65:d3:1a:95:00:81:91:2d:96:3b:
d2:81:1b:21:d0:4a:74:b1:3c:1f:8f:2d:62:c7:0b:94:50:d5:
34:6d:7b:b6:21:90:48:a9:a9:be:70:85:01:6e:6e:39:9c:9a:
56:35:82:06:95:1c:a2:e1:b6:25:44:6a:48:f9:5d:de:12:16:
69:d8:a2:48:cd:32:d5:e5:66:f9:a0:fb:d4:e5:d2:d9:b0:e2:
32:23:9b:54:39:73:88:fc:ee:b3:18:a7:df:2a:52:cd:b3:3f:
50:3c:95:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 08:05:53 2025 by rpki-client