Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: C9RliqVuIInJer6g6jia3/v1FrQZyCtfeR6uho5cnEE=
Subject key identifier: 08:BC:C8:AF:DA:B0:CF:00:C0:78:C9:C5:82:B0:88:0C:BF:C1:58:77
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 0196BD126528A643BEC991C7E44CC9497327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 1018
Signing time: Sun 11 May 2025 02:00:21 +0000
Manifest this update: Sun 11 May 2025 02:00:21 +0000
Manifest next update: Mon 12 May 2025 02:00:21 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: Z3Gu4ZCnAxBgXLyLyVCRzmUPcMyKVKT2qdBxgWkbuys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:65:28:a6:43:be:c9:91:c7:e4:4c:c9:49:73:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: May 11 02:00:21 2025 GMT
Not After : May 12 02:00:21 2025 GMT
Subject: CN=08bcc8afdab0cf00c078c9c582b0880cbfc15877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:4a:5a:b3:a8:b8:cf:af:48:5b:11:36:8e:
d4:0c:7d:4c:be:1c:b3:db:aa:c8:29:45:65:5b:39:
87:c4:22:b8:15:d4:11:fe:78:a8:6e:20:3b:f4:23:
73:53:83:6b:84:c7:1a:2b:81:92:59:0d:b3:ec:4f:
15:44:9c:ba:13:2f:3c:b7:bb:bf:45:80:4d:40:ce:
38:84:b0:70:d2:93:c1:d5:1d:7b:25:0d:d5:43:54:
20:0e:56:e5:5a:ad:06:0e:c5:b0:de:f4:65:d9:f1:
d2:1a:d6:53:19:cd:a4:76:c5:43:90:bd:bc:c2:16:
4f:b3:bd:94:46:f2:93:ac:63:46:5e:ca:a8:c6:45:
80:64:a3:b5:6e:10:46:86:d1:07:a0:35:a6:f4:38:
00:73:47:37:ff:d4:4b:3f:c0:1b:73:f9:82:df:f2:
d6:18:26:63:0e:a2:6c:ae:33:a9:c5:7c:ee:e1:1d:
31:b0:ec:ef:4f:4b:46:ea:21:e4:73:f3:5e:af:56:
a9:7e:8a:8d:10:2a:e1:36:8c:e2:99:87:39:5c:75:
97:b8:a4:28:1a:63:75:b9:57:32:e2:ee:46:55:e0:
ad:67:e2:d4:aa:02:35:43:f5:d8:20:60:8e:8f:d6:
de:69:06:4e:5f:6a:c8:89:3d:ca:19:07:1c:ce:d5:
06:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BC:C8:AF:DA:B0:CF:00:C0:78:C9:C5:82:B0:88:0C:BF:C1:58:77
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:47:61:74:37:8f:ba:a8:5c:0c:b3:1d:99:20:21:b2:09:74:
8f:0c:b0:39:13:ce:0e:ec:56:04:3f:69:e4:ce:8d:12:77:0d:
1a:aa:7c:37:24:41:90:da:a1:61:99:bc:e5:a8:a7:00:14:e2:
92:61:b9:c8:22:d5:58:36:6a:09:a0:ae:e1:70:f0:e6:e7:ae:
39:3e:69:a5:d7:8f:21:d2:4e:eb:a3:87:7d:e0:5f:bd:60:61:
3f:25:4e:af:80:af:00:33:6e:e1:b2:62:83:c0:cd:de:a9:a3:
0a:cf:27:50:80:54:b6:a9:62:17:f8:b9:69:40:cd:4e:eb:5e:
2c:85:44:b4:28:11:6f:da:52:c5:ab:3d:96:0b:36:89:ae:68:
70:a4:50:05:81:cc:79:b6:2b:22:43:05:cc:67:a5:c9:51:50:
c5:08:8e:e2:fa:96:a2:ee:4b:c3:97:b1:51:f2:32:93:dd:cc:
d9:51:6b:2a:3a:52:6d:84:74:51:ca:01:ad:26:f5:3f:19:7e:
be:95:54:c6:8a:e9:a4:57:28:c2:4d:52:2f:26:ee:05:fa:16:
f5:5f:02:12:d5:6b:3a:d1:8b:40:43:ff:a5:e6:14:3b:7b:ed:
9e:06:3f:6c:a0:87:3b:45:b7:84:ed:da:f2:24:6a:d7:cf:47:
79:79:ae:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:58:33 2025 by rpki-client