Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json)
Hash identifier: 7/KdnZIOEsK2+RCaLWgjHZmCxWyTVzQT+lDqBGLGBo4=
Subject key identifier: ED:87:80:53:AC:AA:1A:1A:58:B4:5D:D0:30:9A:45:2D:66:50:4C:EE
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 0196B7B5B70FC431E5E4B910426C37C1B13E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
Manifest number: 127F
Signing time: Sat 10 May 2025 01:01:01 +0000
Manifest this update: Sat 10 May 2025 01:01:01 +0000
Manifest next update: Sun 11 May 2025 01:01:01 +0000
Files and hashes: 1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: rM6BARgH2UGK+I/NUDRYw1BKydu1OG3jXrFee4Kt6g8=)
2: LWXmlZUU3ecfqvwZHXpe4N13PwE.roa (hash: 4NYVwWGAs7YF0X626zcPKU0/2BhITxR5hdojEVCb7vQ=)
3: Sb-J4R6jgDy1hu0trOifGY0aUIY.roa (hash: BnRnuIbBZBHwGOy/+XFTLzwpti+5vGhUFRVEfpqfups=)
4: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (hash: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=)
5: cEBx7aoqU0ILwpLn4WovM_f845U.roa (hash: J2opbMpTZpUpvX4wcx9CCjjTjdIRz3Wc8zKaGaF1BXs=)
6: caXYCCXqjYg5FcmsNZB3ePKReDk.roa (hash: XSzupsyXsQ8GmhQZJGGSHfiNeG8fCN+9mFDFmlJ4Bu4=)
7: gnOWx6TZJqqJDVFgIEMBOXAqJm4.roa (hash: fy9tgSe6kfwMDX9Ibp9s7/6EtOy/O5uDNSQU1PskuXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:b7:0f:c4:31:e5:e4:b9:10:42:6c:37:c1:b1:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: May 10 01:01:01 2025 GMT
Not After : May 11 01:01:01 2025 GMT
Subject: CN=ed878053acaa1a1a58b45dd0309a452d66504cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:88:6d:36:a5:ea:21:ce:6c:df:ca:e7:30:2f:
ca:5e:a9:8d:15:7d:98:10:ab:d9:d4:af:b7:23:c3:
98:83:e6:9a:fe:7e:87:17:af:86:13:4a:99:99:45:
e2:f6:0c:40:9c:32:3e:c1:e1:52:d0:5a:69:96:e3:
01:21:11:8b:c0:5d:d2:6d:ff:a2:24:1d:2a:17:84:
33:d8:ff:29:cf:35:9c:1c:f7:c2:d6:66:d7:ad:5e:
7a:ba:d1:8b:a7:a3:93:d4:65:5e:61:22:7e:de:03:
9b:fe:e5:18:b6:0e:b8:c1:99:0b:c2:8f:2d:bb:30:
81:64:8d:9a:31:f2:3f:d2:73:83:c8:74:71:67:12:
71:5e:c9:6d:cd:75:f5:80:52:c1:31:e0:60:34:d0:
cc:a9:bd:78:a2:f6:1e:53:c9:3d:c3:2c:05:95:d2:
d1:3d:07:87:e9:74:96:6b:b7:76:dd:cf:f5:dd:15:
38:d4:1b:39:af:fe:c7:d2:31:4b:eb:9e:24:e7:f6:
bf:a0:46:70:d3:17:60:ef:dc:d6:d4:53:52:50:fd:
02:7a:6c:bc:8b:26:95:e3:00:be:e4:72:e8:54:2f:
7f:71:78:e8:c1:c0:6e:da:05:ab:1d:5c:6e:88:2a:
7e:de:ff:60:fb:d8:31:99:1e:08:1b:2b:69:38:d7:
1f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:87:80:53:AC:AA:1A:1A:58:B4:5D:D0:30:9A:45:2D:66:50:4C:EE
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:d2:64:82:0a:37:f6:0f:60:a0:38:f5:b0:2d:d5:a5:43:ec:
7d:b5:02:07:fd:25:93:f2:1d:b3:60:76:46:b9:59:73:26:3a:
d2:80:af:b1:25:04:92:4a:58:b8:02:6f:17:bf:f7:e9:53:5a:
ab:59:9f:ca:37:83:f8:eb:22:62:57:b5:03:9d:c8:52:96:64:
29:68:5f:2c:7b:ee:7d:50:87:bb:cd:c5:f8:17:6c:d5:42:15:
6a:8d:f2:cf:04:cf:90:4f:02:5e:45:da:87:8b:34:3d:30:42:
e3:65:07:32:1e:a3:dc:d3:fc:9d:7b:24:60:fc:1b:94:59:cf:
74:8c:32:99:23:bb:df:11:67:53:a2:94:dd:8e:c6:83:a5:a2:
0b:39:94:89:4d:29:c6:cd:ff:39:4f:99:91:0a:01:a8:fd:b4:
61:d3:06:52:5c:be:c2:9f:a4:2d:cf:ee:ef:3a:2e:e2:e5:b9:
4e:0f:23:13:b3:ae:e3:46:b5:c3:9e:2e:b9:b3:2c:65:2f:6c:
1c:b6:bc:94:27:ff:62:3c:c6:da:b8:6d:11:d5:39:6c:5f:6f:
49:44:b7:a1:cb:62:56:3d:9a:05:80:a7:5a:4b:43:c6:cb:ca:
5e:ab:29:8c:bd:fa:55:4e:17:2a:4b:95:80:36:29:86:6a:57:
25:30:cd:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:19:10 2025 by rpki-client