Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: q+1cxslvE+Rn/cZz15tLcagSsPyUII1lvWnY8s/9wVs=
Subject key identifier: 26:C9:4E:1A:AA:18:47:6B:A1:77:51:19:55:B1:CD:54:6D:33:F5:EA
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 0196CCF38C2B4A91C00D683708102AE25C65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 1170
Signing time: Wed 14 May 2025 04:00:35 +0000
Manifest this update: Wed 14 May 2025 04:00:35 +0000
Manifest next update: Thu 15 May 2025 04:00:35 +0000
Files and hashes: 1: YR9oUfcPn7hi-EfIp0zPWNgdoLI.roa (hash: gZUlOd3rhYgj7y7iYiifqKrTqOs4vDy8o9fKugEnj2M=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: Q9WW13OPqVEwdfn1MaXb2bJUSv+dz2Cc01sJ9ALlD1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:f3:8c:2b:4a:91:c0:0d:68:37:08:10:2a:e2:5c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: May 14 04:00:35 2025 GMT
Not After : May 15 04:00:35 2025 GMT
Subject: CN=26c94e1aaa18476ba177511955b1cd546d33f5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:08:c1:25:d4:4a:35:35:71:7b:3e:71:39:7c:
9b:cc:ad:97:9c:9c:10:cd:ae:3a:e7:38:88:01:72:
db:d0:0a:cb:2e:1c:6b:f5:17:22:36:4e:c0:71:a6:
b2:5d:dd:3c:b8:f4:a0:1f:d3:b1:ae:fe:0e:3c:94:
0b:8e:27:91:df:06:18:e1:6e:96:c5:8b:4c:3e:03:
f7:7d:05:8b:a1:cb:ca:c4:0f:f6:52:fc:32:05:e2:
56:65:fc:72:a1:a4:a6:a9:8d:7b:15:6f:91:c1:f0:
65:51:9c:d9:46:56:be:db:d7:07:22:4d:1a:a3:3e:
c3:7d:7e:22:50:84:db:70:05:97:17:7d:a4:f2:61:
f5:a5:78:2d:f5:a7:90:da:60:ba:7e:a9:ae:d1:f2:
6b:ec:4f:51:e4:21:54:2c:cd:fa:aa:6e:50:93:a7:
02:af:f1:22:6a:47:2b:82:7c:11:9d:d0:0a:fd:80:
5c:2a:83:43:c4:37:3f:44:32:c5:0d:3f:7b:6b:77:
91:4e:88:e5:26:d5:b0:b5:13:36:45:f2:df:56:9b:
04:9f:4a:f4:46:c9:5e:a8:aa:1a:02:16:a9:93:50:
f7:a3:3b:b2:a9:85:8d:67:6a:6d:43:a2:56:05:bf:
b1:42:28:df:12:36:85:0c:25:10:6a:04:ab:f8:90:
b7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C9:4E:1A:AA:18:47:6B:A1:77:51:19:55:B1:CD:54:6D:33:F5:EA
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:90:38:b8:dc:f5:2b:4a:65:5a:0a:77:53:81:a8:d7:da:a4:
34:e4:ad:ae:c5:1d:e6:50:b2:2d:88:83:ca:eb:4b:c8:57:28:
24:e0:37:43:b0:70:bb:31:da:a5:f6:71:ad:e1:c2:b3:77:8c:
e2:9b:70:0b:41:60:cf:8f:5f:96:6f:4d:63:5b:39:ac:6e:3c:
f8:ef:45:81:c2:10:21:34:a3:6a:d4:53:e0:1c:89:39:af:7a:
bb:c9:0a:1f:2c:82:f5:36:5e:20:4f:fb:0a:24:37:0b:24:15:
89:8f:9b:09:79:b2:b4:1f:23:ce:8e:3f:28:53:93:cd:25:7c:
d1:2b:ef:5f:47:f7:eb:14:d0:0e:a3:0e:54:2a:ed:d2:36:f8:
21:52:5e:bf:b2:6c:44:de:2e:7a:48:cb:72:54:1e:5f:67:9d:
d9:07:14:ea:bc:98:b7:45:c6:35:be:99:f0:3c:d6:71:13:29:
f3:6d:a6:23:57:8d:57:54:89:95:10:38:b8:a4:65:9b:74:a9:
62:16:fe:63:ea:d8:13:12:9d:3f:19:b4:d0:13:e8:30:e9:5e:
09:da:da:33:4a:09:3f:8b:52:cd:60:f7:f7:f1:8b:95:41:ec:
35:68:b2:ee:e0:80:f2:ed:e8:65:58:70:3b:3b:83:d1:05:35:
c5:da:e2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 10:27:15 2025 by rpki-client