Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: Lgv1blmfxFmQP2FqFLq8y136G/ZKP40TR+rdzLvUbTo=
Subject key identifier: 93:BD:EA:48:FE:4F:DA:AA:90:E3:47:C8:75:E3:4C:10:21:91:EF:5D
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 0196BD124297EA079ECA1C89CB2A31352BCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 03F5
Signing time: Sun 11 May 2025 02:00:12 +0000
Manifest this update: Sun 11 May 2025 02:00:12 +0000
Manifest next update: Mon 12 May 2025 02:00:12 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: L1V1/DHd4WToV/l7eqwqbifVChEvcXX9XoJyBRSOxz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:42:97:ea:07:9e:ca:1c:89:cb:2a:31:35:2b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: May 11 02:00:12 2025 GMT
Not After : May 12 02:00:12 2025 GMT
Subject: CN=93bdea48fe4fdaaa90e347c875e34c102191ef5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a5:99:84:da:3e:36:81:ca:c8:3f:5f:9f:6b:
22:4d:4b:c8:7d:50:06:c2:6b:cd:a6:18:a1:c7:7e:
6b:40:21:5a:07:b5:8d:42:b8:1f:03:61:11:be:db:
f9:31:15:78:db:10:8f:26:02:37:88:32:d6:d6:8a:
f2:d2:27:d3:59:f5:a9:73:67:0d:3e:1e:10:e3:fc:
5a:b2:1b:5f:a2:3b:7e:71:1e:a4:49:e2:4c:a8:0f:
0d:82:13:2f:b7:ca:0c:55:a3:ea:79:bf:b2:c3:4f:
7b:ad:bf:52:cb:3a:0a:77:ce:e7:86:16:e3:85:0c:
68:40:71:fb:34:f4:1c:a7:31:98:4c:f4:61:bc:33:
86:30:fd:7c:93:af:d0:50:00:97:4c:b9:1c:53:06:
6b:e5:98:75:ee:8c:01:aa:e1:3d:e8:fc:89:44:cd:
66:c2:99:8a:17:80:ac:d0:6d:a7:01:70:71:06:04:
19:33:c3:48:ed:b9:ae:37:df:db:77:ec:a7:14:b0:
f5:d6:cc:45:7d:87:ec:a3:3f:3d:69:d6:32:b9:4c:
ed:7d:9e:a6:41:dc:71:06:79:1d:a0:65:17:3d:9f:
fd:81:c4:27:e4:1b:57:5e:93:4d:71:84:e7:1d:d2:
f8:0a:64:88:75:fa:e9:57:c1:af:cc:33:76:1f:2c:
74:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BD:EA:48:FE:4F:DA:AA:90:E3:47:C8:75:E3:4C:10:21:91:EF:5D
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:1b:cc:19:0b:ae:74:f2:6c:7c:93:e5:9d:f6:1d:d2:8b:d8:
fc:06:d7:56:ad:c3:2d:aa:63:0d:47:72:56:38:c4:95:4c:4b:
04:29:ac:d3:09:91:74:fe:a8:7e:a2:64:c0:a9:f8:94:89:5b:
95:d4:c2:03:60:2c:a8:48:2f:ef:26:1c:39:f0:1f:0b:41:08:
db:1b:31:db:f0:d1:23:9d:93:51:13:38:27:3c:11:ca:55:db:
87:ec:49:bd:f5:96:f9:38:6a:85:e8:de:c1:f2:7f:f5:7b:51:
15:66:16:27:e6:c2:eb:59:29:2a:13:98:ae:08:3f:16:1b:fc:
24:d1:47:30:8a:68:b4:2e:70:36:58:c9:37:ab:63:b9:be:45:
2f:9b:97:b2:8c:cd:04:a0:ce:8a:7b:7c:53:4a:6a:59:b1:9f:
78:da:06:52:57:ad:a6:ca:1d:c6:4b:4c:1f:49:2e:29:37:09:
88:9c:a1:9b:ac:bc:2c:2f:b0:e5:4f:bf:5c:07:aa:7b:cc:91:
92:86:33:53:ca:3e:2e:70:13:30:e2:37:91:6f:bf:5f:0d:c1:
b2:55:94:e8:b8:bb:82:97:45:01:5b:58:ba:eb:e1:d9:81:5a:
36:bd:7b:9c:3c:71:3c:8b:91:49:90:3b:60:c7:b8:bb:f3:72:
71:c7:5a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:16:30 2025 by rpki-client