Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
File: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft (raw, json)
Hash identifier: nFJiJFKNLxv+TvHkPPIhokuzCk5JzbL/t7kbWBWiKKU=
Subject key identifier: 89:C7:07:D6:07:CA:D8:F9:BA:88:BB:E3:12:C2:D9:53:46:DE:C0:C4
Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Certificate serial: 0196C53A44E8E9466C266E100FA69883C71D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
Manifest number: 153B
Signing time: Mon 12 May 2025 16:00:52 +0000
Manifest this update: Mon 12 May 2025 16:00:52 +0000
Manifest next update: Tue 13 May 2025 16:00:52 +0000
Files and hashes: 1: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl (hash: ngg1BUY/RtVS5q7H0vyL42uwlLywrKsX/eqYbj7RhhQ=)
2: vZncObou1n1Gou3XB_i7Ru4V5WA.roa (hash: iik1zhTFoCIgqbBLWbxX8UR2ffHIMvhG03bvL/Xp/YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:44:e8:e9:46:6c:26:6e:10:0f:a6:98:83:c7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Validity
Not Before: May 12 16:00:52 2025 GMT
Not After : May 13 16:00:52 2025 GMT
Subject: CN=89c707d607cad8f9ba88bbe312c2d95346dec0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:09:95:31:db:c4:ee:e6:21:93:63:36:e0:ed:
ed:63:db:ba:87:a6:1a:fd:ab:3d:ef:c6:0d:6a:f8:
a4:20:72:5f:6e:83:aa:86:7e:48:f6:f4:bc:e8:33:
99:f7:72:9a:a2:1b:7a:01:6e:01:65:9a:d3:f7:09:
7f:7d:09:1d:66:f7:f8:b4:1b:14:01:ca:3f:0f:02:
05:e3:33:32:f7:f6:b8:b9:4b:df:77:94:48:b1:44:
b6:4a:d6:16:f2:48:bc:1b:9d:2d:61:64:b6:6f:7a:
ac:9d:52:65:e3:12:7b:ca:02:14:5a:e9:26:bb:6c:
09:d3:b5:91:9f:cf:38:f9:ff:d3:00:b6:fd:0f:db:
4c:4d:ac:47:78:f4:02:91:66:0f:0f:16:f1:f7:7f:
b0:44:ca:6c:ab:7b:fa:96:1a:97:2d:32:04:d4:56:
00:16:75:1e:37:37:00:02:00:e6:d8:45:37:c3:aa:
48:5b:a5:4a:af:9b:c9:e3:c2:e3:08:f0:47:ac:29:
31:a7:dd:f2:f9:60:87:dc:55:9a:b6:d0:77:a9:d7:
73:b2:c8:4a:70:21:f4:27:99:0e:c9:0c:aa:16:dd:
a3:c8:f6:90:49:c0:4b:c9:65:4f:d0:c5:24:11:a5:
37:4b:b9:4d:90:44:8d:68:11:3a:b9:44:31:fa:cd:
ab:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C7:07:D6:07:CA:D8:F9:BA:88:BB:E3:12:C2:D9:53:46:DE:C0:C4
X509v3 Authority Key Identifier:
keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:30:f6:6e:cf:d2:77:e9:ae:39:3f:86:67:42:3a:19:5a:15:
ec:cd:87:13:de:38:ba:81:7b:58:83:e8:58:ed:92:9d:d9:7d:
23:c1:17:84:6d:09:f3:68:f9:5c:1c:be:e5:c3:6d:3a:22:b2:
b3:ea:76:24:30:78:60:3f:12:ba:a7:f6:95:3a:dd:71:b9:83:
27:8b:b8:30:cc:cf:70:97:eb:fc:e8:07:b9:14:70:65:ab:40:
9f:2e:b0:93:d2:5a:49:0e:ba:62:30:6c:95:fb:db:2e:15:69:
be:23:56:40:2e:dd:f6:7e:28:7f:31:92:ce:22:1b:36:80:dd:
16:c6:d4:08:00:01:e3:f7:86:55:5b:c1:f3:c7:9d:fc:80:50:
e2:20:16:86:5f:9b:f9:37:1b:fb:25:45:da:76:7b:5d:87:20:
cd:ca:ed:2c:71:4e:29:44:6f:95:80:fc:cd:43:9e:6d:c9:1a:
6d:41:dd:8a:f1:f6:3c:5c:91:ba:79:9e:fb:d3:5a:88:53:3e:
56:95:d5:04:27:9b:03:94:3c:3d:d8:72:c2:84:31:da:19:64:
c4:5f:9f:e6:d9:11:a6:04:1c:db:d9:67:46:72:34:28:62:ee:
5e:81:2b:89:85:34:3b:3e:05:a8:e5:eb:5a:39:c4:43:aa:3b:
14:a1:7a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:49:06 2025 by rpki-client