Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: DjCkBAJDqAJXbZV+t3ew3h91HngKaTzMjAhHKPnCiyM=
Subject key identifier: 37:AD:0A:BF:86:36:7E:53:4B:D8:D7:56:6B:59:B7:BA:84:82:2A:C1
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 0196BB9247D25AB1203CF641F269625ED324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 153A
Signing time: Sat 10 May 2025 19:00:48 +0000
Manifest this update: Sat 10 May 2025 19:00:48 +0000
Manifest next update: Sun 11 May 2025 19:00:48 +0000
Files and hashes: 1: BAFnA8E_-fRHFvJR66V5dNg4Xzc.roa (hash: zli04q+UUFDZ6LvNlKF4wEZntdZy+cQL9il9Oh4rSZo=)
2: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: siKUlGC3lerRfjwqe/njmvhtmYa3pYzDmX6fmHfGmVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:47:d2:5a:b1:20:3c:f6:41:f2:69:62:5e:d3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: May 10 19:00:48 2025 GMT
Not After : May 11 19:00:48 2025 GMT
Subject: CN=37ad0abf86367e534bd8d7566b59b7ba84822ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1e:bb:35:b0:0a:3f:af:21:0e:70:e0:02:1f:
25:34:b8:68:7a:19:8c:bc:f8:06:ed:e4:78:e5:92:
cb:ac:6f:4f:cb:c5:35:1f:76:ac:75:d2:a9:f2:16:
70:53:bb:06:15:ad:ed:d7:fa:52:d0:dc:0a:cc:02:
54:8a:08:7a:b6:b2:44:d8:e4:a2:f7:16:20:72:a3:
c1:ad:f9:2f:3e:9a:23:57:53:a5:a7:b1:67:ed:77:
34:8a:bd:37:a2:36:ea:d5:23:a5:53:cd:3c:25:7a:
a4:9c:c7:90:4a:99:0c:7c:b9:ab:a0:2a:fd:56:49:
90:f1:19:6d:d3:2d:a3:84:bb:ee:1d:c3:bc:1e:8f:
fa:2d:b6:f8:e9:66:d3:f9:96:a5:c7:d1:37:17:0c:
35:b3:5f:29:40:8d:7d:4e:93:6b:6f:65:54:dd:db:
4a:0b:85:8f:7c:89:88:fb:11:30:2c:f6:81:1e:96:
19:69:3e:27:bb:9f:d5:0a:74:16:67:23:b3:f0:4d:
cf:6f:ca:43:eb:71:7c:55:07:8b:e7:21:5e:80:a1:
54:e7:17:cc:a4:86:f2:24:28:da:92:3e:eb:e6:a6:
ce:88:5a:02:46:28:34:5e:28:6c:20:d3:71:64:79:
7e:5d:3e:57:95:08:e8:82:84:0e:31:43:98:6b:92:
2c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:AD:0A:BF:86:36:7E:53:4B:D8:D7:56:6B:59:B7:BA:84:82:2A:C1
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:40:19:e4:37:7c:7d:4f:b5:a1:16:0f:ab:0f:50:2a:c7:d9:
88:c7:8b:b8:e6:af:f3:b8:49:90:79:e6:37:1b:3e:1b:10:42:
75:c0:20:f4:86:fc:5f:cb:61:8d:3c:2b:3b:f6:6c:78:25:c4:
2a:0a:5d:8d:91:26:3f:c1:43:38:d9:3d:57:4a:3a:b8:50:89:
9a:56:26:7d:4e:9b:25:1d:5d:82:dd:4d:9e:c1:6f:a2:e7:26:
d6:56:1c:ea:e4:c3:f8:ae:37:80:f3:6a:c7:3c:38:42:be:61:
5d:19:61:69:4c:20:8c:4b:fc:da:3e:9f:a7:e5:b5:15:5a:48:
7e:9d:98:8f:6e:98:ea:aa:3b:92:88:8c:81:d7:01:73:03:26:
c4:d1:e8:0a:60:9c:4e:64:23:2d:d9:06:2b:71:cc:9e:d5:31:
dd:83:26:8d:b0:12:bb:3a:71:2d:b3:10:72:06:d6:c2:8f:b4:
fd:ed:7e:d9:5c:ea:f2:11:7e:6c:ae:6d:ef:dc:ff:f2:90:92:
d2:18:62:ed:d0:f5:70:29:28:40:76:dc:ed:5a:91:d6:fb:13:
8d:33:ad:7e:7b:f4:9d:0d:58:8b:de:83:b5:59:86:45:9f:8e:
49:25:c5:99:c0:d4:bf:6a:06:c1:38:59:4d:a2:02:d3:e4:e5:
9a:92:b5:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:16:34 2025 by rpki-client