Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: V0CMPhiICgnM7ADcTUMOARJ4sDbE7sdVXoad40ymz1A=
Subject key identifier: B4:A2:68:18:EA:A5:95:4B:61:19:D6:D0:7E:01:30:9A:63:9D:43:6F
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 01969F081E522AD47015BADADA32997AC02F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 03B0
Signing time: Mon 05 May 2025 06:00:31 +0000
Manifest this update: Mon 05 May 2025 06:00:31 +0000
Manifest next update: Tue 06 May 2025 06:00:31 +0000
Files and hashes: 1: AgvVH_Z5ZikBFIUyEGB_f4ftLfg.roa (hash: Ii6l1o1UjR6zsFk/Ik5xPFxEIQrzvV/YcOC6UeUTh7g=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: 3Kh7Nccr2fFLe1yDZY1QFsmD9aGf34MeCNTMunta4tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:08:1e:52:2a:d4:70:15:ba:da:da:32:99:7a:c0:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: May 5 06:00:31 2025 GMT
Not After : May 6 06:00:31 2025 GMT
Subject: CN=b4a26818eaa5954b6119d6d07e01309a639d436f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:01:5c:80:47:de:f5:6e:0d:24:a3:7f:ee:d1:
a2:cd:41:23:b0:ab:d7:c4:88:cb:31:62:c1:da:7a:
e5:e9:b3:5c:59:fd:70:78:af:85:b4:bf:4a:e5:d8:
9a:4f:95:4f:81:99:63:bb:d9:2f:69:f0:09:a6:ca:
0f:32:03:ec:82:74:4a:4d:24:28:7e:fc:90:1a:7d:
97:18:4d:60:73:a1:dc:e1:55:8c:03:a6:c4:79:e3:
06:6a:0a:29:62:3f:29:11:d0:fc:81:8f:4b:90:45:
ce:7a:25:cb:ce:8d:1c:80:2b:c3:4e:49:e7:1a:55:
76:a6:35:e5:85:39:19:d3:bb:55:48:02:d9:d6:6d:
3f:1e:c1:22:a2:ad:c9:a8:75:51:6d:d0:41:b2:ba:
37:ca:80:5a:03:82:23:29:3e:5e:91:9b:8f:ca:f1:
3a:c7:6a:55:63:79:66:f9:60:e8:18:38:99:6c:f7:
0f:65:93:d0:7b:09:6e:56:26:4d:aa:a9:da:65:a2:
46:75:3f:17:47:48:8d:88:e1:31:8f:75:e8:30:c9:
e8:8d:bd:5d:3c:e0:57:e9:c5:e0:b0:8e:f4:cb:c6:
d7:84:c9:54:bb:ce:d7:50:ae:41:57:8c:0c:67:85:
a0:da:c4:37:0b:c5:1e:98:70:34:63:8c:de:dc:59:
2d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A2:68:18:EA:A5:95:4B:61:19:D6:D0:7E:01:30:9A:63:9D:43:6F
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:17:ef:e9:36:69:9c:52:04:49:e7:ff:a2:b2:c8:1a:93:ce:
b0:36:f4:03:10:63:bc:b9:f5:80:76:d3:ae:ad:83:85:22:30:
bf:c4:ef:fe:e2:9c:d5:37:f3:44:61:44:0e:4f:64:2f:d3:f2:
f9:9b:fc:cb:7a:04:6d:77:b2:84:da:db:36:53:28:93:1c:8b:
a5:15:14:9b:74:e9:68:79:d7:60:fb:37:bd:b5:65:f3:e9:d9:
0b:36:2c:0c:4a:43:88:4b:60:08:15:79:45:b6:c1:17:79:dd:
58:66:03:20:cb:0d:83:ac:c8:78:48:99:b0:9b:35:db:37:6d:
e0:48:a9:10:78:75:ed:5a:5f:89:51:26:1f:22:ad:79:37:64:
3d:8c:71:87:da:08:10:8c:76:d0:ce:fc:bc:d9:9b:46:f3:d7:
01:2c:70:81:64:12:40:ee:a1:78:07:49:16:99:f1:3d:5d:d8:
eb:f6:b4:7c:c4:18:55:46:d5:af:c9:eb:8c:db:a0:ba:fa:ad:
a0:26:e5:7e:9b:68:05:7d:2e:ef:26:c9:7d:f5:57:d9:fa:d4:
f1:69:9b:ac:d8:8c:63:a3:a5:48:28:8d:a9:37:ab:27:e3:93:
58:f8:82:1d:25:79:cc:d1:34:66:69:86:ac:a8:ce:66:8c:bb:
86:b4:44:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:36:09 2025 by rpki-client