Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: 97EfrFdDgJcpOgnMCnA1seM4k8y/6LoR71Qg02ie0do=
Subject key identifier: 39:F6:C4:7C:11:05:7C:11:13:18:65:0B:D3:76:9C:F9:41:C0:6E:8E
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 0196C3828A270219AE9E2C8C08E4A4503484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 010F
Signing time: Mon 12 May 2025 08:00:34 +0000
Manifest this update: Mon 12 May 2025 08:00:34 +0000
Manifest next update: Tue 13 May 2025 08:00:34 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: 04HVBzNctt7WPqpk/Tdbk54zPK0M+RY5S+lyMx661iY=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:8a:27:02:19:ae:9e:2c:8c:08:e4:a4:50:34:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: May 12 08:00:34 2025 GMT
Not After : May 13 08:00:34 2025 GMT
Subject: CN=39f6c47c11057c111318650bd3769cf941c06e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:90:75:99:70:c3:7a:6f:10:5f:c9:6d:01:f4:
45:e0:99:f7:bd:9d:7e:80:00:7d:6c:a9:4c:c9:49:
33:23:04:70:5b:e8:40:36:60:66:67:fb:30:f1:cb:
98:cf:fb:53:bc:89:08:98:6a:a6:27:00:91:3d:0c:
13:9e:10:3e:e1:2f:1f:2f:0a:a9:05:34:a0:4c:11:
7d:b1:71:52:3e:85:61:ce:9b:78:7a:c8:97:b6:9e:
da:9f:af:86:e8:37:fc:d2:52:49:d4:f4:97:d7:c5:
89:e3:03:c6:e8:c7:ec:d9:31:2f:cc:06:e1:71:d1:
f8:61:e7:44:bb:e8:77:27:f4:a4:9c:d6:ee:76:84:
44:b8:20:91:00:91:e1:2a:d8:ea:74:37:17:c1:1f:
35:5c:2e:73:b8:ef:ac:df:3d:27:34:90:45:62:5f:
d9:e5:e5:f7:92:b9:00:9d:5c:bb:fc:4f:3d:ab:ff:
7a:93:84:39:60:ea:62:ac:70:86:37:ad:4b:75:4b:
00:d5:8d:e5:15:40:73:c7:ff:fd:c3:93:10:3e:b5:
02:40:86:06:a4:dd:5d:88:9b:51:88:6d:47:bd:e4:
de:07:da:2c:28:f2:34:02:b7:f2:e9:5f:45:52:83:
8d:83:10:8d:60:41:f1:63:25:60:37:28:b4:a6:ee:
ea:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F6:C4:7C:11:05:7C:11:13:18:65:0B:D3:76:9C:F9:41:C0:6E:8E
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:6f:19:fd:f9:41:ec:43:11:ea:3b:c3:55:8d:05:05:2d:54:
a2:b7:07:b4:ab:d5:6d:bf:a9:74:37:bb:ba:b3:20:79:43:a3:
9b:8f:54:21:54:26:d2:76:16:df:09:d9:ed:8d:96:7c:0c:d7:
4d:e2:4d:56:ce:d3:ec:7e:08:f4:a9:67:2c:d6:b7:dd:bf:67:
b9:f6:37:5a:03:df:13:f9:0c:26:aa:83:11:03:7d:b9:01:e5:
3b:59:93:0e:d6:a3:30:56:49:36:18:46:8f:15:ec:dc:ee:1c:
76:a7:3c:3a:d1:b2:bd:84:15:29:fb:a9:d9:be:dd:be:75:ef:
6b:ad:54:ca:22:9a:d5:0b:7c:4f:68:dd:b0:ea:80:b6:6f:de:
b1:90:ac:a6:bf:93:4c:4c:09:a2:c6:2e:1a:9f:ba:f8:a2:01:
a9:e8:d2:ee:89:42:a2:bf:62:fa:73:92:52:c3:32:0a:d8:17:
6c:c0:8d:55:df:88:e6:8b:d3:38:01:cc:5b:b9:54:ff:cb:0c:
3c:e7:d6:db:f0:28:9c:e0:be:66:f0:58:73:bc:0b:9e:3c:97:
b3:e0:d0:6b:36:02:1d:cb:71:f8:bc:c0:da:41:a5:3c:bb:82:
43:4a:7d:19:81:51:04:8d:2a:43:3b:4e:34:ad:57:ef:7c:b3:
f9:e3:0e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:34:18 2025 by rpki-client