Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
File: IvtSiroBjxQvRETMzJcjc2zU5LY.mft (raw, json)
Hash identifier: hfYAWiI15sPC0obSxbrj0kXFG4GotKd2kGjwemsY8qE=
Subject key identifier: A2:49:5C:85:C7:F6:A1:89:9C:8E:CA:B8:55:8F:BB:A5:F3:CA:01:40
Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Certificate serial: 0196B8C7A232781E30C9F093DF006708AD9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
Manifest number: 111C
Signing time: Sat 10 May 2025 06:00:12 +0000
Manifest this update: Sat 10 May 2025 06:00:12 +0000
Manifest next update: Sun 11 May 2025 06:00:12 +0000
Files and hashes: 1: 4Qe9-T0nXWoVHW9lPtNAFV1MJeQ.roa (hash: MEUx9Qe02B/09ozBtbyk47nH68xJFm0Hu6pf18Q/8p0=)
2: IvtSiroBjxQvRETMzJcjc2zU5LY.crl (hash: zC3C06bcQaJb9pm5Bch9MTQBwn+vzJfiCyq2N0HLC7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:c7:a2:32:78:1e:30:c9:f0:93:df:00:67:08:ad:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Validity
Not Before: May 10 06:00:12 2025 GMT
Not After : May 11 06:00:12 2025 GMT
Subject: CN=a2495c85c7f6a1899c8ecab8558fbba5f3ca0140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0c:26:c6:c5:19:b8:68:aa:5d:46:82:db:62:
ce:e9:9e:85:17:d6:46:03:b5:50:c4:45:b3:a0:fb:
eb:99:8c:c4:b3:6c:35:44:78:6f:4d:25:c4:f3:98:
cc:47:d2:b3:3e:9e:e5:ae:6e:37:f0:5d:44:2c:a5:
f6:3a:ed:dd:d6:23:23:f9:16:b9:f4:6a:57:27:12:
68:5b:73:33:42:36:8b:33:75:33:5f:91:1b:4c:cb:
ff:3d:04:83:fe:d1:28:0d:b7:ad:4d:de:b4:c8:e1:
0f:c6:3b:97:77:4e:fa:de:e3:a9:b5:74:4d:f1:f2:
f1:c8:e5:f0:d1:71:8f:cb:d9:7e:f3:df:7f:46:23:
79:b4:96:51:90:24:0d:65:99:a5:85:c3:25:29:44:
f3:bf:9f:6c:94:8a:e4:e8:2b:6f:42:fa:cb:51:c5:
8c:c0:f9:57:35:5b:29:d9:2d:b2:0d:cb:96:63:e5:
1b:75:06:46:c2:ab:b1:f9:e3:a3:58:79:79:e5:a0:
e3:ef:35:90:65:c5:e7:b6:95:70:91:86:25:30:b2:
cd:7d:6a:b5:2f:4f:0d:64:1e:fa:03:09:3b:38:a8:
ba:3b:9b:19:fe:05:17:73:29:ee:17:25:a5:ea:49:
c8:96:fd:81:f8:8f:18:07:79:ad:d0:29:06:8c:d6:
f5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:49:5C:85:C7:F6:A1:89:9C:8E:CA:B8:55:8F:BB:A5:F3:CA:01:40
X509v3 Authority Key Identifier:
keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:3b:65:22:ac:12:1e:06:44:bf:ae:dd:fb:74:9d:0d:a6:ae:
55:69:ac:b0:f0:a2:4d:35:c5:24:e7:17:45:8f:35:04:61:41:
11:55:53:0e:7e:39:52:80:14:1c:cb:fc:bb:82:dc:1d:ef:01:
db:c3:77:3a:d3:8d:2c:47:70:20:49:4d:dc:40:4d:03:80:cb:
56:ee:ae:5d:f3:0e:74:57:79:51:d2:08:82:9e:53:cc:f6:de:
b1:b3:d0:75:be:71:70:ca:a8:ad:05:46:bd:53:e3:de:c8:0f:
a2:58:fc:1b:c4:ea:2a:ea:7a:20:7d:b9:14:ff:7a:ca:db:15:
e7:f6:07:21:63:a0:6b:04:a0:1c:68:e4:51:93:c3:d4:5d:9f:
25:80:eb:ac:a7:f0:e1:05:38:1a:ab:9c:5a:08:ce:b3:b8:dc:
d5:a2:57:65:02:02:02:46:f0:a4:8c:75:14:7d:91:a8:bc:41:
cc:6b:03:24:e9:b4:d8:ef:87:d7:ec:e9:a8:76:69:85:9d:78:
75:ef:b1:12:60:bc:92:7e:8d:7b:e2:62:cc:61:95:c3:75:aa:
09:e8:91:ca:88:4c:e1:20:19:8f:8e:fe:35:a9:ae:e1:93:c4:
a3:c1:d7:7c:b2:db:1a:b4:79:21:87:df:14:7d:a5:3f:68:c6:
2c:e3:b5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:47:53 2025 by rpki-client