Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
File: iP4ZBc16825jraY2bBR7Ydhcnys.mft (raw, json)
Hash identifier: nKUwMWafQK5c6IsVRpymI2swmNR0oxZf5oV7z1Oq1PM=
Subject key identifier: 93:13:D5:7D:06:B0:D2:09:57:16:87:E9:AD:E2:B5:31:28:47:20:47
Authority key identifier: 88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
Certificate issuer: /CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Certificate serial: 0196B220F8D1263A25E3F30F5B8084E99DB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
Manifest number: 0670
Signing time: Thu 08 May 2025 23:00:27 +0000
Manifest this update: Thu 08 May 2025 23:00:27 +0000
Manifest next update: Fri 09 May 2025 23:00:27 +0000
Files and hashes: 1: DSjiByReVAFtGenTha4D-8dSQJA.roa (hash: LTaqsJLmNorNuR9w6MCAPY47C39e6eSxiN8KzBSficg=)
2: N3Ms1tO5Rc3q58ZodMbwcW3QRxA.roa (hash: QeEjLFu1bfyi8L5wOE2F/BxSn3Wihpq/1jEicr1OiIU=)
3: iP4ZBc16825jraY2bBR7Ydhcnys.crl (hash: ke3oAiMlFLeuVZyVwvYFw7aUidLjTnZ+gO7uozFyUDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:20:f8:d1:26:3a:25:e3:f3:0f:5b:80:84:e9:9d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Validity
Not Before: May 8 23:00:27 2025 GMT
Not After : May 9 23:00:27 2025 GMT
Subject: CN=9313d57d06b0d209571687e9ade2b53128472047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:49:89:0e:d3:c7:83:ba:ee:4c:33:f2:24:
a2:19:9e:9e:78:a1:b3:6e:54:91:73:e8:a7:36:41:
68:e8:69:d7:6a:d6:a7:e2:6f:a4:6a:61:14:2e:fd:
a7:35:ab:e3:0e:88:89:3c:de:18:7c:aa:38:9c:39:
9d:f7:f4:55:b7:d4:85:63:78:0f:ee:70:13:14:fd:
53:41:99:8f:8c:f0:9a:ca:73:a3:f5:ba:23:d3:be:
64:ac:b8:ce:80:e1:3c:e9:4c:d5:2d:f8:c0:0e:13:
8c:93:95:bf:b5:00:e0:f9:1a:ab:77:86:d0:ce:87:
7e:55:0c:f8:b2:ee:f0:7d:b8:80:93:93:f1:a1:3a:
e5:e0:aa:6c:01:fb:d0:71:ac:b7:7b:9c:01:9f:4d:
35:0e:c5:c8:f5:71:c8:de:cc:5d:16:23:58:7a:a2:
69:ad:25:32:e6:80:fa:06:70:15:90:c6:11:d2:5e:
2f:0d:b8:5b:7c:65:b7:e0:bf:96:5d:a0:78:44:ca:
73:f8:95:12:8b:13:88:82:85:99:ee:26:57:d0:58:
e0:73:18:86:b8:2e:8a:70:39:76:fd:a4:d5:2a:e3:
a2:f9:c4:e9:fc:a0:f2:37:a2:fe:00:71:02:f6:8a:
64:81:45:07:0f:59:8b:a7:97:64:bb:3b:01:e4:e8:
bc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:13:D5:7D:06:B0:D2:09:57:16:87:E9:AD:E2:B5:31:28:47:20:47
X509v3 Authority Key Identifier:
keyid:88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:4d:26:f4:f1:98:7a:ee:64:84:2d:84:9d:97:5b:92:c2:73:
88:1f:03:32:95:fb:07:4e:d7:6e:1a:ab:11:a8:7a:fb:53:e8:
4d:a1:8a:50:40:da:ec:c4:ca:4b:7a:53:46:54:0e:da:b9:06:
e2:f2:7c:a2:0c:a2:da:08:f7:19:b5:0a:73:2d:00:4b:e3:a1:
8e:0e:b9:b5:1a:06:2e:d4:8c:09:c8:69:cf:cb:e0:5e:56:8c:
bd:1d:d6:08:b3:23:43:a6:74:50:54:bd:da:bb:73:22:12:53:
06:47:08:32:77:75:ee:80:0f:7b:6c:e5:ab:21:8c:7b:25:cb:
94:1d:e0:7a:51:27:8a:73:24:ed:8f:82:79:dd:04:4e:df:2c:
40:0c:ee:28:aa:26:66:9b:45:91:c4:95:f0:30:6f:e1:ca:7d:
b1:98:67:7d:e2:de:42:bb:95:b9:ce:f3:46:cf:82:96:41:40:
4a:89:72:3e:b1:d0:26:f9:39:1c:69:e1:fd:c0:d1:4e:d3:f3:
d9:67:ce:8d:f7:5d:82:4a:e4:c7:68:93:4c:cc:a1:19:61:71:
cc:19:73:cf:74:84:3d:4a:67:06:58:13:e9:1a:a2:8a:3d:5e:
ee:2e:35:43:8b:e1:8e:4a:03:9c:cd:0c:58:10:5b:fc:6a:53:
83:00:61:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 03:00:18 2025 by rpki-client