Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
File: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft (raw, json)
Hash identifier: BzQNYyr5A+8uu2CwtjQlnzoO9ZG1g4lTzj6NFZsWsHs=
Subject key identifier: F6:17:AD:F0:A8:79:B0:BD:C1:42:E9:95:EA:D2:3D:5A:F4:BC:F0:90
Authority key identifier: 88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
Certificate issuer: /CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Certificate serial: 019679E9CFCBABD5637445A13C640142F94D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
Manifest number: 050A
Signing time: Mon 28 Apr 2025 01:01:28 +0000
Manifest this update: Mon 28 Apr 2025 01:01:28 +0000
Manifest next update: Tue 29 Apr 2025 01:01:28 +0000
Files and hashes: 1: Y4sICU63ha9zJlhS7qW2J4u6uws.roa (hash: 8r93NKrnyk82rf3aCFqULEgo5C+BAoN2QmF3G7aUJlU=)
2: iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl (hash: qMRFQ51MlkvdQq3y7dS16DWz5djafjCQ6jKmLCEy44g=)
3: wIm0A8W2Phgt1OO5oeTqTztju0g.roa (hash: NlYQ1T7mFBGddxYYpTaeqb8uAIXp1pec66MhW6UVFnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:cf:cb:ab:d5:63:74:45:a1:3c:64:01:42:f9:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88678ca34c3c6365fb616a66077160a494a6e9d6
Validity
Not Before: Apr 28 01:01:28 2025 GMT
Not After : Apr 29 01:01:28 2025 GMT
Subject: CN=f617adf0a879b0bdc142e995ead23d5af4bcf090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:38:11:5d:31:0f:83:98:a6:26:78:0c:98:6d:
42:3b:a2:f6:85:e2:d2:0d:58:f1:74:b8:11:03:e4:
f8:b7:ed:f8:fe:a8:2f:05:d3:0d:42:3e:6f:e7:49:
76:47:3b:59:bd:81:99:ea:e6:51:f4:fa:e4:68:72:
40:09:f8:77:af:a8:7f:46:7c:2b:a9:f5:16:4b:ac:
db:66:d7:a5:77:77:2d:a5:1b:67:63:25:39:b7:83:
18:1f:09:2b:a1:f9:2e:44:a8:26:13:7c:ab:36:d1:
31:19:e6:c3:2f:17:3a:42:f2:e5:4f:c3:5a:66:49:
c0:2d:7f:e7:3f:7e:9a:36:a1:79:10:36:0f:6b:f5:
ad:cf:60:d5:9f:7f:3a:70:73:8d:c2:be:af:1a:01:
4e:e3:53:c4:f9:14:73:ff:cc:98:9f:2e:dd:44:f4:
74:0f:bc:c1:8f:76:de:4c:55:dd:97:d9:7c:ce:d2:
c4:4d:59:53:bd:6a:1e:f6:96:f1:d1:c3:60:ef:12:
f7:1a:17:b2:c6:15:c6:27:97:5f:45:a8:38:08:cf:
86:fb:c9:7b:6d:ac:a7:6f:9e:ef:27:e9:f7:da:00:
b5:e5:19:86:16:53:07:d8:bd:9e:ee:10:21:23:cf:
34:cf:e6:dd:84:97:db:90:bb:29:af:4c:4a:25:56:
3a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:17:AD:F0:A8:79:B0:BD:C1:42:E9:95:EA:D2:3D:5A:F4:BC:F0:90
X509v3 Authority Key Identifier:
keyid:88:67:8C:A3:4C:3C:63:65:FB:61:6A:66:07:71:60:A4:94:A6:E9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3baacc-4201-4951-8354-f85f721fb1b8/1/iGeMo0w8Y2X7YWpmB3FgpJSm6dY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:bf:f7:1c:7b:a1:c9:19:0b:cc:ff:0f:f4:2f:df:b2:c8:7b:
fe:b4:cf:65:05:cc:d2:ca:71:d7:b5:a8:9a:0e:85:f8:5a:d0:
f1:77:7b:0b:3a:fe:8b:dc:45:c6:68:88:30:6e:7a:b1:0d:01:
41:05:df:d3:11:07:5f:89:df:75:b8:34:08:2b:97:12:51:92:
d5:f5:5c:1a:c5:6e:15:eb:49:20:a0:2f:1b:6f:f8:5f:50:77:
40:c3:63:54:bd:13:ab:43:ff:b8:a3:e1:d0:7b:93:fb:bb:08:
55:be:c9:d7:3c:a3:a0:84:93:9f:16:bd:cf:92:23:d6:2f:1b:
a7:d4:fa:e2:f4:58:99:0f:b9:d1:ce:de:e2:36:a7:f4:f1:6b:
c0:0b:f0:bf:31:98:dc:9a:9d:6d:92:2b:08:cd:a8:44:6f:89:
42:84:8a:24:d7:21:37:af:59:66:01:ae:1d:23:c4:32:b3:1a:
7f:80:20:01:40:19:50:ed:e0:8c:34:a9:ed:89:9c:6b:dd:d2:
b0:3c:4c:89:b5:f0:f5:f4:25:8b:17:b3:8e:45:c9:d9:5c:8a:
da:9f:25:d9:a3:1a:00:7c:55:53:4a:d6:1a:4f:8c:d7:de:6c:
6b:17:3a:04:cb:11:24:19:cf:7f:28:4f:25:a3:49:a6:4c:91:
0b:29:e1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:25:19 2025 by rpki-client