Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json)
Hash identifier: QPcFY5hPVGxj8W91yEsPYD2cQTicOWCjR89E4nRWWCQ=
Subject key identifier: 2B:D6:DE:12:74:87:F6:AB:6B:EF:CF:EE:01:5A:FA:A4:58:94:88:52
Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Certificate serial: 01967D8E8D5DCB0EC2B84AEE522D1155CAA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
Manifest number: 1519
Signing time: Mon 28 Apr 2025 18:00:16 +0000
Manifest this update: Mon 28 Apr 2025 18:00:16 +0000
Manifest next update: Tue 29 Apr 2025 18:00:16 +0000
Files and hashes: 1: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: HHDuIHQFg08iQEMSPDuPDBbbrFi9BfND3EY69ck9vNw=)
2: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=)
3: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=)
4: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=)
5: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=)
6: cf3WHfeWDYu7TWnELnXzycteCaY.roa (hash: TcxuwVKWwTiShtI0Unrv/gZ/YwHGK8T1H3ocBzBxMZk=)
7: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:8e:8d:5d:cb:0e:c2:b8:4a:ee:52:2d:11:55:ca:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Validity
Not Before: Apr 28 18:00:16 2025 GMT
Not After : Apr 29 18:00:16 2025 GMT
Subject: CN=2bd6de127487f6ab6befcfee015afaa458948852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:57:29:92:46:fa:34:73:c4:09:ab:b8:b8:7a:
3a:12:ee:3f:e7:b7:17:60:f5:70:1f:b0:2c:c2:cc:
27:61:35:72:62:33:37:ab:2c:43:54:c6:80:e3:d0:
25:ea:86:1b:d6:b7:99:90:bd:cc:52:e8:8f:5f:25:
9d:02:f7:32:8a:87:36:3e:78:23:1c:b0:d8:df:94:
74:26:cc:e0:53:56:a3:2d:ca:3c:b9:ee:50:e6:50:
be:db:56:06:1b:f4:f3:97:ea:67:86:46:41:58:67:
91:62:43:9c:75:e6:b8:22:4e:95:b0:62:bf:2d:9c:
62:c3:a5:9b:02:4a:6e:c9:2d:77:ff:e4:5e:cb:5c:
60:c1:ad:ce:89:41:e9:1e:a1:bb:03:23:5d:82:60:
61:96:98:58:96:30:d9:50:4d:82:f9:20:33:22:ec:
22:ae:ce:98:39:51:d2:84:de:9c:99:05:4e:b2:5e:
ba:15:a3:de:6c:cd:25:aa:f3:5c:03:33:3f:6c:c5:
6b:62:5b:b2:19:4c:fe:a2:7e:ab:e0:d2:95:c5:0d:
21:42:b4:9c:a6:1a:3f:51:14:2e:08:c9:24:aa:e1:
52:54:59:9c:11:90:f7:87:58:b9:12:df:fd:f7:9c:
17:c0:e7:11:a9:61:ed:ac:d8:2d:23:cb:25:b3:9b:
e2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D6:DE:12:74:87:F6:AB:6B:EF:CF:EE:01:5A:FA:A4:58:94:88:52
X509v3 Authority Key Identifier:
keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:1b:60:93:3f:e5:49:f7:84:46:ea:ae:8a:78:9d:97:d9:96:
13:31:ee:3a:aa:94:35:e1:26:64:8a:87:8e:63:45:b3:54:74:
1f:6f:95:b5:ac:e3:e9:25:01:71:b5:d7:99:1d:c9:e4:0f:88:
5b:fc:40:55:13:bb:f6:d9:5d:a4:6e:f9:dd:c1:f5:7a:9f:ea:
84:f1:f1:58:67:3d:bd:72:19:c4:2f:a8:e5:57:9f:4a:89:66:
88:88:f5:a4:83:fe:05:68:bc:45:1b:42:54:ee:6c:64:a4:4e:
ac:9c:db:22:cb:29:ae:b2:34:d0:39:87:ea:c7:6b:e9:8b:18:
ea:fa:a2:d8:8a:d3:4a:b9:50:13:c2:77:22:33:c6:f2:a3:d7:
68:9d:46:20:68:46:63:ab:08:16:dd:0d:64:1f:dc:6b:a4:36:
59:1e:c1:32:64:e5:17:16:9f:94:d2:fe:4d:70:6d:ec:fb:6e:
cc:f9:ac:6f:75:80:8b:ed:d2:91:b9:48:8c:fe:56:e0:fa:ad:
98:53:03:58:19:6a:ed:ec:6d:7d:46:3d:85:81:17:99:ab:c7:
e4:21:fa:1b:81:c1:95:cb:33:2c:2e:d2:ea:71:a4:a5:89:7d:
f9:c2:e1:23:80:d1:79:3a:90:b6:22:63:6d:25:6d:a8:75:c7:
3e:c5:c3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:41:25 2025 by rpki-client